OT/ICS Security Principal Architect

OT/ICS Security Principal Architect

09 Nov 2024
Kentucky, Louisville, 40201 Louisville USA

OT/ICS Security Principal Architect

Company Summary StatementAs one of the largest investor-owned utility companies in the United States, PPL Corporation (NYSE: PPL), is committed to creating long-term, sustainable value for our 3.5 million customers, our shareowners and the communities we serve. Our high-performing regulated utilities — PPL Electric Utilities, Louisville Gas and Electric, Kentucky Utilities and Rhode Island Energy — provide an outstanding experience for our customers, consistently ranking among the best utilities in the nation. PPL’s companies are also addressing challenges head-on by investing in new infrastructure and technology that is creating a smarter, more reliable and resilient energy grid. We are committed to doing our part to advance a cleaner energy future and drive innovation that enables us to achieve net-zero carbon emissions by 2050 while maintaining energy reliability and affordability for the customers and communities we serve. PPL is a positive force in the cities and towns where we do business, providing support for programs and organizations that empower the success of future generations by helping to build and maintain strong, diverse communities today.OverviewThe Cybersecurity organization advances the overall state of security at PPL through critical initiatives and coordination of large security and customer-focused projects. The organization builds and procures technologies, tools, and processes to better enable teams at PPL to develop secure platforms and protect data and systems with appropriate security controls. IT Cybersecurity also develops systems to monitor and respond to attacks against our systems, provides educational awareness to the corporation on security best practices, and ensures data sharing relationships with third parties securely protect PPL information.PPL is seeking a highly skilled Operational Technology/Industrial Control Systems Principal Architect to join our Cybersecurity organization. In this role, you will work closely with our Operations, Information Technology, and Cybersecurity team to ensure the security and configuration of the PPL critical infrastructure.You will have direct responsibility for the usage and monitoring of the cyber technology within the OT/ICS environment as well as leading the OT/ICS security strategy. You will provide expert guidance, conduct security assessments, and provide detailed design and implementation of secure OT/ICS architecture. If you are passionate about OT/ICS and have a deep understanding of cybersecurity, architecture, infrastructure, risk, and compliance, this position is ideal for you.Responsibilities

Develop and Implement a comprehensive OT/ICS security strategy that aligns with the organization’s overall security objectives and regulatory requirements.

Design and document secure OT/ICS architectures that meet the organization's functional and security requirements.

Design and/or evaluate current OT/ICS infrastructure and incorporate security principles into all stages of the System Development Lifecycle.

Collaborate with cross-functional teams to integrate security controls and processes into OT/ICS infrastructure and applications.

Complete Threat Modeling assessments, analyze impact, and develop mitigation strategies.

Perform security reviews of architecture, infrastructure, and applications, identify gaps, develop a security risk management plan, and execute strategies to mitigate/address identified risk.

Responsible for the governance of OT/ICS Security policies, procedures, and standards.

Offer technical guidance and support to OT/ICS operations and engineering teams.

Assess and recommend security tools, technologies, and services that enhance OT/ICS security posture.

Serve as a Subject Matter Expert on OT/ICS Security related topics, best practices, emerging technologies and the evolving threat landscape.

Provide guidance, coaching, and support in the development of junior staff members.

All other duties and projects as assigned.

QualificationsEducation

Bachelor’s degree in Computer Science, Information Security, and/or a related field or an equivalent level of work related experience.

Experience

A minimum of 10+ years of direct OT/ICS security, including architecture, design, and implementation.

Strong understanding of OT/ICS technologies, including SCADA, PLC, and DCS systems

Experience in developing and deploying defense in depth and layered architecture within an OT/ICS environment.

Experience in designing and implementing network infrastructure within OT/ICS environment.

Expertise in system hardening, including vulnerability assessment, penetration testing, and configuration management.

Proficiency in conducting security testing, including vulnerability scanning, and static and dynamic code analysis.

Expertise in OT/ICS security frameworks and standards (e.g., NERC CIP, TSA, Purdue Model)

Ability to follow outlined processes and procedures with high degree of accuracy.

Experience working in Agile teams and have knowledge of Agile principles and practices.

Strong analytical skills to assess risks and vulnerabilities in complex systems.

Strong leadership, communication, and interpersonal skills.

Collaborative and effective in cross-functional team environments (including Network, IAM, Monitoring and Detection, Asset Management, etc.).

Experience assessing, hardening, and standardizing OT/ICS access control and management

Design and implementation of passive threat monitoring and detection capabilities

Practical experience working with technologies from OT/ICS vendors

Preferred Qualifications

Direct experience in utility and/or energy related industries.

Proficiency in scripting and automation for security testing.

Experience utilizing the Scaled Agile Framework (SAFe)

Certified Information Systems Security Professional- CISSP

Master's Degree in related technical discipline or MBA.

SANS ICS410: ICS/SCADA Security Essentials

SANS ICS515: ICS Visibility, Detection, and Response

SANS ICS612: ICS Cybersecurity In-Depth

SANS GIAC Response and Industrial Defense (GRID) Certified

SANS Global Industrial Cyber Security Professional (GICSP) Certified

SANS GIAC Critical Infrastructure Protection (GCIP) Certified

Education

Bachelor’s degree in Computer Science, Information Security, and/or a related field or an equivalent level of work related experience.

Experience

A minimum of 10+ years of direct OT/ICS security, including architecture, design, and implementation.

Strong understanding of OT/ICS technologies, including SCADA, PLC, and DCS systems

Experience in developing and deploying defense in depth and layered architecture within an OT/ICS environment.

Experience in designing and implementing network infrastructure within OT/ICS environment.

Expertise in system hardening, including vulnerability assessment, penetration testing, and configuration management.

Proficiency in conducting security testing, including vulnerability scanning, and static and dynamic code analysis.

Expertise in OT/ICS security frameworks and standards (e.g., NERC CIP, TSA, Purdue Model)

Ability to follow outlined processes and procedures with high degree of accuracy.

Experience working in Agile teams and have knowledge of Agile principles and practices.

Strong analytical skills to assess risks and vulnerabilities in complex systems.

Strong leadership, communication, and interpersonal skills.

Collaborative and effective in cross-functional team environments (including Network, IAM, Monitoring and Detection, Asset Management, etc.).

Experience assessing, hardening, and standardizing OT/ICS access control and management

Design and implementation of passive threat monitoring and detection capabilities

Practical experience working with technologies from OT/ICS vendors

Preferred Qualifications

Direct experience in utility and/or energy related industries.

Proficiency in scripting and automation for security testing.

Experience utilizing the Scaled Agile Framework (SAFe)

Certified Information Systems Security Professional- CISSP

Master's Degree in related technical discipline or MBA.

SANS ICS410: ICS/SCADA Security Essentials

SANS ICS515: ICS Visibility, Detection, and Response

SANS ICS612: ICS Cybersecurity In-Depth

SANS GIAC Response and Industrial Defense (GRID) Certified

SANS Global Industrial Cyber Security Professional (GICSP) Certified

SANS GIAC Critical Infrastructure Protection (GCIP) Certified

Develop and Implement a comprehensive OT/ICS security strategy that aligns with the organization’s overall security objectives and regulatory requirements.

Design and document secure OT/ICS architectures that meet the organization's functional and security requirements.

Design and/or evaluate current OT/ICS infrastructure and incorporate security principles into all stages of the System Development Lifecycle.

Collaborate with cross-functional teams to integrate security controls and processes into OT/ICS infrastructure and applications.

Complete Threat Modeling assessments, analyze impact, and develop mitigation strategies.

Perform security reviews of architecture, infrastructure, and applications, identify gaps, develop a security risk management plan, and execute strategies to mitigate/address identified risk.

Responsible for the governance of OT/ICS Security policies, procedures, and standards.

Offer technical guidance and support to OT/ICS operations and engineering teams.

Assess and recommend security tools, technologies, and services that enhance OT/ICS security posture.

Serve as a Subject Matter Expert on OT/ICS Security related topics, best practices, emerging technologies and the evolving threat landscape.

Provide guidance, coaching, and support in the development of junior staff members.

All other duties and projects as assigned.

Remote WorkThe company reserves the right to determine if this position will be assigned to work on-site, remotely, or a combination of both. Assigned work location may change. In the case of remote work, physical presence in the office/on-site may be required to engage in face-to-face interaction and coordination of work among direct reports and co-workers.Equal Employment OpportunityOur company is an equal opportunity, affirmative action employer dedicated to diversity and the strength it brings to the workplace. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, national origin, protected veteran status, sexual orientation, gender identify, genetic information, disability status, or any other protected characteristic.

Related jobs

  • Company Summary Statement

  • Allied Universal®, North America’s leading security and facility services company, provides rewarding careers that give you a sense of purpose. While working in a dynamic, diverse and inclusive workplace, you will be part of a team that fuels a culture that will reflect in our communities and customers we serve. We offer medical, dental and vision coverage, life insurance, retirement plan, employee assistance programs, company discounts, perks and more for most full-time positions!

  • Allied Universal®, North America’s leading security and facility services company, provides rewarding careers that give you a sense of purpose. While working in a dynamic, diverse and inclusive workplace, you will be part of a team that fuels a culture that will reflect in our communities and customers we serve. We offer medical, dental and vision coverage, life insurance, retirement plan, employee assistance programs, company discounts, perks and more for most full-time positions!

  • Allied Universal®, North America’s leading security and facility services company, provides rewarding careers that give you a sense of purpose. While working in a dynamic, diverse and inclusive workplace, you will be part of a team that fuels a culture that will reflect in our communities and customers we serve. We offer medical, dental and vision coverage, life insurance, retirement plan, employee assistance programs, company discounts, perks and more for most full-time positions!

  • Allied Universal®, North America’s leading security and facility services company, provides rewarding careers that give you a sense of purpose. While working in a dynamic, diverse and inclusive workplace, you will be part of a team that fuels a culture that will reflect in our communities and customers we serve. We offer medical, dental and vision coverage, life insurance, retirement plan, employee assistance programs, company discounts, perks and more for most full-time positions!

  • Allied Universal®, North America’s leading security and facility services company, provides rewarding careers that give you a sense of purpose. While working in a dynamic, diverse and inclusive workplace, you will be part of a team that fuels a culture that will reflect in our communities and customers we serve. We offer medical, dental and vision coverage, life insurance, retirement plan, employee assistance programs, company discounts, perks and more for most full-time positions!

  • Are you looking to elevate your cyber career? Your technical skills? Your opportunity for growth? Deloitte\'s Government and Public Services Cyber Practice (GPS Cyber Practice) is the place for you! Our GPS Cyber Practice helps organizations create a cyber minded culture and become stronger, faster, and more innovative. You will become part of a team that advises, implements, and manages solutions across five verticals: Strategy, Defense and Response; Identity; Infrastructure; Data; and Application Security. Our dynamic team offers opportunities to work with cutting-edge cyber security tools, and grow both vertically and horizontally at an accelerated rate. Join our cyber team and elevate your career.

Job Details

Jocancy Online Job Portal by jobSearchi.