Cybersecurity Operations Technology Engineer

Job Description

Job Summary 

Seeking a highly skilled Cybersecurity OT Engineer to secure and maintain the integrity, availability, and confidentiality of our critical energy infrastructure. You will protect and monitor OT/ICS systems across our generation plants, substations, SCADA networks, control centers, and field assets. This position requires deep technical knowledge of ICS cybersecurity, industrial protocols, and the unique threat landscape of the energy sector.

Key Responsibilities

• Design and implement layered security controls for OT environments such as Power Generation, Substation Automation, Transmission & Distribution Networks
• Harden field-deployed OT assets (PLCs, RTUs, IEDs, HMIs) per NERC CIP, ISA/IEC 62443, and NIST 800-82
• Deploy and manage industrial firewalls, network access control (NAC), and micro-segmentation using L2/L3/VLAN zoning and DMZ architectures.
• Implement and tune OT-specific IDS/IPS solutions (e.g., Dragos, Nozomi Networks, Claroty, Tenable.ot).
• Integrate OT telemetry into centralized SIEM (Splunk, Sentinel, etc.) with asset tagging and alert enrichment.
• Perform protocol-aware traffic analysis (Modbus, DNP3, IEC 61850, OPC UA, GOOSE) to detect anomalies and APT activities.
• Conduct quarterly vulnerability scans on OT networks using air-gapped or passive techniques.
• Maintain a security-focused patch management lifecycle for ICS firmware, SCADA software, and Windows/Linux operator consoles.
• Implement whitelisting and application control for locked-down HMI/engineering workstations.
• Ensure alignment with NERC CIP, NIST CSF, ISO 27001, and local regulatory frameworks for critical infrastructure protection.
• Create and maintain system security plans (SSPs), asset inventories, firewall rulesets, and data flow diagrams.
• Assist compliance teams with audit readiness and evidence gathering for NERC or regulatory inspections.
• Develop and maintain OT-specific incident response plans and playbooks.
• Perform root cause analysis and forensic investigation of security events in OT environments.
• Cross-Team Collaboration and act as technical security liaison between OT engineering, cybersecurity operations, and site/plant managers.
• Review and validate security posture of new substation equipment, DER controls, BESS, and SCADA upgrades.
• Assist with secure integration of IIoT devices, remote maintenance systems, and AI/ML analytics platforms in energy environments.

Preferred certifications:

• GICSP, GRID, ISA/IEC 62443, NERC CIP Certification, CISSP, or SANS ICS410/515.

Experience

• 8-10 years securing industrial control systems in energy sector.
• In-depth hands-on experience with:
• SCADA/DCS systems (GE, ABB, Siemens, Schneider, Emerson)
• Field devices (IEDs, RTUs, protective relays, telemetry units)
• Secure remote access solutions (e.g., jump hosts, unidirectional gateways)

About Petroplan

Petroplan is the trusted, specialist global Talent Solutions partner of choice for employers and professionals in the Energy sector. Since 1976, Petroplan has been here to help people like you make the most of the opportunities available and find the best fit for you as an individual.

Over 10,000 placements in more than 55 countries for over 550 clients across 65 disciplines.

In an industry where skilled and experienced professionals are increasingly sought after resource, we appreciate the true value of what you have to offer. What's more, we understand that different things are important to different people in today's world of work - it's about making exactly the right connections for you as an individual.

Our reputation for contractor and candidate care, understanding what makes you tick, and finding you the best match is second-to-none. We understand the industry inside-out and seek to understand YOU and your motivations in the same way. We take the time to evaluate your individual strengths, understand the most important things to you, and establish exactly what you're looking for from your next role.