102 Crane Company

Compensation

Full Description

The OT Security Engineer, Global Information Security (GIS) will have primary responsibility for Crane’s Operational Technology security solutions that protect Crane’s manufacturing environments. You will implement OT and IoT security solutions throughout the enterprise and ensure that OT/IoT security solutions identify threats, uncover vulnerabilities, and measure risks of operational equipment. Coordinating with both IT and OT teams at all manufacturing sites, you will define and develop security standards and technical solutions. As a subject matter expert in the hardening and defense of OT, you will work with business units to implement security standards, securely modify systems, and implement secure network architectures during implementations of OT related projects to ensure secure system deployments. You will work closely with other GIS functional areas, supporting security engineering, administration, operations, and incident response. You will integrate the OT/IoT security solutions with other GIS and business unit tools such as SIEM, SOAR, AD, and other tools to gain a unified view of security events and respond more effectively to security incidents both for OT and IT. Responsibilities and Duties: Support and maintain OT/IoT security tool set and associated integrations with other systems Collaborate with the manufacturing function across lines of business to develop and define security requirements Design OT security controls for architectures, systems and networks ensuring that alerting to threats is efficient and effective. Identify and implement supporting security technologies for the identification of threats and defense of OT systems and provide secure methods for remote access. Work directly with plant leaders, process engineers, and support/system vendors to ensure OT security controls are implemented Develop and implement standard work supporting the Global OT security function and supporting solutions Develop and maintain security models, templates, standards and procedures that can be used to leverage security capabilities in projects and operations Assist in the identification, response, investigation, and remediation of OT security events and incidents as needed Ensure security best practices are identified and integrated into all approaches and methodologies. Define requirements and design standards to protect Crane’s OT solutions from security threats and for mitigating the impacts of these threats. Define reference network architectures based on industry best practices and work with business units to implement for OT solutions Consult on business unit OT projects and provide cybersecurity expertise Qualifications and Competencies: 2yrs experience with securing Operational Technology and related systems environments Strong understanding and prior experience with the application of securing OT and related systems Current deep technical understanding of common OT systems such as PCS, SCADA, PLCs, RTUs, HMIs, CNC Deep technical understanding of TCP/IP Networking and Firewalls Deep technical understanding of system integration methods including API’s and authentication methods Knowledgeable in NIST CSF, NIST 800-82, Purdue Model, IEC 62443 standards Solid foundation cybersecurity domains such as network security, EDR, anomaly detection Understanding of common OT communications protocols such as MQTT, MODBUS, DNP3, S7, G-code Comfortable with designing and overseeing the implementation of secure OT architectures Prior experience in the direct remediation of vulnerabilities or compensating controls within OT environments Commitment to security training and earning corresponding certifications Highly motivated with passion for solving complex problems Excellent verbal and written communication skills, comfortable with presenting to Operational Teams Flexibility to work outside regularly scheduled/normal business hours as required Ability and desire to travel both domestically and internationally Required: Degree in a related field or at least 4 years relevant professional experience Required: Mobility and ability to be on your feet for long periods in a manufacturing setting Required: Technical professional security certification such as GICSP, GRID, OSCP, CEH or similar US Person as defined under EAR PART 772 AND ITAR 120.15 This description has been designed to indicate the general nature and level of work being performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job. Crane Company. is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, color, religion, gender, sexual orientation, general identity, national origin, disability or veteran status. At Crane, we believe that attracting and retaining the highest quality people is the best insurance of success. Our goal is to recruit talented people and train them within a culture that calls for performance with trust and respect. Join us. The unique backgrounds and differences of our associates make us stronger, more capable, and more successful. Beyond an associate’s base compensation, we reward and reinforce wellbeing with a compelling package of both cash and non-cash benefits, including comprehensive health, wellness incentives, assistance with retirement savings, paid time off, paid holidays, and tuition reimbursement — as well as performance-based bonus programs for certain positions. Crane prioritizes career development for our associates. All associates receive an annual development plan that includes a mixture of on-the-job coaching and formal training experiences to support individual development needs. We firmly believe in associate growth that supports career progression and we will proactively support your ongoing career development.