Senior OT Cybersecurity Engineer Specialist

Senior OT Cybersecurity Engineer/ Specialist
Worley Consulting Group
Americas

Worley Consulting. Be part of the solution.

Worley Consulting is a global group of consultants scientists engineers and digital experts dedicated to solving the worlds critical infrastructure environmental energy and resource challenges.

We partner with our customers to find solutions that create value over the life of their assets. We implement new technologies to run assets more efficiently secure and safeguard social license support local communities and accelerate the energy transition.

We evaluate options and identify opportunities and risks to support our customers decision making. We assist with asset strategy and selection business case preparation concept and feasibility studies technology evaluation energy strategies and asset operational excellence.

Purpose:

We are seeking a highly experienced and strategic Senior OT Cybersecurity Engineer to join our this role you will be responsible for designing implementing and overseeing comprehensive cybersecurity solutions for operational technology (OT) environments including telecom infrastructure SCADA PLC and DCS platforms. You will lead the development of security architectures conduct vulnerability assessments and facilitate the implementation of security controls in accordance with industry standards and regulatory requirements. Candidates should possess extensive experience in OT/ICS security SCADA system architecture industrial control protocols and network segmentation with a proven track record of safeguarding critical infrastructure mining and Oil & Gas production environments.

This is a full-time hybrid position based at a Worley office in the U.S. or Canada: in the United States: Phoenix Arizona; Houston Texas or Charleston West Canada Calgary/Edmonton Alberta; or Sudbury/ Markham/ Sarnia Ontario.

Overall Responsibilities and Key Accountabilities:

• Design develop and implement comprehensive cybersecurity architectures for operational technology environments in compliance with industry standards and client requirements.
• Conduct security assessments threat modelling and risk analysis of SCADA systems PLCs and industrial control networks.
• Lead the implementation of security controls including network segmentation access controls and defence mechanisms across OT infrastructure.
• Develop and implement OT cybersecurity policies procedures and standards aligned with regulatory requirements and best practices.
• Perform vulnerability assessments and manage contractors to perform penetration testing on industrial control systems and provide remediation recommendations.
• Design and oversee the deployment of anomaly-detection and security-monitoring solutions for OT environments.
• Provide technical guidance and mentorship to cybersecurity and OT engineering teams on security best practices and emerging threats.
• Collaborate with operational teams to ensure security implementations maintain system availability and performance.
• Review and assess third-party OT systems devices and integration designs for security compliance and alignment with company standards.
• Manage and coordinate security patch management firmware updates and security hardening across OT systems.
• Lead incident response and forensic investigation activities for security events in operational technology environments.
• Prepare comprehensive security reports risk assessments and presentations for senior management and stakeholders.
• Liaise with vendors integrators and external consultants to ensure security requirements are met throughout the project lifecycle.
• Assist in new tenders RFPs and contract negotiations by providing technical security assessments and recommendations.
• Stay current with emerging OT cybersecurity threats vulnerabilities and mitigation strategies through continuous professional development.
• Maintain compliance with all relevant American and international health safety environmental quality and cybersecurity legislative requirements.

What you will bring:
Technical and Industry Experience:

• Significant experience in operational technology (OT) systems industrial control systems (ICS) or SCADA environments.
• Demonstrated experience in a senior cybersecurity role specifically focused on OT/ICS security risk and threat assessment and security architecture design.
• Significant experience in engineering design of green- and brownfield projects with operational technology (OT) systems industrial control systems (ICS) or SCADA environments. Full design project lifecycle from FEED to handover.
• Demonstrated experience in a consultancy role for major clients in the US and Canada.
• Experience leading teams of consultants in a project environment and managing inter-office work.
• Knowledge of industrial control systems including PLC SCADA platforms and distributed control systems (DCS).
• Comprehensive understanding of industrial protocols (Modbus Profibus EtherCAT OPC DNP3) and network segmentation strategies.
• Strong knowledge of OT cybersecurity frameworks and standards (ISO 27001 NIST CSF and SPs Frameworks ISA/IEC 62443 CIRCIA Act) and their implementation and integration to engineering design.
• Demonstrated expertise leading security assessments penetration testing and vulnerability management in operational technology environments.
• Demonstrated expertise in zero-trust architecture micro segmentation and defense-in-depth strategies for OT systems.
• Advanced knowledge of anomaly detection systems and security monitoring in industrial environments.
• Experience managing and coordinating security implementation across multiple OT systems and vendors.
• Proficiency with security tools SIEM platforms and OT-specific monitoring solutions.
• Advanced proficiency in Python SQL and scripting languages for security automation and analysis.
• Relevant security certifications highly desired (CISSP GICSP ISA/IEC 62443 Cybersecurity Expert or equivalent).
• Strong project management capabilities and experience managing security budgets and resource allocation.
• Demonstrated expertise in writing risk and threat assessment reports and conducting workshops with clients.

Soft Skills:

• Expert verbal and written communication skills with the ability to convey complex security concepts to both technical and non-technical audiences.
• Demonstrated ability to work under pressure manage competing priorities and maintain focus on accuracy and attention to detail in security-critical environments.
• Able to maintain strong relationships with senior management vendors and peers while pushing for positive schedule quality and strategic outcomes.
• Ability to maintain confidentiality and protect sensitive security information and intellectual property.
• Highly organized reliable hands-on team player with the ability to lead cross-functional security initiatives.
• Ability to effectively manage own time and ability to work overtime when necessary.
• Enthusiastic proactive open service-minded and spontaneous working attitude and communication style.
• Proficiency and commitment to thoroughness in security assessments and implementations.
• Proactive innovative and forward-thinking approach to emerging security challenges and technological advancements.

Education Qualifications Accreditation Training:

• Recognized Bachelors degree or Masters degree in Telecommunications Electrical Electronics Control Systems Computer Science or related field from an accredited College or University.

Please note: No agency representation or submissions will be recognized for this vacancy.

Worley Consulting offers an excellent remuneration & benefits package a friendly professional dynamic and flexible work environment along with the opportunity to develop your career prospects locally and internationally.

We strive to be an industry leader in health safety and environmental performance. Our vision is to achieve zero harm to people and assets and zero environmental incidents. We select people who share our values beliefs and commitment to this vision and who demonstrate the expected behaviors competencies and performance associated with their prospective roles within the company.

Were committed to building a diverse inclusive and respectful workplace where everyone feels they belong can bring themselves and are heard. We provide equal employment opportunities to all qualified applicants and employees without regard to age race creed color religion sex national origin ancestry disability status veteran status sexual orientation gender identity or expression genetic information marital status citizenship status or any other basis as protected by federal state or local law.

Our policy is to conduct background checks for all U.S. candidates who accept an offer of employment with us.

We thank all candidates for their interest; however only those selected for interviews will be contacted. Worley Group is an equal opportunity employer.