Specialist II, Information Security - OT/MES

PURPOSE: We are seeking a technically skilled and adaptable cybersecurity professional to lead and support the protection of both our Operational Technology (OT) and core Infrastructure systems. As a Specialist II in Cybersecurity Operations, you will play a critical role in shaping and executing cybersecurity strategies that safeguard industrial control systems, shop floor technologies, and enterprise network infrastructure.

The ideal candidate brings experience with enterprise switching, routing, and firewalls, along with an understanding of OT networking requirements and the operational role of MES platforms. They will work closely with cybersecurity, infrastructure, and plant engineering teams to reduce risk, maintain visibility, and support secure connectivity across hybrid networks. A strong understanding of network protocols, access control, and system hardening is essential. The successful candidate must be able to work across IT, engineering, and operations teams to drive segmentation, secure architecture, and continuous improvement in both visibility and threat response. This position requires both strategic and tactical execution, strong communication skills, and a solution-oriented mindset capable of navigating both legacy and modern systems in complex environments.

DUTIES AND RESPONSIBILITIES

•    Develop and implement cybersecurity strategies for infrastructure and OT/MES environments aligned with business goals, corporate security policies, and industry standards (e.g., NIST 800-82).
•    Support network segmentation strategies to reduce risk and align with security frameworks (e.g., NIST, Purdue Model).
•    Collaborate with IT and cybersecurity teams to support threat detection, investigation, and response.
•    Continuously evaluate network configurations and propose improvements to security.
•    Partner with plant operations and engineering teams to understand organizational needs to implement secure solutions.
•    Assess risks in existing infrastructure systems, identify security gaps, and recommend practical mitigation strategies.
•    Support secure connectivity and access controls for MES platforms that interface with both enterprise and shop floor systems.
•    Deploy and manage infrastructure visibility tools such as Cisco Cyber Vision.
•    Identify and lead efforts to remediate vulnerabilities in both legacy and modern systems, including PLCs and network devices.
•    Contribute to integration of telemetry into enterprise monitoring platforms and SIEMs.
•    Assist with incident response and respond to incident escalations as part of an on-call rotation.
•    Support audit and compliance activities related to controls, assessments, and remediation.
•    Manage vendor relationships related to cybersecurity solutions, controls, and services.
•    Assist in automating repetitive security tasks through scripting (e.g., PowerShell, Python).
•    Identify opportunities for cost savings through tool optimization, process improvements, and automation.
•    Raise cybersecurity awareness within the OT and infrastructure environments.
•    Stay informed on evolving cyber threats, technologies, and industry trends.
•    Collaborate with fellow security team members and the broader IT department to improve the organization's overall security posture.
•    Perform other cybersecurity-related duties and responsibilities as assigned, based on organizational priorities and evolving security needs.

• Must be in or willing to relocate to the Cleveland, OH area

BASIC REQUIREMENTS

•    Bachelor’s degree in Cybersecurity, Information Technology, Engineering, or a related field preferred.
•    10+ years of experience in Cybersecurity and Enterprise network environments, with experience with OT and industrial control systems.
•    Experience with network and OT-specific tools (e.g., Cisco Cyber Vision, Claroty) and asset visibility solutions.
•    Familiarity with MES platforms and the networking considerations for interfacing MES with both IT and OT systems.
•    Familiarity with industrial communication protocols (e.g., Modbus, DNP3, OPC) and network segmentation strategies.
•    Strong understanding of network security fundamentals including VLANs, firewalls, VPNs, jump servers, and secure architecture principles.
•    Experience with Cisco, Palo Alto firewalls or Prisma cloud service is a must.
•    Solid knowledge of IT infrastructure administration, including Active Directory, DNS, DHCP, Group Policy, access control, endpoint hardening, Windows Server roles, and scripting (e.g., PowerShell).
•    Working knowledge of vulnerability management tools and remediation practices in both OT and IT environments.
•    Ability to interpret and apply security frameworks (e.g., NIST 800-82, ISA/IEC 62443, NIST CSF).
•    Comfortable working in manufacturing environments and engaging with plant-floor staff.
•    Demonstrates flexibility in responding to unexpected demands. Contributes willingly during emergencies and other necessary situations during and/or after regular work hours.
•    Strong written and verbal communication skills with the ability to work cross-functionally.
•    Ability to work independently and collaboratively in a global, matrixed team environment.
Relevant certifications preferred (e.g., GICSP, GRID, CISSP, CCNA, CCNP, CompTIA Security+, Network+).