OT Protocol & Device Specialist - Network Security

Description :

We are looking for a talented and driven Industrial Network & Security Engineer to join our OT SOC development team. In this role, you will be responsible for designing, securing, and maintaining the IT-OT network infrastructure, configuring detection systems like Zeek and Suricata, and ensuring the network complies with industrial cybersecurity standards. You'll work closely with OT protocol analysts and ML engineers to monitor and secure real-time industrial network traffic.

Responsibilities :

- Design and maintain secure IT-OT segmented networks, including VLANs, firewalls, and routing policies.

- Configure and manage industrial network security devices, including network taps, SPAN ports, sensors, and IDS/IPS solutions such as Zeek and Suricata.

- Develop and fine-tune custom Suricata rule sets to match OT threat models and operational contexts.

- Extend Zeek capabilities by adding new protocol dissectors and traffic parsers relevant to ICS/SCADA environments.

- Manage secure remote access solutions, including VPNs, jump servers, and bastion hosts, to control access between IT and OT systems.

- Work on hardening OT networks, implementing access controls, and minimizing attack surfaces across industrial systems.

- Ensure compliance with industry standards and cybersecurity frameworks such as IEC 62443, NIST 800-82, and ISA 99.

- Collaborate with cross-functional teams, including ML engineers, protocol analysts, and plant operations, to identify anomalies and optimize detection mechanisms.

- Support the build-out and daily operations of an OT Security Operations Center (SOC).

Eligibility :

- B.Tech / M.Tech in Electronics, Electrical, Computer Science, or related field.

- 3 - 6 years of experience in OT network management, ICS cybersecurity, or industrial IT infrastructure.

- Strong understanding of industrial Ethernet, serial communication protocols (RS-232/485), and typical fieldbus technologies.

- Hands-on experience with firewall configuration, VLAN segmentation, routing, and network access control.

- Proficient in using and customizing network monitoring and intrusion detection tools such as Suricata, Zeek, Snort, and Wireshark.

Desired Eligibility :

- Certifications such as Cisco CCNA/CCNP, GICSP, or ISA/IEC 62443 Cybersecurity Expert.

- Familiarity with ICS/SCADA systems and architectures from vendors like Siemens, Schneider, ABB, or Rockwell.

- Experience in deploying or managing an OT SOC or SIEM in an industrial environment.

- Scripting or programming skills (e.g., Python, Lua, or Bash) for automating network analysis or rule updates.

- Knowledge of MITRE ATT&CK for ICS or similar threat frameworks.