Manager, OT Cybersecurity
NOVEC · Manassas, VA · 2 wk ago
HybridInformation TechnologyFull-time
Cybersecurity Overview
The ideal candidate will have a strong background in OT cybersecurity governance, threat management and incident response, enterprise network experience and a proven understanding of recognized compliance standards. The OT Cybersecurity Manager is responsible for developing, implementing, and managing cybersecurity planning and controls for the organization’s OT environments. This includes securing industrial control systems, SCADA networks, and other critical infrastructure components against cyber threats while ensuring minimal disruption to operations.
Duties and Responsibilities
- Work closely with department ITC VP to develop and maintain the OT cybersecurity roadmap aligned with enterprise cybersecurity policies and industry standards.
- Establish governance frameworks for OT cybersecurity, including risk assessments, policies, and procedures.
- Ensure ITIL Change management framework best practices.
- Lead threat detection, monitoring, and incident response for OT environments.
- Cook with IT cybersecurity teams to ensure unified threat intelligence and response capabilities.
- Conduct root cause analysis and post-incident reviews for OT related cybersecurity events.
- Oversee the deployment and management of OT specific cybersecurity tools (e.g., anomaly detection, network segmentation, asset discovery).
- Ensure secure architecture and network design for SCADA systems.
- Manage patching strategies and compensating controls for legacy OT systems.
- Collaborate with Operations, Risk Management, and ITC teams to ensure cybersecurity without disrupting production.
- Provide training and awareness programs for OT personnel on cybersecurity best practices.
- Present findings and recommendations to stakeholders in a clear and actionable manner.
- Provide guidance on cyber-driven decision-making and best practices for OT cyber management.
- Ensure compliance with regulatory and industry-specific standards (e.g., NERC CIP, NIST).
- Conduct regular risk assessments and audits of OT environments.
- Maintain documentation for audits, assessments, and incident reports.
- Use of OT cybersecurity tools and network segmentation strategies.
- Leverage data visualization tools like Tableau, Power BI, or similar for presenting insights.
- Supervise and mentor a team of cyber analysts and support staff.
- Foster a culture of continuous improvement, collaboration, and innovation.
- Lead cross-functional projects involving application upgrades, migrations, and new implementations.
- Ensure projects are delivered on time, within scope, and within budget.
- Stay up-to-date with the latest trends and advancements in cyber tools, AI and automation technologies.
- Identify opportunities for improving business processes.
- Contribute to the development of best practices and standards for the organization’s OT cybersecurity.
Education and Experience
- A bachelor’s degree in computer science, information technology or a related field is required.
- 7+ years of experience in cybersecurity, with at least 3 years focused on OT/ICS environments.
- Demonstrated experience managing technical teams and leading technical projects.
- CISSP, CISM, CRISC, CSSA, SCADA certifications preferred.
- Strong understanding SCADA applications, OT cybersecurity tools and SIEMs.
- Experience in the utility industry is preferred.
Knowledge, Skills & Abilities
- Demonstrated ability to apply analytical methodology to problem-solving and decision-making and relate theoretical and technical concepts to practical application.
- Demonstrated ability to communicate effectively and efficiently with all levels of staff, both orally and in writing, while maintaining professionalism under all circumstances.
- Sound problem-resolution, judgment, and decision-making skills.
- Demonstrated knowledge of contract administration and current IT technologies that apply to the company.
- Demonstrated ability to produce results in a data-intensive environment.
- Demonstrated ability to learn and understand information systems requirements to deliver results quickly.
- Demonstrated ability to manage and maintain the integrity of sensitive material and confidential business data.
- Demonstrated organizational and analytical skills and abilities.
- Perform job responsibilities promptly and accurately within established guidelines under minimal supervision while providing superior customer service.