OT Engineer- Information Security II USA

Clock icon

First Solar reserves the right to offer you a role most applicable to your experience and skillset.

Basic Job Functions:

  • Responsible for ensuring the security of the organization’s global Operational Technology (OT) environments. This will involve identifying and mitigation cyber threats, monitoring systems for vulnerability, and developing and implementing cyber defense. The ideal candidate will have experience in both information security and automation technologies focusing on industrial controls systems. Additional responsibilities include serving as a member of the Information Security team and providing global incident response support as a member of the Cybersecurity Incident Response Team, representing OT cybersecurity requirements into Enterprise cybersecurity strategies, and working closely with Manufacturing Engineering and Automation teams, Manufacturing Production, Safety, Corporate IT and the Information Security team to improve the cybersecurity and resilience of OT systems and networks.

Education/Experience:

  • Bachelor’s degree in MIS, computer science, or related field
  • Minimum 1 years of relevant cybersecurity experience, plus at least 2 years of experience working with Industrial Automation & Control Systems in production manufacturing environments.

Required Skills/Competencies:

  • Strong knowledge and/or demonstrated experience with security tools is required.
  • 1+ years of experience with IdM, UBA, ATD, IPS/IDS is a plus.
  • 3+ years of experience with various Microsoft Windows operating systems is required.
  • 3+ years of experience with various Microsoft Windows Server operating systems is required.
  • 3+ years of experience with Network server /Active Directory (AD) administration experience required.
  • 3+ years of experience with Non-Windows Operating Systems.
  • Experience with network security scanning tools (Nessus, Qualys, ISS, etc.) required.
  • Knowledge of industrial control systems security standards and reference models ( IEC 62443, NIST Cybersecurity Framework, Purdue reference model) is required.
  • Hands on experience with operational technologies such as Programmable Logic Controllers (PLCs), Supervisory Control and Data Acquisition ( SCADA ) software, and Distributed Control Systems ( DCS ) is required.
  • Fundamental understanding of IT and OT network communication protocols (For example: TCP /IP, UDP , DNP3, Modbus, IEC 61850, OPC , OPC UA, PROFINET , etc.) is required.
  • Understanding of cyber threats, vulnerabilities, and exploits specific to ICS (Triton/Trisis, BlackEnergy, IronGate, Havex) is required.
  • Programming (scripting) experience desired.
  • Hands on strong experience with and very knowledgeable of security operations, scripts reading and understanding, basic knowledge in different languages: JS, Python, PowerShell, C#
  • Experience with database management software, such as MySQL, Oracle RDBMS, and Microsoft SQL Server.
  • Strong understanding of event analysis, incident response, threat intelligence, cyber investigation methodology and chain-of-custody requirements.
  • Strong knowledge of risk assessments, penetration testing, vulnerability analysis or disaster recovery
  • Working knowledge of Enterprise Firewalls is required.
  • Good knowledge or prior experience with SIEM and end-point protection (SCEP, Sophos, Bit9, Carbon Black, Crowdstrike) a plus.
  • Ability to work in a 24x7 global environment
  • Working knowledge of integrated MFA with OAUTH or SAML technologies, 1+ years’ experience with ADFS or IDaaS preferred.
  • Working knowledge and/or prior experience with Digital Rights Management a plus.
  • Experience Managing project timelines, budgets, and documentation
  • Experience preparing network analytics, data reports and operational manuals.
  • Excellent Organization / Communication Skills.

Essential Responsibilities:

Primary Responsibilities:

  • Operational day-to-day engineering support of targeted security products/systems.
  • Primary Industrial Control Systems ( ICS ) and OT cybersecurity liaison for global manufacturing environments, product lines, projects, and digital services.
  • Investigates, troubleshoots, analyzes and resolves problems related to the OT security infrastructure as well as application and system problems that have been escalated for senior level support.
  • Write, review, and maintain documents, policies, and standards governing the cybersecurity requirements for the OT environment.
  • Lead and execute risk-based methodologies for cybersecurity assessments of ICS systems, including remote sites, onsite and third parties based on industry standards and best practices.
  • Development and execution of OT cybersecurity training and awareness program, with focus on improving cyber posture and hygiene across the global manufacturing footprint.
  • Stays informed about the latest cyber threats to the OT and ICS environment including threats towards the organization.
  • Collaborate with Manufacturing Engineering and Automation stakeholders to align on highest priority cybersecurity actions and develop plans to execute.
  • Support updates to the Incident Response plans
  • Audits the First Solar AD structure to verify that only those rights and privileges necessary are properly assigned.
  • Participate in solution design reviews for applications, servers and networking.
  • Response to security incidents and provides fault resolution and escalation.
  • Analyzing network data and infrastructure to determine inefficiencies and problems.
  • Developing and designing network architecture and computer systems infrastructure.

Key Competencies:

  • Undertakes analytical activities and delivers analysis outputs, in accordance with customer needs and conforming to agreed security standards.
  • Develops cybersecurity Technology implementation strategies for OT environments with clear understanding of the differences between IT and OT environments (e.g. 24×7 production operating model, safety and environmental risk factors, patching and anti-virus processes, segmentation requirements and security policies in ICS environments, etc.).
  • Analysis of manufacturing processes; identifies alternative solutions, assesses feasibility, and recommends new approaches. Contributes to evaluating the factors which must be addressed in the change program. Helps establish requirements for the implementation of changes in the manufacturing process.
  • Collaborates with Capital Program/Project teams to deliver ‘security by design’ into greenfield and brownfield manufacturing projects, including providing guidance on company cybersecurity policies and standards to industrial automation vendors.
  • Applies data analysis and data modeling techniques to establish, modify or maintain a data structure and its associated components (entity descriptions, relationship descriptions, attribute definitions).
  • Reviews requirements and specifications, and defines test conditions. Designs test cases and test scripts under own direction, mapping back to pre-determined criteria, recording and reporting outcomes. Analyses and reports test activities and results. Identifies and reports issues and risks associated with own work.
  • Selects and uses tools and methods to establish, clarify and communicate the user experience, users' characteristics and tasks, and identifies the technical, organizational and physical environment in which complex products or systems will operate.
  • Develops implementation plans for dealing with more complex requests for change, evaluates risks to integrity of infrastructure inherent in proposed implementations, seeks authority for those activities, reviews the effectiveness of change implementation, and suggests improvement to organizational procedures governing change management. Leads the assessment, analysis, development, documentation and implementation of changes based on requests for change.
  • Identifies and resolves issues with applications, following agreed procedures. Uses application management software and tools to collect agreed performance statistics. Carries out agreed applications maintenance tasks.
  • Other duties as assigned.
  • Job description subject to change at any time.

Reporting Relationships:

  • This position will report to the Manager- IT Security

Travel:

  • 0% - 5% (On occasion/as needed for training, etc.)

Estimated Annual Salary Range:

  • $75,000 - $100,000 Estimated Annual Salary

US Physical Requirements:

  • Will sit, stand or walk short distances for up to the entire duration of a shift.
  • Will climb stairs on an occasional basis.
  • Will lift, push or pull up to 27 pounds on an occasional basis.
  • Required to use hands to grasp, lift, handle, carry or feel objects on a frequent basis.
  • 20/40 vision in each eye, with or without correction, is required.
  • Must be able to comply with all safety standards and procedures.
  • May reach above shoulder heights and below the waist on a frequent basis.
  • May stoop, kneel, or bend, on an occasional basis.
  • Ability to wear personal protective equipment is required (including but not limited to; steel toed shoes, gloves, safety glasses, hearing protection, protective jacket or apron and arm guards).
  • All associates working on the production floor may be required to wear a respirator at any given time and thus, the ability to wear a respirator is a condition of employment and continued employment (requires little or no facial hair).

All positions in our office require interaction with people and technology while either standing or sitting. To best service our customers, internal and external, all associates must be able to communicate face-to-face and on the phone with or without reasonable accommodation. First Solar is committed to compliance with its obligations under all applicable state and federal laws prohibiting employment discrimination. In keeping with this commitment, it attempts to reasonably accommodate applicants and employees in accordance with the requirements of the disability discrimination laws. It also invites individuals with disabilities to participate in a good faith, interactive process to identify reasonable accommodations that can be made without imposing an undue hardship.

Potential candidates will meet the education and experience requirements provided on the above job description and excel in completing the listed responsibilities for this role. All candidates receiving an offer of employment must successfully complete a background check and any other tests that may be required.

Equal Opportunity Employer Statement: First Solar is an Equal Opportunity Employer that values and respects the importance of a diverse and inclusive workforce. It is the policy of the company to recruit, hire, train and promote persons in all job titles without regard to race, color, religion, sex, age, national origin, veteran status, disability, sexual orientation, or gender identity. We recognize that diversity and inclusion is a driving force in the success of our company.