OT Cybersecurity Engineer

Vantage Data Centers offers a comprehensive benefits package, a culture that prioritizes uptime, security, and collaboration, and a clear path for professional growth. This onsite role in Denver provides the opportunity to shield critical OT/ICS operations by partnering with operations, security, and vendor teams to advance robust OT cybersecurity practices.

• Medical, dental, and vision coverage
• Life and AD&D insurance
• Short and long term disability coverage
• Paid time off
• Employee assistance program
• 401(k) with company match
• Access to additional voluntary benefits

Responsibilities

• Collaborate with the Senior OT Cybersecurity Engineer to represent OT security at regional forums, engaging site operations, vendors, and internal stakeholders to ensure consistent OT cybersecurity adoption.
• Deploy and manage Secure Remote Access and Privileged Access Management solutions to control and monitor third party access to critical OT environments.
• Conduct OT asset discovery, maintain inventories, and classify risk using OT monitoring platforms; support deployment and tuning of ICS/OT IDS solutions.
• Lead vulnerability assessments of OT assets and coordinate remediation with Automation, Site Operations, Networking, and Cyber Security teams.
• Integrate OT security monitoring into SOC workflows, including alert tuning and playbook development.
• Partner with data center operations to preserve uptime and operational resilience while applying cybersecurity controls.
• Assess products and technologies considered by Data Center teams for cybersecurity implications prior to adoption or deployment.
• Perform OT cybersecurity risk assessments aligned with industry best practices and frameworks, contributing to audits and governance activities.
• Implement and support OT monitoring and analytics tools to improve threat detection, hunting, and forensics.
• Evaluate OT system criticality and potential operational impacts from cyber events to inform resilient architecture design.
• Research, develop, and operationalize defensive TTPs for OT threat detection and response; advance OT cyber resiliency architectures.
• Collaborate with other departments to review network architectures for security best practices and alignment.
• Coordinate with vendors to produce and maintain detailed deployment diagrams, procedures, and plans.
• Maintain documentation and represent the Cybersecurity team in client vendor and stakeholder meetings.
• Stay informed about industry trends, threats, and security tools to support enterprise security efforts.
• Perform ad hoc duties to support the company’s security goals.

Technologies

• Secure Remote Access (SRA) and Privileged Access Management (PAM)
• OT monitoring platforms and ICS/OT IDS solutions
• Building Management Systems (BMS) and Electrical Power Management System (EPMS)
• SCADA platforms and PLC platforms (Siemens, Schneider, Rockwell)
• Industrial protocols (Modbus, DNP3, BACnet, OPC, S7, CIP)
• Passive OT monitoring solutions (Tenable, Nozomi, Claroty)
• Firewalls, IDS/IPS, DPI, WAF, Web filtering, App Control
• Networking environments (routing, switching, VLANs, security, wireless)
• SIEM, SOAR, and XDR technologies
• Windows and Linux server architectures within IT/OT environments
• Cloud and virtualization platforms supporting OT workloads

Requirements

• 5 to 10 years of OT cybersecurity experience
• Hands-on experience deploying and configuring OT security solutions in OT settings
• Design and implementation experience for IDS or SRA, network segmentation, firewalls, and endpoint security
• Practical knowledge of one or more: Building Management Systems, EPMS, SCADA, PLC platforms (Siemens, Schneider, Rockwell), and industrial protocols
• Experience with passive OT monitoring tools such as Tenable, Nozomi, or Claroty
• Familiarity with networking equipment and concepts plus SIEM, SOAR, and XDR technologies
• Experience with Windows and Linux servers in IT/OT environments, and with cloud/virtualization for OT workloads
• Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or related technical field; or 4 additional years of engineering experience (military, public or private sectors)
• 3 years of cybersecurity risk assessment experience in IT/OT settings
• Strong understanding of ICS/OT cybersecurity frameworks and OT network protocols
• ISA/IEC 62443 certificates preferred; GICSP, GRID, CIP or similar certifications preferred
• Knowledge of MITRE ATT&CK for ICS, NERC CIP, and NIST SP 800-61 Rev. 2 and 800-82
• Familiarity with PERA and general cybersecurity frameworks (ISO 27001/27002, NIST CSF, NIST 800-53)
• Project management skills and proficient Excel capabilities
• Excellent written and verbal communication; ability to communicate transparently and timely
• Expected travel under 20 percent, with potential increases during construction; may require after-hours availability