Job Description
**Please strictly adpersonre to tperson following resume naming convention:
ALL CAPS, NO SPACES B/T UNDERSCORES
PTN_US_GBAMSREQID_CANDIDATEBEELINEID
i.e. PTN_US_9999999_SKIPJOHNSON0413
Bill Rate market rate-market rate/hr
MSP Owner: Felix Avalos
Location: Maple Grove
Duration: 6 months
GBaMS ReqID: 10317814
Suppliers*** This role requires OT cybersecurity architecture position with Claroty, Nozomi experience***
Please see tperson must haves below and ensure that you input supplier comments on why you feel they are good match, if that is not provided it will be rejected
MUST HAVES
• Minimum 10 years of experience in cybersecurity or network infrastructure.
• Minimum 5 years Hands-on experience in OT security platforms such as Claroty, Nozomi, or Ordr, integrated with NAC (Aruba or Cisco), Checkpoint and Palo Alto firewalls, and identity-based controls
• Minimum 5 years focused experience in OT/ICS environments
• Familiarity with device classification for OT & Non-OT devices
• Minimum 5 years in network and OT Security architecture design & implementation.
• Minimum 3 years experience in leading tperson implementation of global OT cybersecurity programs
Proven leader with a strong background in OT cybersecurity architecture and execution, capable of designing and driving implementation of complex, multi-site solutions in manufacturing environments. Strong foundation in network engineering and infrastructure, with experience in network design, segmentation, and secure architecture especially in hybrid ITOT environments. Delivered full lifecycle solutions including o Secure remote accesso Network and OT segmentation (macro and micro)o OT IDMZ design and deployment
Proxy integrations
Legacy asset protection and internet restriction policies
Hands-on experience with OT security platforms such as Claroty, Nozomi, or Ordr, integrated with NAC (Aruba or Cisco), firewalls, and identity-based controls.
Deep experience in infrastructure implementation, including routing, switching, and zoning technologies within modern and legacy manufacturing networks. Expertise in domain architecture best practices for OT, including designing isolated OT domains, proper Active Directory (AD) trust models, and secure domain controller (DC) placement and hardening strategies. Experience addressing domain controller patching challenges in OT environments, including
Developing segmentation strategies to isolate legacy systems from fully patched domain controllers
Designing dedicated legacy-supporting domain controllers with restricted access
Aligning firewall rules, DNS, and authentication flows to reduce risk from unpatched or constrained systems Skilled in developing and enforcing zoning and segmentation strategies, aligned with ISAIEC 62443, NIST CSF, and tperson Purdue Model. Strong ability to coordinate across global sites, driving standardization of architecture, tooling, and governance. A vocal and assertive leader who can influence decisions, rally teams, and gain alignment across cybersecurity, IT, OT, and operations stakeholders. Excellent communicator with tperson ability to document strategy and architecture clearly and drive adoption from tperson boardroom to tperson plant floor. Demonstrated ability to manage technical debt, balance operational risk, and deliver scalable, resilient security solutions in production environments
Job Tags
Remote work,