Lead OT Network Systems

About The Position

Requirements

• Bachelor's degree in Engineering, IT, Cybersecurity, Computer Science (or equivalent OT experience)
• 7+ years in OT infrastructure, automation, industrial networking, or OT cybersecurity
• Demonstrated experience supporting OT systems in manufacturing environments (Food & Beverage/CPG preferred)
• Deep expertise with OT-hosted systems: Windows, VMware, and industrial application hosting
• Strong understanding of Allen-Bradley/Rockwell ecosystems and OT operational constraints
• Hands-on experience with EDR, NDR, or network segmentation solutions in OT or critical infrastructure
• Familiarity with OT cybersecurity tooling, passive monitoring, and access governance
• Ability to manage MSP relationships effectively and influence cross-functional teams through ambiguity

Nice To Haves

• Experience with Claroty CTD/xDome deployments and tuning
• Implementation experience with micro-segmentation technologies in OT
• Understanding of Purdue OT reference architecture and industrial DMZ concepts
• Familiarity with OT SOC operations, service management, and detection engineering concepts
• Knowledge of frameworks: IEC 62443, NIST CSF, or similar
• Direct experience leading or supporting OT incident response

Responsibilities

• Lead OT Infrastructure Initiatives: Define and mature reference architectures, standards, and support models for core OT infrastructure: compute, virtualization, and site-level platforms.
• Act as a senior technical lead for Rockwell IDC environments, VMware-based OT systems, and Windows servers/workstations across plants.
• Advance OT Cybersecurity: Drive buildout of OT cybersecurity tools and foundational controls.
• Oversee Claroty platform evolution from CTD to xDome, including architecture, integration, and use case development.
• Define and implement strategies for OT detection, asset intelligence, and vulnerability reduction.
• Lead deployment and management of Endpoint Detection & Response (EDR), Network Detection & Response (NDR), and micro-segmentation solutions within OT environments.
• Strengthen Asset Visibility and Lifecycle Management: Establish reliable OT asset inventory and configuration data foundations.
• Support lifecycle planning, vulnerability tracking, and risk-based remediation across diverse technologies.
• Shape Modernization and Risk-Reduction Roadmaps: Assess infrastructure health and prioritize modernization investments.
• Develop pragmatic strategies for containment, isolation, recovery readiness, and phased upgrades.
• Manage OT Security Operations Center (SOC) Services: Serve as the primary point of contact for OT SOC services delivered by a Managed Service Provider (MSP).
• Coordinate alert triage, detection tuning, and escalation workflows between Kraft Heinz operations, cybersecurity, and the SOC team.
• Manage KPIs, service performance, and continuous improvement for OT SOC operations.
• Incident Response: Act as a technical lead or key contributor in OT-related incident response activities, from initial escalation through containment and recovery.
• Lead the development and implementation of comprehensive OT-specific incident response plans aligned with corporate security frameworks.
• Collaborate with SOC, cybersecurity teams, plant operations, and vendors to investigate, remediate, and report security incidents.
• Support tabletop exercises and continuous enhancement of OT incident response procedures.
• Develop recovery time objectives (RTO) and recovery point objectives (RPO) for critical control systems.
• Set Standards and Drive Governance: Create and maintain OT engineering standards and security baselines.
• Support governance of changes impacting cyber risk, resiliency, or supportability.
• Partner Across Functions: Collaborate with plant engineering teams, OT network teams, cybersecurity, operations, and technology vendors.
• Provide technical leadership during assessments, incidents, and major OT initiatives.
• Provide technical guidance and training to plant personnel on cybersecurity best practices.
• Participate in incident response activities and post-incident reviews.
• Support audit and compliance activities related to manufacturing systems.

Benefits

• Coverage for employees (and their eligible dependents) through affordable access to healthcare, protection, and saving for the future, we offer plans tailored to meet you and your family’s needs.
• Wellbeing: We offer events, resources, and learning opportunities that inspire a physical, social, emotional, and financial well-being lifestyle for our employees and their families.
• Physical - Medical, Prescription Drug, Dental, Vision, Screenings/Assessments
• Social - Paid Time Off, Company Holidays, Leave of Absence, Flexible Work Arrangements, Recognition, Training
• Emotional – Employee Assistance Program , Wellbeing Programs, Family Support Programs
• Financial – 401k, Life, Accidental Death & Dismemberment, Disability