Sr. Operational Technology Security Engineer

ESSENTIAL DUTIES AND RESPONSIBILITIES:

We’re hiring a Sr. Operational Technology Security Engineer (OT) to manage Sandisk’s OT visibility and resilience program across high‑technology manufacturing sites. You’ll stand up and mature our OT monitoring solution, integrate telemetry into our SIEM, and partner with factory operations to ensure security without disrupting production.

This role owns engineering, delivery, and ongoing operations of OT security—bridging engineering, manufacturing, and the SOC—so that Sandisk maintains continuous production with zero downtime due to internal cybersecurity incidents.

• Program Partnership: Assist in defining and executing the OT security roadmap, aligning with corporate cybersecurity strategy and manufacturing uptime objectives.
• OT Monitoring Deployment: Manage installation and configuration of OT monitoring platforms such as Nozomi Networks, Claroty, Dragos, Armis, ensuring proper sensor placement for maximum visibility.
• Traffic Analysis & Protocol Coverage: Implement tools for deep packet inspection and protocol analysis (e.g., Wireshark, Zeek, Suricata) to monitor Modbus, Profinet, DNP3, OPC-UA, and other industrial protocols.
• SIEM Integration: Collaborate with SOC and architecture teams to stream OT telemetry into SIEM/SOAR platforms, develop detection logic, and optimize alerting to reduce false positives.
• Asset & Risk Management: Establish and maintain a comprehensive OT asset inventory, vulnerability management process, and configuration baselines for critical systems.
• Network Segmentation & Access Control: Participate in segmentation projects, firewall rule reviews, and identity separation between IT and OT environments; implement secure remote vendor access protocols.
• Incident Response & Resilience: Participate in creating OT-specific incident response playbooks, conduct tabletop exercises, and ensure disaster recovery plans meet manufacturing continuity requirements.
• Compliance & Standards: Ensure adherence to NIST CSF, IEC 62443, and corporate security policies; prepare for internal and external audits.
• Cross-Functional Collaboration: Work closely with onsite IT teams and Manufacturing leadership to schedule changes, minimize production impact, and jointly achieve zero-downtime objectives.
• Metrics & Reporting: Manage KPIs (e.g., telemetry coverage, MTTR, segmentation compliance) and deliver executive-level reporting on OT security posture.