Industrial Control Systems Security Engineer

About the role

The Industrial Control Systems Security Engineer will work with technical leaders across NOV’s digital products group to select, deploy and validate cybersecurity controls for OT environments. The role focuses on analysing network designs and software implementations to ensure security, compliance and reduced exposure for our customers.

Key responsibilities

• Collaborate with internal and external business units to create solutions that meet customer needs while minimizing cyber‑security risk.
• Guide technical leaders on OT network architecture, compliance and security matters.
• Develop, document and execute cybersecurity execution plans and schedules.
• Triage and address security alerts from OT security systems.
• Continuously improve OT vulnerability and remediation capabilities to accelerate patching cycles.
• Evaluate and recommend improvements to the cybersecurity posture of digital products.
• Analyze network designs and software implementations for security gaps.
• Perform incident response tasks, including evidence preservation, forensics and malware analysis.
• Participate in new product development to ensure security and compliance requirements are built‑in.
• Develop and maintain technical cybersecurity documentation and guidelines.
• Conduct OT security workshops and awareness training as required.

Required profile

• Bachelor’s degree in Computer Science, Cyber Security or a related field with at least 2 years of relevant experience, or a diploma with a minimum of 5 years experience.
• Security or OT‑related certifications (e.g., CISSP, CISA, CISM, CRISC) are a plus.
• Minimum 2 years of experience working in OT environments and industrial control system security.

Required skills

• Industrial network protocols: Modbus, PROFINET, OPC, EtherCAT.
• Knowledge of DCS/SCADA design, deployment and assessment.
• Familiarity with IEC 62443, NIST cybersecurity framework.
• Experience with PLCs (Allen Bradley, Siemens, Wago) and embedded control systems (Windows, Linux, RTOS).
• Proficiency with Windows Server, Linux/UNIX, enterprise anti‑virus, endpoint security, application whitelisting.
• Experience using SIEM, logging configuration, IDS/IPS, authentication methods, TCP/IP, packet capture and network analysis.