OT Cyber Security Engineer

Thermo Fisher Scientific Zobrazit všechny práce

  • Brno, Jihomoravský
  • Trvalý pracovní poměr
  • Plný úvazek
  • Před 6 dny
Work Schedule Standard (Mon-Fri)Environmental Conditions Adherence to all Good Manufacturing Practices (GMP) Safety Standards, Cleanroom: no hair products, jewelry, makeup, nail polish, perfume, exposed piercings, facial hair etc... allowed, Laboratory Setting, Office, Some degree of PPE (Personal Protective Equipment) required (safety glasses, gowning, gloves, lab coat, ear plugs etc.), WarehouseJob DescriptionPosition SummaryThe OT Cyber Security Engineer will play a critical role in strengthening Thermo Fisher Scientific’s manufacturing, lab, and R&D environments by implementing, integrating, and supporting secure and resilient OT cyber security solutions. Working closely with the OT Cyber Security Architect and network engineering teams, this role focuses on execution — ensuring that sites meet enterprise-defined security standards, architectures, and compliance requirements.This is a highly technical, execution-focused role requiring strong expertise in OT/ICS environments, cyber security controls, and systems integration. The successful candidate will collaborate across IT, OT, and lab/R&D teams, demonstrate strong problem-solving skills, and contribute to continuous improvement of security posture across a complex global environment.Key Responsibilities
  • Implement and support OT cyber security controls across manufacturing, lab, and R&D environments in alignment with enterprise security architectures.
  • Deploy and configure security technologies including firewalls, IDS/IPS, network segmentation controls, endpoint protection, and monitoring tools within OT environments.
  • Integrate OT systems with enterprise security platforms such as SIEM, vulnerability management, and identity/access management solutions.
  • Support secure system design and ensure adherence to security-by-design principles in OT deployments.
  • Support monitoring of OT environments through SIEM and specialized OT security platforms (e.g., Claroty).
  • Assist in threat detection, investigation, and response activities within OT environments.
  • Collaborate with cyber defense and incident response teams to contain and remediate security incidents.
  • Support development and tuning of detection use cases specific to OT, lab, and R&D systems.
  • Assist in vulnerability identification, assessment, and remediation across OT assets.
  • Support patch management processes, balancing security requirements with operational constraints.
  • Implement system hardening and secure configuration baselines aligned with industry standards.
  • Support troubleshooting of OT network and system issues with a security-focused mindset.
  • Collaborate with OT network engineering and automation teams to ensure secure segmentation and connectivity between IT and OT environments.
  • Assist in validating secure configurations of industrial protocols and communication paths.
  • Ensure minimal disruption to operations while implementing or maintaining security controls.
  • Participate in OT security assessments, audits, and site evaluations.
  • Support alignment with industry standards such as ISA/IEC 62443, NIST, and internal security policies.
  • Document findings, risks, and remediation plans with clear prioritization.
  • Assist with regulatory and audit requirements related to OT cyber security.
  • Partner with OT Cyber Security Architects, network engineers, site engineers, and IT teams to execute security initiatives.
  • Build strong working relationships across global manufacturing, lab, and R&D organizations.
  • Communicate technical concepts and risks effectively to both technical and non-technical stakeholders.
  • Contribute to a collaborative and security-focused culture across teams.
  • Stay current with emerging OT threats, vulnerabilities, and security technologies.
  • Identify opportunities to improve security standards, processes, and tooling.
  • Contribute to the evolution of OT cyber security capabilities and maturity.
  • Support the adoption of innovative technologies, including automation and AI-driven security solutions.
TravelUp to 30% travel to global manufacturing, lab, and R&D environments for implementation, assessments, and support.QualificationsExperience & Skills
  • Experience in OT cyber security, ICS security, or network/security engineering within industrial environments.
  • Strong knowledge of OT/ICS systems, industrial protocols (e.g., Ethernet/IP, Modbus, PROFINET), and manufacturing or lab systems.
  • Familiarity with cyber security frameworks and standards (e.g., ISA/IEC 62443, NIST CSF).
  • Experience with security technologies such as SIEM, IDS/IPS, endpoint protection, and vulnerability management tools.
  • Strong troubleshooting and problem-solving skills in operational environments with a focus on minimizing downtime.
  • Experience supporting system integration between OT and enterprise IT security platforms.
  • Ability to work independently on assigned tasks and projects with limited supervision.
  • Effective communication and collaboration skills in global, matrixed organizations.
Education & Certifications
  • Bachelor’s degree in Cyber Security, Computer Science, Engineering, or related field preferred.
  • Relevant certifications (e.g., GICSP, CISSP, Security+, CCNA/CCNP, or equivalent) desirable.
  • Equivalent work experience may substitute for formal education.
Enhanced Technical Requirements
  • Hands-on experience with OT security platforms (e.g., Claroty) and industrial network monitoring.
  • Understanding of network segmentation strategies, firewalls, and secure remote access within OT environments.
  • Experience with SIEM integration and log analysis for OT systems.
  • Familiarity with asset inventory and visibility solutions for OT environments.
  • Knowledge of secure architecture principles such as Zero Trust in industrial contexts.
  • Strong documentation skills to support audits, compliance, and operational continuity.
  • Exposure to Generative AI use cases in cyber security operations is a plus.
Soft Skill Expectations
  • Execution: Deliver high-quality implementation and support activities with limited oversight.
  • Collaboration: Work effectively across IT, OT, and lab/R&D teams to achieve security outcomes.
  • Problem Solving: Diagnose and resolve complex technical issues in operational environments.
  • Communication: Clearly articulate technical issues, risks, and recommendations to stakeholders.
  • Accountability: Take ownership of assigned tasks and follow through to completion.
  • Improvement Mindset: Contribute to continuous improvement of processes, tools, and security posture.
Benefits & RewardsThermo Fisher Scientific offers a comprehensive Total Rewards package, including competitive compensation, annual incentive opportunities, healthcare and retirement benefits, paid time off, employee stock purchase plan, and career development resources.

Thermo Fisher Scientific