Network Engineer – SCADA Integration

We are seeking a skilled Network Engineer to design, configure, and deploy network infrastructure for SCADA systems as part of our Unsupported SCADA project. The role involves integrating Cisco IR1101 routers and Schneider MCSESM123F2LG0 managed switches into existing OT environments, ensuring secure and reliable connectivity between legacy networks and new SCADA systems.

• Deploy and configure Cisco IR1101 routers and Schneider MCSESM123F2LG0 managed switches (8 RJ45 + 4 SFP ports).
• Implement VLAN segmentation (e.g., VLAN 40 for new SCADA).
• Configure static routes and NAT on Cisco IR1101 for inter-site communication.
• Establish Transition VLAN for integration between legacy and new networks.
• Ensure SCADA traffic flows through Cisco IR1101 without bypass.
• Maintain connectivity to legacy devices without re-IP.
• Update firewall rules as required for new IP addresses and NAT configurations.
• Perform end-to-end connectivity tests between SCADA and PLC devices (local and remote).
• Validate routing and NAT configurations for multi-site communication.
• Create detailed network diagrams and configuration documentation.
• Ensure compliance with NIS and OT security standards.

• Strong knowledge of Cisco IOS and router configuration (IR1101 experience preferred).
• Hands‑on experience with Schneider managed switches and VLAN configuration.
• Proficiency in routing protocols, static routes, and NAT.
• Familiarity with industrial networks, SCADA systems, and OT security principles.
• Ability to troubleshoot complex network issues in multi‑site environments.

• Cisco certifications (CCNA/CCNP).
• Experience with OT/ICS environments and SCADA integration.
• Knowledge of firewall rule management and secure remote connectivity.

• Cisco IR1101 Router
• Schneider MCSESM123F2LG0 Switch
• Legacy Westermo devices (L210, MRD, BRD)

• Experience working in water utility OT environments (treatment plants, pumping stations).
• Knowledge of UK water industry standards including NIS Directive and DWI guidelines.
• Understanding of SCADA systems for water treatment and distribution.
• Compliance with cybersecurity frameworks for critical infrastructure (e.g., IEC 62443).

• Adherence to Water OTASP standards including Asset Monitoring, Telemetry, Automation, and SCADA software design.
• Compliance with NIS Directive for critical infrastructure security.
• Knowledge of IEC 62443 cybersecurity framework for industrial control systems.
• Implementation of secure VLAN segmentation (VLAN 10 – OT/ICS, VLAN 20 – Management, VLAN 40 – SCADA).
• Experience with Azure AD integration for SCADA IPC authentication.
• Familiarity with security tools such as SIEM logging, Qualys vulnerability scanning, and Microsoft Defender.
• Ability to configure MPLS and IPSEC VPN tunnels for remote connectivity and backup links (4G failover).