Lead Cybersecurity Engineer - OT Networks (Industry & Marine Sectors)

GE Vernova's Power Conversion business provides critical electrification systems for high-performance applications across the energy, maritime, and industrial sectors. We partner with leading organizations worldwide, driving energy efficiency and decarbonization through our specialized motors, drives, and control technologies.

GE Vernova Power Conversion is at the forefront of delivering innovative power conversion solutions for a wide range of industrial and marine applications. As a Lead Cybersecurity Engineer specializing in Operational Technology (OT) networks, you will be a critical leader in ensuring the security and resilience of our project implementations. You will leverage your deep expertise to define, implement, and validate robust cybersecurity measures across diverse project landscapes, safeguarding critical infrastructure and ensuring operational continuity for our customers worldwide. This is a unique opportunity to lead cybersecurity initiatives from the proposal stage through project execution, making a tangible impact on the security posture of complex industrial and marine control systems.

Roles and Responsibilities

• Lead the development and implementation of comprehensive cybersecurity strategies and architectures for OT networks in both industrial and marine project environments.
• Serve as the subject matter expert for OT cybersecurity, providing guidance and technical leadership to project teams throughout the project lifecycle.
• Collaborate with proposal teams to define cybersecurity requirements, scope security solutions, and contribute to accurate cost estimations for project bids.
• Oversee the secure implementation and configuration of industrial control system components, including PLCs, I/O modules, drives, and third-party equipment, ensuring adherence to security best practices.
• Architect and implement secure network designs for OT environments, including network segmentation, firewall rules, and secure communication protocols.
• Lead the secure configuration of industrial network switches and routing devices, implementing security features and access controls.
• Architect, deploy, and manage intrusion detection and prevention systems (IDPS) within OT networks, proactively identifying and mitigating potential security threats.
• Define and enforce OT cybersecurity best practices, policies, and procedures across project implementations.
• Lead the development of comprehensive cybersecurity test and validation plans, ensuring the effectiveness of implemented security controls.
• Conduct thorough security testing and vulnerability assessments of OT applications, control systems, and network infrastructure.
• Develop and maintain detailed cybersecurity documentation, including network diagrams, security configurations, and test reports.

Required Qualifications

• Bachelor's degree in Computer Science, Cybersecurity, Electrical Engineering, or a related technical field.
• Minimum of 8 years of extensive experience in cybersecurity, with a significant focus (at least 5 years) on securing Operational Technology (OT) environments.

Desired Characteristics

• Willingness and ability to travel up to 10%.
• Deep understanding of industrial control systems (ICS), including PLC programming concepts, HMI/SCADA systems, and industrial communication protocols (e.g., Modbus, Ethernet/IP, OPC UA/DA, EGD).
• Proven expertise in designing and implementing secure OT network architectures, including network segmentation, firewalls, and intrusion detection/prevention systems, with a strong practical understanding of the Purdue Model for Industrial Control Systems.
• Hands-on experience with the secure configuration of industrial network switches and routing devices (e.g., Cisco, Hirschmann, Moxa), applying segmentation principles derived from the Purdue Model.
• Strong knowledge of cybersecurity best practices, frameworks, and standards relevant to OT (e.g., IEC 62443, NIST Cybersecurity Framework), and how they map to the different levels of the Purdue Model.
• Experience in conducting security risk assessments, vulnerability assessments, and penetration testing within OT environments, considering attack paths across the Purdue Model.
• Ability to develop and execute comprehensive cybersecurity test and validation plans for OT systems and applications.
• Experience working with proposal teams, defining cybersecurity scopes, and contributing to project cost estimations, including considerations for implementing security measures.
• Strong project management skills with the ability to manage cybersecurity tasks and deliverables within project timelines, ensuring adherence to security principles.
• US Citizen or Green Card holder that must not now, or in the future require sponsorship
• A strong grasp of fundamental programming and networking principles.
• Relevant industry certifications such as CISSP, GICSP, GRID, or equivalent OT cybersecurity certifications.
• Experience with specific cybersecurity tools and technologies used in OT environments (e.g., industrial firewalls, intrusion detection systems, security information and event management (SIEM) for OT), and their placement within the Purdue Model.
• Experience with secure remote access solutions for industrial control systems, understanding their implications for the Purdue Model's demilitarized zone (DMZ).

This role requires access to U.S. export-controlled information. If applicable, final offers will be contingent on ability to obtain authorization for access to U.S. export-controlled information from the U.S. Government.