Logo
First Solar

OT Engineer- Information Security II USA

First Solar, Perrysburg, Ohio, us, 43552


First Solar reserves the right to offer you a role most applicable to your experience and skillset. Basic Job Functions: Responsible for ensuring the security of the organization's global Operational Technology (OT) environments. This will involve identifying and mitigation cyber threats, monitoring systems for vulnerability, and developing and implementing cyber defense. The ideal candidate will have experience in both information security and automation technologies focusing on industrial controls systems. Additional responsibilities include serving as a member of the Information Security team and providing global incident response support as a member of the Cybersecurity Incident Response Team, representing OT cybersecurity requirements into Enterprise cybersecurity strategies, and working closely with Manufacturing Engineering and Automation teams, Manufacturing Production, Safety, Corporate IT and the Information Security team to improve the cybersecurity and resilience of OT systems and networks. Education/Experience: Bachelor's degree in MIS, computer science, or related field Minimum 1 years of relevant cybersecurity experience, plus at least 2 years of experience working with Industrial Automation & Control Systems in production manufacturing environments. Required Skills/Competencies: Strong knowledge and/or demonstrated experience with security tools is required. 1+ years of experience with IdM, UBA, ATD, IPS/IDS is a plus. 3+ years of experience with various Microsoft Windows operating systems is required. 3+ years of experience with various Microsoft Windows Server operating systems is required. 3+ years of experience with Network server /Active Directory (AD) administration experience required. 3+ years of experience with Non-Windows Operating Systems. Experience with network security scanning tools (Nessus, Qualys, ISS, etc.) required. Knowledge of industrial control systems security standards and reference models ( IEC 62443, NIST Cybersecurity Framework, Purdue reference model) is required. Hands on experience with operational technologies such as Programmable Logic Controllers (PLCs), Supervisory Control and Data Acquisition ( SCADA ) software, and Distributed Control Systems ( DCS ) is required. Fundamental understanding of IT and OT network communication protocols (For example: TCP /IP, UDP , DNP3, Modbus, IEC 61850, OPC , OPC UA, PROFINET , etc.) is required. Understanding of cyber threats, vulnerabilities, and exploits specific to ICS (Triton/Trisis, BlackEnergy, IronGate, Havex) is required. Programming (scripting) experience desired. Hands on strong experience with and very knowledgeable of security operations, scripts reading and understanding, basic knowledge in different languages: JS, Python, PowerShell, C# Experience with database management software, such as MySQL, Oracle RDBMS, and Microsoft SQL Server. Strong understanding of event analysis, incident response, threat intelligence, cyber investigation methodology and chain-of-custody requirements. Strong knowledge of risk assessments, penetration testing, vulnerability analysis or disaster recovery Working knowledge of Enterprise Firewalls is required. Good knowledge or prior experience with SIEM and end-point protection (SCEP, Sophos, Bit9, Carbon Black, Crowdstrike) a plus. Ability to work in a 24x7 global environment Working knowledge of integrated MFA with OAUTH or SAML technologies, 1+ years' experience with ADFS or IDaaS preferred. Working knowledge and/or prior experience with Digital Rights Management a plus. Experience Managing project timelines, budgets, and documentation Experience preparing network analytics, data reports and operational manuals. Excellent Organization / Communication Skills. Essential Responsibilities: Primary Responsibilities: Operational day-to-day engineer