Job Description

Project Role :

Security Architect

Project Role Description :

Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.

Must have skills :

Operational Technology (OT) Security

Good to have skills :

Network Security Implementation

Minimum

3

year(s) of experience is required

Educational Qualification :

15 years full time education



Summary: The OT IDS Engineer is responsible for deploying, configuring, and managing Intrusion Detection Systems (IDS) across Operational Technology (OT) environments. This role ensures continuous monitoring, detection, and response capabilities for ICS/SCADA networks. You will work closely with site OT teams, SOC, network engineering, and cybersecurity functions to maintain high visibility and detect threats within industrial networks. Roles & Responsibilities: o Deploy OT IDS solutions (e.g., Claroty, Nozomi, Dragos, Tenable.ot, FortiNAC/OT sensors) across plants and industrial networks. o Conduct site readiness assessments to validate network architecture, SPAN/tap points, and sensor placement. o Configure IDS sensors, collectors, management consoles, and integrations based on vendor best practices. o Validate correct ingestion of traffic from switches, firewalls, and mirrored ports. o Perform baseline tuning of alerts, signatures, and anomaly detection models. o Monitor IDS dashboards, alerts, and events for suspicious activity, vulnerabilities, and behavioral anomalies. o Analyze OT-specific alerts (e.g., PLC programming changes, unauthorized scanning, protocol deviations). o Tune alerts daily/weekly to reduce false positives and improve accuracy. Professional & Technical Skills: o Experience in OT/ICS cybersecurity, network security, or security operations. o Experience with OT IDS platforms (Claroty CTD, Nozomi Guardian, Dragos Platform, Tenable.ot, etc.). o Strong understanding of OT network architecture: Level 0-3.5, Purdue model, iDMZ, SPAN/TAP design. o Good knowledge of ICS protocols: Modbus, OPC-UA/DA, DNP3, Profinet, Ethernet/IP, BACnet, etc. o Familiarity with packet analysis (Wireshark), intrusion detection techniques, and anomaly detection. Additional Information: - The candidate should have minimum 3 years of experience in Operational Technology (OT) Security. - This position is Work from office requirement for Bangalore location. - ISA/IEC 62443 Cybersecurity Certificates (e.g., 62443 Cybersecurity Fundamentals) ,GICSP, GRID, or equivalent OT security certifications (added advantage) - Experience working in manufacturing, energy, utilities, oil & gas or other industrial sectors is beneficial. - A 15 years full time education is required.




15 years full time education