The Operational Technology Security (OTSEC) Engineer develops, designs, tests, integrates, and deploys security system software and hardware solutions, ensures cyber security methods and guidelines are followed. You'll be responsible for designing and implementing solutions to protect material handling systems. This position entails conducting site visits to evaluate security postures and provide project support. The PE OT Security Engineer oversees consultants, vendors, interns, college co-ops, and technical writers. You must be able to travel and have a flexible schedule.

The OT Security Engineer tests applications to ensure that designs meet security requirements, business needs, and are cost effective. He/She manages project lifecycles, project scope, resources, schedule, initiation, and deployment to see projects from beginning-to-end. This position works with local cross-functional staff as well as vendors and consultants to successfully meet project objectives. The PE OT Security Engineer uses technical knowledge, experience, and reference materials (e.g., websites, manuals, books, etc.) to design and develop optimal solutions that work in accordance with the overall system business requirements. He/She handles calls from the district to respond to internal customers’ software/hardware problems and/or requests.

RESPONSIBILITIES AND DUTIES

• Manages security projects such as the deployment of new security patches, security enhancements, and the obsolescence and replacement of critical systems
• Coordinates with Corporate PE groups, ATC groups, vendors, and consultants to determine project requirements from overall system designs to obtain appropriate solutions (e.g., software, hardware, processes, etc.)
• Oversees Patch management including testing/verification, staging, deployment and subsequent reporting of the current patch status and readiness
• Performs risk assessments, system vulnerability assessments, remediation planning, and execution
• Prepares security reports related to new and existing vulnerabilities specific to plant floor technologies
• Creates, tests, and implements disaster recovery plans
• Conducts penetration testing or works with penetration testing teams
• Trains staff on information security procedures and practices

KNOWLEDGE AND SKILLS

• Demonstrates awareness of potential security issues and concerns, assists in the implementation of security policies and procedures, user log-on and authentication rules, security breach escalation procedures, and prepares status reports on security matters to aid in the development of security risk analyses and incident response procedures
• Knowledge of system security techniques and standards
• Identifies business problems that require research, reviews literature and data related to research questions, and summarizes information from data sources
• Demonstrates understanding of business problems and recommends solutions to solve business problems
• Demonstrates understanding of basic project management processes, including the planning of action items and resources
• Communicates quality assurance methodology and explains desired outcomes of testing as it pertains to project life cycles
• Able to communicate developed technology solutions, expresses the importance of effective implementation and develops implementation plans
• Identifies internal customers’ needs, determines costs, creates bid proposals for vendor solicitation, analyzes vendor responses, and develops recommendations for award
• Demonstrates general understanding and use of grammatical rules, expresses ideas clearly, and explains the relationship of effective writing as it relates to business objectives
• Certifications in Information Security and IT disciplines such as MCSE, RHCE, CISSP, CEH, Network +, etc., or comparable work experience
• Experience with system communications protocols like (TCP/IP, UDP IP, HTTP, FTP, SFTP, USB, MODBUS TCP, RS 232/485, XMPP)
• Bachelor’s Degree (or internationally comparable degree) in Computer Science, Information Security or Information Technology - Preferred
• Demonstrates knowledge of database design principles, identifies users’ requirements and needs with guidance from others, and demonstrates a basic understanding of the importance of maintaining and updating databases - Preferred
• Experience using Delphi, Free Pascal, C, C++, Visual C, Java, Java Script, SQL, Python, BASH, Powershell - Preferred
• Experience supervising others - Preferred
• Experience with Systems Integration of Material Handling Systems (CCD cameras, laser scanners, programmable logic controllers, embedded control devices, and other peripherals) - Preferred

UPS is an equal opportunity employer. UPS does not discriminate on the basis of race/color/religion/sex/national origin/veteran/disability/age/sexual orientation/gender identity or any other characteristic protected by law