Network Security Engineer

Job Title: Site OT Engineer - 12 month contract position - Outside IR35

Location : Leeds, UK

Reports To : Manufacturing Systems Site Leader

Hourly Rate: £30 - outside of IR35

Job Summary: The OT Support Engineer is responsible for maintaining and managing operational technology (OT) systems, supporting virtual machine infrastructure, and managing user access while ensuring the security and integrity of critical OT environments. The role includes onboarding/offboarding accounts, facilitating remote access, ensuring backup and recovery, and supporting various OT cybersecurity initiatives. The candidate will work within a high-regulation context to ensure compliance with industry standards and site-specific SOPs, contributing to the secure and efficient operation of the OT environment. As part of the role, work will include high risk remediation planning and execution, secure segmentation, support for firewall lockdown rules, development of low-level designs and threat monitoring, review and development of BCP plans for OT systems, and support for a culture of training and awareness in OTCS.

Key Responsibilities:

• Maintain and manage Virtual Machines on TS managed hardware.
• Onboard and offboard user accounts and groups via IAM processes.
• Facilitate remote access to the OT environment for deployment and support teams.
• Manage user and group access to OT resources.
• Ensure backup and recovery of critical OT systems in accordance with vendor-supported processes.
• Identify and protect GxP data in compliance with regulatory standards.
• Submit IT service requests related to network, server, and firewall infrastructure.
• Ensure adherence to Global ISRM and OTCS standards.
• Support OTCS initiatives including IAM, Dirsync, Tanium, Nozomi, USB Hardening, Application Whitelisting, and Micro-segmentation.
• Approve and implement site SOPs for OT system management and maintenance.
• Maintain comprehensive site documentation aligned with regulatory requirements.
• Collaborate with Quality Department to ensure projects and infrastructure meet site QA standards through CSV and other methodologies.
• Participate in high-risk remediation planning and execution to address OT security and reliability gaps.
• Implement secure segmentation across OT networks to minimize lateral movement and enhance containment.
• Support the development and enforcement of firewall lockdown rules to protect OT assets.
• Contribute to the development of low-level designs (LLD) for OT systems and establish ongoing threat monitoring capabilities.
• Review and develop Business Continuity Plans (BCP) for OT systems to ensure rapid recovery and continuity of operations.
• Promote and support a culture of training and awareness within OTCS, including regular training programs and security awareness initiatives.

Qualifications & Skills:

• Proven experience in OT/IT support, especially in regulated environments.
• Understanding of virtual machine management and related infrastructure.
• Understanding of Switch Network Solutions.
• Knowledge of OT cybersecurity initiatives and best practices.
• Familiarity with backup and recovery procedures for OT systems.
• Excellent documentation and compliance skills.
• Strong communication and collaboration abilities.
• Relevant certifications (e.g., CISSP, Microsoft) are a plus.

Preferred Attributes:

• Detail-oriented with a focus on regulatory compliance.
• Ability to work independently and as part of a team.
• Problem-solving mindset with a proactive approach to support challenges.
• Knowledge of GxP data protection and site-specific SOPs.
• Experience with high risk remediation, secure segmentation, firewall rule design and enforcement, threat monitoring, and BCP development for OT environments.
• Experience in developing and delivering OTCS training and awareness programs.