OT Security Engineer

Who are we ?

Hello. We’re Haleon. A new world-leading consumer health company. Shaped by all who join us. Together, we’re improving everyday health for billions of people. By growing and innovating our global portfolio of category-leading brands – including Sensodyne, Panadol, Advil, Voltaren, Theraflu, Otrivin, and Centrum – through a unique combination of deep human understanding and trusted science. What’s more, we’re achieving it in a company that we’re in control of. In an environment that we’re co-creating. And a culture that’s uniquely ours. Care to join us. It isn’t a question. With category leading brands such as Sensodyne, Voltaren and Centrum, built on trusted science and human understanding, and combined with our passion, knowledge and expertise, we’re uniquely placed to do this and to grow a strong, successful business.

This is an exciting time to join us and help shape the future. It’s an opportunity to be part of something special.

About the role -

The Operational Technology (OT) Cyber Security Engineer is a member of the Global Automation team within the Haleon Central Engineering function and will focus on supporting Haleon manufacturing and R&D automation and lab systems. The role is accountable for defining, developing, assessing, approving and delivering complex and innovative solutions to reduce OT Cyber security related risks across the Haleon network, which may inhibit manufacturing or R&D operations, resulting in safety, quality, financial or reputation impact.

The the successful person will act as a Subject Matter Expert for the technology and processes related to OT Cyber Security, will ensure that good security practices are embedded across Haleon sites (currently circa 26 sites), make recommendations for improvement / oversight and provide key input in support of setting the direction of the OT security strategy.

Key responsibilities

• Support in the management of the OT Security Strategy for automation and lab systems across Haleon.

• Act as technical authority or subject matter expert for changes on infrastructure (firewall, cloud, etc.) for approximately 26 Manufacturing and R&D sites on OT cyber security within the automation and lab space.

• Define standards, define, review firewall rules to facilitate integration with IT & MES systems whilst maximizing protection of the automation and lab systems hosted on the OT network infrastructure.

• Lead global initiatives and work closely with key vendors to ensure vulnerabilities & threats are risk assessed and develop appropriate mitigation activities where required.

• Work with sites to ensure that automation and lab systems are protected with the appropriate level of cyber security protection and security controls based on defense in depth principles.

• Act as the technical escalation point where necessary as part of a technical support escalation or lead during incident investigations and/or site recovery.

Qualifications and skills

• Degree in an engineering or software/IT related discipline.

• Total of 10 years of experience with at least 5 years experience working within Operational Technology Security.

• Hands on experience in networking and interfacing of Manufacturing Operational Technology such as: Control systems from a wide range of vendors (PLC and SCADA),Manufacturing Execution Systems (Data historians, EBR, OEE) and Lab Systems

• Expertise on securing OT network architecture, firewalls and firewall rule sets as they pertain to OT network traffic.

• Knowledge of ISA Standards (ISA/IEC62443, S95, S88) and the NIST Framework and/or Certification.

• Palo Alto Firewalls knowledge/certification.

• Location -Remote.

Good to Have understanding of -

• Elisity, Cisco, platforms knowledge/certification.

• Deep hands on IT/OT experience in a complex environment (High Volume Manufacture, FCMG) with proven execution capabilities.

• Ability to work independently and cross-collaborate in a fast-paced environment where technology and sites requirements change regularly.

• Ability to think outside the box to solve complex issues and support/manage the development of complex network/firewall infrastructure.

• Ability to demonstrate credibility as a technical authority to a broad range of stakeholders from CISO to site leadership team.

• CCNP, CCSE, PCNSA, PCNSE, AZURE/AWS Cloud Administrator / Security.

• Excellent English language communication and written skills.

Please save a copy of the job description, as this may be helpful to refer to once the advert closes.

Diversity, Equity and Inclusion

At Haleon we embrace our diverse workforce by creating an inclusive environment that celebrates our unique perspectives, generates curiosity to create unmatched understanding of each other, and promotes fair and equitable outcomes for everyone.

We’re striving to create a climate where we celebrate our diversity in all forms by treating each other with respect, listening to different viewpoints, supporting our communities, and creating a workplace where your authentic self belongs and thrives.

We believe in an agile working culture for all our roles. If flexibility is important to you, we encourage you to explore with our hiring team what the opportunities are.