Job Description

Job Posting

We are seeking a pragmatic, collaborative individual that can draw on their experience with real-world cyber risks and industrial system constraints. This person will lead the deployment of cybersecurity tools, improve network segmentation, enhance threat detection, and close critical gaps in patching, access control, and asset management. This person will directly strengthen Carmeuse's ability to prevent, detect, and respond to cyber threats across its global operations always with IT/OT convergence in mind.

Responsibilities

• Own and drive the execution of Carmeuse's global OT cyber security strategy, in alignment with the Global Security and Technology Team, and broader IT/OT convergence objectives.
• Lead the implementation and ongoing operation of core cyber security platforms in the OT landscape, including asset inventory, vulnerability management, network segmentation, and secure remote access.
• Participate in the design and architecture of cybersecurity controls and technologies that span both IT and OT environments, ensuring practical fit-for-purpose solutions in industrial settings and aligned to the Carmeuse strategy.
• Plan, coordinate, and execute OT cyber security assessments in collaboration with internal stakeholders, external partners, and OT engineering teams.
• Define and maintain OT cyber security governance with monthly IT/OT security steerco, including clear roles and responsibilities, decision rights, and escalation paths across sites and functions.
• Lead the Continuous Improvement Program, regularly testing OT/IT security policies and operational readiness through drills, tabletop exercises, and lessons-learned reviews.
• Develop and maintain OT security standards and implementation guidelines for global use, and guide regional and site-level teams in building and executing local adoption roadmaps.
• Manage and scale a targeted cyber security awareness and training program for OT and production site personnel, tailored to the realities of operational teams.
• Research, evaluate, and participate in the selection of IT/OT security technologies and partners through structured RFPs, PoCs, and integration planning ensuring long-term sustainability and compatibility with Carmeuse's industrial and IT environments.
• Serve as a trusted, hands-on advisor to plant managers, engineers, and IT teams balancing cyber risk reduction with operational continuity and practical constraints.

Basic Requirements

• Master's degree in industrial automation, cybersecurity, computer science, information technology, or equivalent experience.
• Minimum 7 years of combined IT or OT experience, including at least 2 years in an OT/industrial cybersecurity environment (e.g., production sites, SCADA, PLCs, DCS).
• Demonstrated hands-on experience implementing cybersecurity controls in OT environments including asset visibility, network segmentation, secure remote access, and vulnerability remediation.
• Solid knowledge of cybersecurity fundamentals and domains such as risk assessments, access control, incident response, vulnerability management, and security policy development.
• Deep understanding of the threat landscape for industrial environments, including risks tied to network-connected OT/ICS systems.
• Strong generalist profile in cyber/information security, with the ability to dive deep into technical topics when needed and explain risks in a practical, business-relevant way.
• Demonstrated ability to balance security with operational reality applying common sense, working within real-world constraints, and finding consensus between conflicting priorities across IT, OT, and production teams.
• Comfortable making progress in imperfect environments, where legacy systems, technical debt, or limited resources are part of the challenge without losing focus on risk reduction and long-term improvement.
• Proven ability to lead global, cross-functional security projects and work with both technical and non-technical stakeholders in a manufacturing environment.
• Holds or working toward relevant certifications such as CISSP, CISM, GICSP, or equivalent. (nice to have)
• Strong awareness of emerging trends in both IT and OT technologies, with a pragmatic view on what's feasible in industrial operations.
• Willingness to travel globally up to 20% and engage with on-site teams and partners.

Knowledge

• Solid knowledge of OT security tools and platforms, such as Nozomi Networks, Claroty, Dragos, or similar industrial cybersecurity solutions.
• Experience with firewall management, preferably with Checkpoint firewalls; familiarity with firewall policies, segmentation, and industrial DMZ design.
• Hands-on experience with Endpoint Detection and Response (EDR) solutions, such as CrowdStrike Falcon or Microsoft Defender for Endpoint, including deployment and integration.
• Strong understanding of Microsoft Azure and Microsoft 365 security solutions, including identity, access, and threat protection features.
• Knowledge of OT security best practices, including secure remote access, industrial asset management, and network segmentation.
• Familiarity with cybersecurity frameworks and standards, including IEC 62443, NIST SP 800-82, NIST CSF, and ISO/IEC 2700x series.
• Practical knowledge of IT/OT convergence principles and ability to apply best practices across both domains.
• Fluent in English (written and spoken); additional languages are an asset.

Skills

• Strong sense of ownership and accountability able to take initiative and follow through without needing constant direction.
• Proven ability to collaborate across teams (IT, OT, engineering, operations) and align people around common goals.
• Applies common sense and sound judgment when navigating complex or unclear situations.
• Skilled at finding practical consensus between often conflicting priorities balancing security needs with operational realities.
• Comfortable working in imperfect environments, where legacy systems, resource constraints, or organizational complexity are part of the daily reality.
• Clear and effective communicator, able to tailor messages to both technical and non-technical audiences.

Benefits & Compensation Package Includes

• Salary range for this position is $130,000-$150,000 as well as an annual bonus plan
• Paid holidays and vacation time
• Group medical/pharmacy insurance options with company funded health care spending accounts
• Dental insurance & Vision insurance
• A 401k account with company matching contribution
• A robust Wellness program with financial rewards
• Company-paid life insurance and short-term and long-term disability insurance
• Options to purchase additional life insurance (employee, spouse, and child) and additional employee long-term disability insurance.
• Employee Assistance Program (EAP)
• Tuition benefits including professional certifications
• Employee referral program

Job Tags

Similar Jobs