Senior Operational Technology Security Engineer

CA Pay Range (Annual):$139,300.00 - $258,700.00

Non-CA Pay Range (Annual):$125,400.00 - $232,800.00

At Nokia, your base pay is one part of your total compensation package. Your actual base pay will depend on your skills, qualifications, experience, and location. This role may be eligible for equity grants, discretionary bonuses, or commission payments. The amount of these incentives is based on the terms of the Company’s incentive plans, the Company’s financial performance, and/or individual employee job performance.

Nokia also offers paid leave, medical,

dental, and vision coverage, 401(k),

life, and disability insurance to

eligible employees.

Overview:

As part of the Manufacturing organization, this role will work closely with Manufacturing, IT, Cybersecurity, and other areas of the business to assess, recommend, design, implement, and manage security solutions related to Operational Technologies (OT).

Throughout the risk management cycle, identifies and defines security requirements, designs security architecture, and implements solutions to enhance the OT security program while maintaining a balance between useability and security. Configures and manages tools supporting security operations such as SIEM, EDR, vulnerability management, and security forensics tools.

Supports the Cybersecurity team on incident escalation and as a member of the incident response team. Recommends and implements changes to security tools and procedures to enhance and automate operation of the OT security program. Remains informed and aware of security threats and events across the OT industry.

Will assist in mentoring and educating peers and business partners on OT security best practices, technologies, and on new and emerging threats. Must be able to demonstrate strong communication skills, both written and verbally.

Occasional after hours and weekend work.

Responsibilities:

Design, implement, configure, and manage OT security tools and solutions.

Configure and troubleshoot OT security infrastructure devices with an emphasis on balancing the security, life safety, and operational needs.

Identify and implement solutions to automate repeatable and reliable OT security and operations tasks.

Contribute to, document, and maintain clear communications for OT standards

Conduct OT security forensics to aid in the collection, analysis, and reporting of incidents.

Participate as a member of the Cybersecurity Incident Response Team providing investigation and analysis of security events.

Architect and conduct OT security assessments through vulnerability testing, risk analysis, and reporting in a manner that assures life safety and operational success.

Work with the Business Continuity Manager and IT to ensure that continuity of operations is planned for, documented, and tested.

Perform process and control walkthroughs and document control narratives.

Assist in the ongoing maintenance and process improvements of compliance programs

Monitor OT security bulletins, alerts, and threat feeds for relevant threats.

Understand, interpret, and comply with all organizational security policies, procedures, and other governance as provided by Infinera management and authorized stakeholders.

Assess and recommend improvements to the OT security program.

Qualifications:

Bachelor’s degree (B.A./B.S.) or equivalent in computer science or equivalent discipline from an accredited college or university required

10+ years of experience in OT environments required

5-8 years of experience in an OT security role

Conversant with cybersecurity frameworks such as IEC ISA 99/62443, NIST SP 800-82, NIST 800-53, NIST CSF, and ISO 27001

Certified Automation Professional (CAP), Certified Control Systems Technician (CCTS), Global Industrial Cyber Security Professional (GICSP), ISO 27001 Auditor, or other ICS-related certification preferred

Expertise with networking technologies, firewalls, network design, and protocols

Expertise with SIEM configuration, automation, and management

Experience with deployment and management of EDR solutions

Experience with vulnerability and patch management tools

Skills, Abilities and Competencies

Expertise in OT / ICS systems (SCADA, DCS, PLC, EMS, etc.)

Technical Skills:

Expertise with Microsoft and Linux operating systems

Strong understanding of network technology and protocols

Expertise in OT vulnerability and risk assessment

Knowledge of OT security forensics toolkits and malware analysis

Familiarity with security operations center operations, security event management, and incident response

Strong analytical and reasoning skills, particularly in solving large, complex problems

Constantly curious and dedicated to expanding knowledge and experience

Ability to assume high levels of responsibility and to work with a minimum of day-to-day supervision

Ability to function as a member of the Manufacturing team, and to work collaboratively with multiple teams across global locations

Strong written and verbal communication and interpersonal skills

Strong customer service skills

Strong organizational skills

#LI-DW1

#LI-Hybrid

“This position requires direct or indirect access to certain confidential information, hardware, software, technology, or technical information (referred to here as “Export-Controlled Information”) controlled under the U.S. International Traffic in Arms Regulations (ITAR) and/or the U.S. Export Administration Regulations (EAR). All personnel in this position must be eligible to or be able to obtain authorization from the appropriate agency to access applicable Export-Controlled Information. The U.S. Department of Commerce currently requires a foreign person with a most recent citizenship or permanent residency of Sudan, Ukraine, or a country currently designated in Country Group D:1, E:1 or E:2 (Supplement No. 1 to Part 740, Title 15) to have an export control license to access our Export-Controlled Information, unless they meet certain exemptions provided under U.S. export control laws and regulations. The list of applicable countries in Country Group D:1, E:1 or E:2 may be updated by the U.S. government from time to time. The current processing time for an export control license is approximately 4 to 6 months.

Your employment or engagement with Nokia shall be contingent on verifying your eligibility or requirement for obtaining a necessary license and/or authorization from the appropriate agency. You will be required to provide certain information for export control compliance assessment purposes, and your information will be reviewed by Nokia's hiring and export control teams to ensure compliance with the U.S. export control laws and regulations. Nokia will collect necessary documents (such as proof of citizenship etc.) to assess license/authorization requirements if you are offered and accept the position.”

Nokia is committed to inclusion and is an equal opportunity employer

Nokia has received the following recognitions for its commitment to inclusion & equality:

One of the World’s Most Ethical Companies by Ethisphere

Gender-Equality Index by Bloomberg

Workplace Pride Global Benchmark

At Nokia, we act inclusively and respect the uniqueness of people. Nokia’s employment decisions are made regardless of race, color, national or ethnic origin, religion, gender, sexual orientation, gender identity or expression, age, marital status, disability, protected veteran status or other characteristics protected by law. We are committed to a culture of inclusion built upon our core value of respect.

Join us and be part of a company where you will feel included and empowered to succeed.

2025146