Industrial Cybersecurity Engineer

About Us:

BW Design Group is a fully integrated architecture, engineering, construction, system integration, and consulting firm committed to helping our clients realize their most critical goals from Strategy to Commercialization. As the only firm born from a manufacturing technology company to become an independent and fully integrated firm, we combine deep domain expertise in the manufacturing environment with an approach that is built to serve the dynamic needs of our clients. Rooted in our distinct culture of Truly Human Leadership, we cultivate the leaders who will define tomorrow and partner with our clients in the food & beverage, life sciences, industrial, and advanced technology industries to build the future of manufacturing and technology.

Barry-Wehmiller is a diversified global supplier of engineering consulting and manufacturing technology for the packaging, corrugating, sheeting and paper-converting industries. By blending people-centric leadership with disciplined operational strategies and purpose-driven growth, Barry-Wehmiller has become a $3 billion organization with nearly 12,000 team members united by a common belief: to use the power of business to build a better world.

Job Description:

Who You’ll Work With

You will join one of our 45 offices in the US, be part of a committed team of over 1500 professionals, and work in teams and directly with our clients doing work that is shaping the world around us. You will be welcomed into a rapidly growing business and team and empowered to make an impact. You will be valued, cared for, and challenged on your path to becoming a world-class professional consultant and surrounded by leaders who are committed to creating an environment that enables you to realize your own success and fulfillment.

When you join Design Group as a Cybersecurity Engineer you are joining a team that will challenge you and position you for growth. In this role, you will work with a team of industry experts to help the world’s leading companies solve their most difficult problems. You will partner with seasoned leaders, technical specialists, and subject matter experts to deliver the highest quality solutions to our clients with consistency and accuracy.

What You’ll Do

You'll work individually and in teams to support capital projects and implement solutions for our clients. Together, you will help our clients make critical changes to improve their performance and realize their most important goals.

Client Engagement, Collaboration and Stakeholder Management

• Collaborate closely with client teams, including IT, OT personnel, and management, to understand their unique requirements and align cybersecurity strategies with business objectives
• Effectively communicate technical information to both technical and non-technical stakeholders
• Manage project timelines, deliverables, and ensure successful implementation of cybersecurity solutions
• Think critically, spanning the sales process through client support, troubleshooting, and developing new use cases for internal and external utilization
• Understand client challenges and pain points related to OT/ICS cybersecurity
• Gather client requirements, design architecture, and present solutions for project quotes and implementation
• Plan, manage, and execute Proof of Concepts (PoCs) and technical evaluations
• Document and present PoC results, demonstrating the value and ROI of the solution

OT Cybersecurity Assessments

• Conduct comprehensive assessments of clients' OT systems, including ICS, SCADA systems, distributed control systems (DCS), and other industrial automation equipment
• Identify potential vulnerabilities, risks, and security gaps within the OT environment
• Analyze and evaluate the effectiveness of existing security controls and configurations
• Identify, assess, and mitigate cyber risks across OT systems, and networks

OT Cybersecurity Design and Implementation

• Design and implement robust cybersecurity strategies, policies, and procedures tailored to the client's OT environment
• Design, develop, and deploy secure architectures, network segmentation, and access control mechanisms for OT systems
• Identify configurations to harden OT devices, controllers, and other components according to industry best practices and standards
• Design security solutions with existing networks and security infrastructure
• Integrate security solutions, such as firewalls, intrusion detection/prevention systems (IDS/IPS), and security information and event management (SIEM) systems, into the OT environment

Operational Support

• Identify and prioritize operational security issues and incidents within client OT environments
• Manage security tickets and incident response workflows, ensuring timely resolution and proper escalation procedures
• Investigate security alerts, anomalies, and potential threats across OT systems and networks
• Configure and optimize platform settings, rules, and policies to meet client-specific operational requirements
• Coordinate and collaborate with 3rd party application and equipment OEM vendors to integrate security solutions and resolve technical issues
• Provide ongoing platform usage guidance and best practices to maximize security effectiveness
• Develop and present mitigation options and remediation strategies for identified security risks
• Deliver ongoing operational support and technical guidance to ensure sustained security program effectiveness
• Monitor platform performance and usage metrics to optimize security operations
• Support day-to-day security operations and serve as technical escalation point for complex issues

Risk Management and Compliance

• Conduct risk assessments and develop risk mitigation strategies for OT systems
• Collaborate with clients to define, prioritize, and execute OT Security Program initiatives tailored to their specific operational environment and business requirements
• Assist in OT remediation and mitigation efforts for identified security gaps
• Drive and support exposure and vulnerability management across OT assets, including identification, risk prioritization, mitigation, and remediation tracking
• Align compliance with relevant industry regulations, standards, and guidelines (e.g., NERC CIP, ISA/IEC 62443, NIST SP 800-82)
• Develop and implement security incident response plans and procedures for OT environments

Best Practices, Knowledge Transfer and Training

• Provide training and knowledge transfer to client and internal personnel on OT cybersecurity best practices, tools, and techniques
• Develop and deliver best practices, training materials, documentation, and workshops tailored to the client's specific needs

Make an impact day-to-day with your skills and expertise, strengthening that relationship with our clients and team

What You’ll Bring

• Bachelor's degree in Computer Science, Cybersecurity, Electrical Engineering, or a related field
• Experience in cybersecurity, with a strong focus on industrial control systems (ICS) and operational technology (OT) environments
• Understanding of OT protocols (e.g., Modbus, DNP3, IEC 61850), systems, devices, and architectures
• Familiarity with industry standards and regulations, such as NERC CIP, ISA/IEC 62443, SANS Critical Controls, and NIST SP 800-82
• Familiarity with various industrial devices and controls systems (DCS, PLC, SCADA) and vendors (e.g., Siemens, Rockwell, etc.)
• Experience with Linux Operating Systems, Windows Operating Systems, and virtualized environments
• Solid understanding of networking concepts and technologies
• Excellent problem-solving, analytical, and critical thinking skills
• Strong communication and interpersonal skills, with the ability to effectively present technical information to diverse audiences
• Willingness to travel to client sites
• Experience and ability to walk facility floor safely, with proper PPE, to conduct inspections and deployments
• Preferred Qualifications
  • Experience in cybersecurity, with a strong focus on industrial control systems (ICS) and operational technology (OT) environments
  • Relevant industry certifications (e.g., CISSP, GICSP, CCNA, GRID, GPEN)
  • Experience with virtualization platforms (VMware, Hyper-V) and cloud environments (AWS, Azure)
  • Experience in Industrial Control Systems (ICS) and system integration, with a focus on ICS and SCADA systems
  • Experience with OT Passive Monitoring and Preventative solutions

Our culture and commitment to our people is what sets us apart. We foster an environment of mutual respect, integrity, and unconditional interest in the individual and collective success of our professionals. Our model and entrepreneurial mindset offer a rewarding, challenging, and highly flexible path. As a Cybersecurity Engineer , you will build a meaningful and fulfilling career with the support of professional development resources and mentorships including our First Year Experience program, Individual Development Plans, and Career Path resources and tools. You will be surrounded by exceptional talent who will support your development as both a world-class engineer and a highly effective leader.

Feel like you're on the path to becoming a Cybersecurity Engineer  but you're not quite there yet? We'd love to connect with you to see if we can take you from where you are today and grow you into a Design Group Engineering Consultant.

#LI-KM1

At Barry-Wehmiller we recognize that people come with a wealth of experience and talent beyond just the technical requirements of a job.  If your experience is close to what you see listed here, please still consider applying.  We know that our differences often can bring about innovation, excellence and meaningful work—therefore, people from all backgrounds are encouraged to apply to our positions.  Please let us know if you require reasonable accommodations during the interview process. ​

Barry-Wehmiller is an equal opportunity employer. M/F/D/V This organization uses E-Verify.

Applicants may be subject to pre-employment screening which may include drug screening, reference checks, employment verifications, background screening and/or skills assessments.

 

Company:

Design Group