Senior OT/IoT Security Consultant

Job Category: Engineering
Location: Boise | Idaho Richardson | Texas
Work Model: Remote with monthly one on-site visit
Duration: 6+ Months contract

Role Overview

We are seeking a Senior OT/IoT Security Consultant to lead a high-priority security initiative for a major semiconductor manufacturer. You will be responsible for the end-to-end deployment and optimization of Armis to provide immediate environmental visibility, followed by a comprehensive current state assessment of the client’s Operational Technology, Software & SaaS (OT) environment.

This role requires a unique blend of deep technical expertise in industrial control systems (ICS) and the strategic ability to translate technical vulnerabilities into a prioritized risk-reduction roadmap.

Core Responsibilities

  • Armis Deployment & Optimization: Lead the technical rollout of Armis across the OT environment to achieve 100% visibility; configure dashboards to demonstrate immediate value to the client.
  • Security Assessment & Auditing: Conduct comprehensive security audits of IoT and OT devices using passive network analysis and manual inspection. Benchmark the client’s current posture against standards like NIST 800-82, IEC 62443, and NIST CSF.
  • Asset Discovery & Management: Validate and maintain a complete asset inventory, including SCADA, PLCs, HMIs, and “stealth” IoT devices (e.g., smart cameras, HVAC, and building systems).
  • Vulnerability & Risk Management: Identify and prioritize vulnerabilities using a risk-based approach that accounts for operational safety and production impact.
  • Strategy & Roadmap Development: Use insights from Armis and the gap assessment to develop a multi-year OT security strategy and prioritized remediation plan.
  • Stakeholder Engagement: Act as a bridge between IT and OT teams, conducting workshops with plant engineers and executives to align security goals with business uptime and safety.

Required Technical Skillsets

  • Industrial Networking: Deep understanding of the ISA-95 Purdue Model, network segmentation (zoning), and industrial-grade firewalls.
  • OT Monitoring Tools: Hands-on experience with Armis (required), and familiarity with similar tools like Nozomi Networks, Cisco Cyber Vision, or Dragos.
  • Framework Expertise: Demonstrated knowledge of NIST SP 800-82, IEC 62443, ISO 27001, and NERC CIP.
  • Secure Remote Access: Knowledge of MFA, VPN, and jump-host configurations for third-party vendor maintenance in OT zones.
  • Remediation & Patching: Experience implementing “virtual patching” via IPS and managing patches for sensitive, legacy industrial systems.

Qualifications

  • Experience: Minimum of seven (7) years of experience in IoT/OT security, industrial control systems, and network segmentation within highly regulated industries.
  • Certifications: Preferred certifications include CISSP, CIoTSP, GICSP, or relevant vendor-specific accreditations (e.g., Microsoft Certified Azure IoT Developer).
  • Education: Bachelor’s or master’s degree in cybersecurity, engineering, or a closely related field.
  • Soft Skills: Proven ability to communicate technical findings through audit-ready documentation and business-impact narratives.

Apply for this position

Allowed Type(s): .pdf, .doc, .docx

Previous

Business Intelligence Developer

Next

Data Consultant