Search jobs > Philadelphia, PA > Permanent > Senior cyber security

Senior OT & Control Systems Cyber Security Manager

GSK
Philadelphia, Pennsylvania, US
Permanent

We have an exciting opportunity for someone to join the GSC Engineering OT Security team on a permanent basis.

Please read the following job description thoroughly to ensure you are the right fit for this role before applying.

As part of this central team you will be involved in the development, implementation & support of new technologies or processes that protect the Operational Technology (OT) environments at GSC sites from being impacted by Cyber Security threats - providing the secure connectivity needed for GSC to deliver our digital ambition.

The role scope includes defining, developing, assessing, approving and delivering complex and innovative technologies & processes to reduce OT Cyber security related risks across GSC, which may impact safety, quality, supply or reputation of GSC Manufacturing Operations.

This person will act as a Subject Matter Expert for the technology & processes related to OT Cyber Security, will ensure that good security practices are embedded across GSC manufacturing sites, make recommendations for improvement / oversight and set the direction of the OT security strategy.

Depending on the specific role you end up doing in the team there may also be a need to travel globally up to 10% of the time.

This role will provide YOU the opportunity to lead key activities to progress YOUR career, these responsibilities include some of the following :

Strategy & Standards

  • Develop in depth knowledge of the GSK technology, systems and processes deployed to protect our manufacturing operations from cyber security threats
  • Examine, design and document reference architectures for manufacturing automation systems deployed across GSC, aligned to industry standards and best practices
  • Work with key vendors to ensure vulnerabilities & threats are risk assessed and develop appropriate mitigation activities where required

Support

  • Educate GSC site automation engineers, technicians and any related technical resources on OT cyber security best practices and standards
  • Define standards, review and approve OT firewall rules to ensure both security and functionality to maximize protection of the systems hosted on the OT network infrastructure
  • Work with the sites to ensure that any cyber security incidents and alerts are responded to and completed with the appropriate sense of urgency
  • Work throughout the GSC network to define logging, alerting, patching processes to identify, reduce and mitigate cyber security risks and vulnerabilities

Delivery

  • Work with sites to ensure that OT systems are protected with the appropriate level of cyber security protection and security controls, based on a defense in depth principles
  • Work with Business Unit / Global Tech groups to deliver the required secure network infrastructure & segmentation based on recommended reference architectures and industry standards
  • Work with sites to ensure alignment with direction of strategic OT security solutions such as secure remote access, network segmentation and OT access management
  • Work with sites and Business Unit / Global Tech to ensure that the appropriate cyber security and system discovery & monitoring tools are in place and in use

Subject Matter Expert (SME)

  • SME on GSK OT architecture and infrastructure with broad general knowledge on IT applications and infrastructure with specific knowledge on key platforms se
  • SME on manufacturing automation systems, devices and applications with specific knowledge on relevant Manufacturing Execution Systems (Data historians, EBR, OEE, SAP), ISA Standards (ISA 99 / IEC62443, S95, S88) & Communication networks and protocols (Serial, Profibus, Ethernet)

Why you? Basic Qualifications :

We are looking for professionals with these required skills to achieve our goals :

  • Bachelor's in engineering, computer or similar
  • 5 years' experience in technical roles that have involved exposure to IT infrastructure and OT Cyber Security technologies / processes
  • 5 years' experience Manufacturing Automation / OT systems

Preferred Qualifications :

If you have the following characteristics, it would be a plus :

  • Effective communication skills with the ability to interface with operational, capital projects and senior management within the organization
  • Specialist training in OT Cyber Security (e.g. SANS ICS410)
  • Understanding of regulatory requirements impacting our operations (EHS, GxP, Global Engineering Standards)

LI-GSK

Please visit GSK US Benefits Summary to learn more about the comprehensive benefits program GSK offers US employees.

Why GSK?

Uniting science, technology and talent to get ahead of disease together.

GSK is a global biopharma company with a special purpose - to unite science, technology and talent to get ahead of disease together - so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns - as an organisation where people can thrive.

We prevent and treat disease with vaccines, specialty and general medicines. We focus on the science of the immune system and the use of new platform and data technologies, investing in four core therapeutic areas (infectious diseases, HIV, respiratory / immunology and oncology).

Our success absolutely depends on our people. While getting ahead of disease together is about our ambition for patients and shareholders, it's also about making GSK a place where people can thrive.

We want GSK to be a place where people feel inspired, encouraged and challenged to be the best they can be. A place where they can be themselves - feeling welcome, valued, and included.

Where they can keep growing and look after their wellbeing. So, if you share our ambition, join us at this exciting moment in our journey to get Ahead Together.

If you require an accommodation or other assistance to apply for a job at GSK, please contact the GSK Service Centre at 1-877-694-7547 (US Toll Free) or +1 801 567 5155 (outside US).

GSK is an Equal Opportunity Employer and, in the US, we adhere to Affirmative Action principles. This ensures that all qualified applicants will receive equal consideration for employment without regard to race, color, national origin, religion, sex, pregnancy, marital status, sexual orientation, gender identity / expression, age, disability, genetic information, military service, covered / protected veteran status or any other federal, state or local protected class.

Important notice to Employment businesses / Agencies

GSK does not accept referrals from employment businesses and / or employment agencies in respect of the vacancies posted on this site.

All employment businesses / agencies are required to contact GSK's commercial and general procurement / human resources department to obtain prior written authorization before referring any candidates to GSK.

The obtaining of prior written authorization is a condition precedent to any agreement (verbal or written) between the employment business / agency and GSK.

In the absence of such written authorization being obtained any actions undertaken by the employment business / agency shall be deemed to have been performed without the consent or contractual agreement of GSK.

GSK shall therefore not be liable for any fees arising from such actions or any fees arising from any referrals by employment businesses / agencies in respect of the vacancies posted on this site.

Please note that if you are a US Licensed Healthcare Professional or Healthcare Professional as defined by the laws of the state issuing your license, GSK may be required to capture and report expenses GSK incurs, on your behalf, in the event you are afforded an interview for employment.

This capture of applicable transfers of value is necessary to ensure GSK's compliance to all federal and state US Transparency requirements.

For more information, please visit GSK's Transparency Reporting For the Record site.

PDN-9d55b550-335b-4c7b-8780-42b9cbd4b3a8

5 hours ago
Related jobs
Promoted
EisnerAmper
Philadelphia, Pennsylvania

Leading assessments of client's national security posture, including but not limited to assessments of compliance with NSAs, SCAs, NIST frameworks, COSO and other security standards. Bachelor's degree in related field such as Business, Economics, Accounting/Finance, Statistics/Analytics National Sec...

Promoted
Aria Systems
Philadelphia, Pennsylvania

Be part of something amazing! Aria Systems is seeking a Senior Customer Success Manager to join our growing Customer Success team. Title: Senior Customer Success Manager. Technologically adept and business acumen focused with outstanding communication both written and oral, negotiation and presentat...

Promoted
Data Intelligence, LLC
Philadelphia, Pennsylvania

We provide full life cycle system development, systems engineering, cybersecurity, and supporting analytical and logistics support to C4ISR and other complex systems. Data Intelligence, LLC (DI) is searching for a full time Program/Project Manager supporting NSWC Philadelphia, PA. Master’s degree in...

Promoted
Kerridge Commercial Systems
Blue Bell, Pennsylvania

Must possess excellent communication skills both oral and written and be skilled in "Selling via Phone" successfully. This approach promotes a balanced work environment that combines office collaboration with the comfort and convenience of remote work. In a senior account manager role, the...

Promoted
Deloitte
Philadelphia, Pennsylvania

As a Senior Consultant in our Cyber & Strategic Risk Application Security team, you will be part of our Oracle practice and will be responsible for delivering application security for Oracle Cloud ERP, HCM, SCM and business process controls implementations and assessments. BA/BS Degree in Comput...

Bentley Systems
Philadelphia, Pennsylvania

As a Senior Product Manager in Bentley Systems' iTwin Platform group, you will be part of a dedicated team of Product Managers at the forefront of evolving our platform technologies, services, and tools. Bentley is an equal opportunity employer and considers all qualified applicants for employment w...

Promoted
Deloitte
Philadelphia, Pennsylvania

As a Business Process Controls Manager in our Cyber & Strategic Risk Application Security team, you will be part of our SAP practice and will be responsible for delivering SAP S/4 HANA and/or ECC business process controls implementations and assessments. Join our Cyber & Strategic Risk Appli...

PwC US Tax LLP
Philadelphia, Pennsylvania
Remote

As a Senior Manager, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. Demonstrates intimate abilities and/or a proven record of success assisting practice management, emphasizing partial or full management of client engagements in...

EY
Philadelphia, Pennsylvania

Provide advisory services on technology risk and security to help clients protect themselves against cyber attacks by conducting security capability and solutions assessments, delivering information security transformation, designing and implementing GRC technology solutions, performing program risk...

Eaton
Boothwyn, Pennsylvania

The Senior Power System Controls Engineer will provide field service systems integration engineering and technical consultation for customers and fellow PSC Engineers in the areas of system design, programming, installation, start up, maintenance, repair, training and modification of automated contr...