Lead OT Cybersecurity Engineer

Job Description

Job Description:
The OT (Operational Technology) Cybersecurity Engineering and Innovation team is responsible for the strategic and technical direction of OT/IACS (Industrial Automated Control Systems) cybersecurity in Chevron. OT Cybersecurity Engineers support activities such as secure-by-design, standardized solution and network architectures, and the secure implementation of OT/IACS digital technologies across Lead OT Cyber Engineers are cybersecurity influencers functioning at the Chevron Enterprise level, reaching broadly across multiple IT Foundational Platform product lines, select Digital Platforms, and OT/IACS Business Unit. These engineers have a grasp of business breadth, along with technical depth to help stakeholders make quality cybersecurity investment decisions. This role positively impacts global cybersecurity practices, in various operating assets and environments, delivering on the Chevron cybersecurity integrated risk management strategy.

Responsibilities:
Contribute to OT/IACS Cybersecurity initiatives, technology projects and security programs for one or more digital platform
Contribute to the design and review of secure IACS/OT network architectures and data flows including communication between applications, ports, protocols, and services
Contribute to the creation of OT/IACS cybersecurity guardrails and IT engineering standards to ensure OT architectures, solutions and technologies across the Chevron enterprise are built using a secure-by-design methodology
Utilize industry standards and frameworks (e.g., NIST-800-53/82, IEC-62443, MITRE ATT&CK / D3FEND), to identify capabilities and technologies to provide enhanced cyber defenses in diverse scenarios
Participate in OT cybersecurity research projects. Research, test, and/or lead proof-of-concepts for new and emerging OT technologies
Lead or participate in cybersecurity assessments (risk, vulnerability) for Chevron’s Business Unit IACS designs/installations and/or emerging technology OT solutions to determine criticality rankings and risk gaps
Take an active role in the internal OT Cybersecurity Guild, for knowledge transfer and mentoring, and actively participate, contribute, and present at OT/IACS Cybersecurity forums
Some travel (up to 20%) may be required.