OT/ICS Cybersecurity Lead C2c jobs Maple Grove/Arden Hills Onsite

Position: OT/ICS Cybersecurity Lead

Location: Maple Grove/Arden Hills, MN (Onsite 5Days/Week)

Pay Range: $55–$65/hour

Key Requirements:

Required Skills & Experience:

Proven leader with a strong background in OT cybersecurity architecture and execution, capable of designing and driving implementation of complex, multi-site solutions in manufacturing environments.

Strong foundation in network engineering and infrastructure, with experience in network design, segmentation, and secure architecture—especially in hybrid IT/OT environments.

Delivered full lifecycle solutions including:

• Secure remote access

• Network and OT segmentation (macro and micro)

• OT IDMZ design and deployment

• Proxy integrations

• Legacy asset protection and internet restriction policies

• Hands-on experience with OT security platforms such as Claroty, Nozomi, or Ordr, integrated with NAC (Aruba or Cisco), firewalls, and identity-based controls.

• Deep experience in infrastructure implementation, including routing, switching, and zoning technologies within modern and legacy manufacturing networks.

• Expertise in domain architecture best practices for OT, including designing isolated OT domains, proper Active Directory (AD) trust models, and secure domain controller (DC) placement and hardening strategies.

• Experience addressing domain controller patching challenges in OT environments, including:

• Developing segmentation strategies to isolate legacy systems from fully patched domain controllers

• Designing dedicated legacy-supporting domain controllers with restricted access

• Aligning firewall rules, DNS, and authentication flows to reduce risk from unpatched or constrained systems

• Skilled in developing and enforcing zoning and segmentation strategies, aligned with ISA/IEC 62443, NIST CSF, and the Purdue Model.

• Strong ability to coordinate across global sites, driving standardization of architecture, tooling, and governance.

• A vocal and assertive leader who can influence decisions, rally teams, and gain alignment across cybersecurity, IT, OT, and operations stakeholders.

• Excellent communicator with the ability to document strategy and architecture clearly and drive adoption from the boardroom to the plant floor.

• Demonstrated ability to manage technical debt, balance operational risk, and deliver scalable, resilient security solutions in production environments.

Experience & Qualifications:

• 10+ years of experience in cybersecurity or network infrastructure, with 5+ years specifically focused on OT/ICS environments in manufacturing or critical infrastructure.

• Proven track record in network and OT architecture design, and leading the implementation of global OT cybersecurity programs.

• Experience working with complex, legacy-heavy environments, enforcing segmentation, secure access, IDMZ, and governance across diverse manufacturing sites.

Preferred Certifications (Bonus, Not Required):

• Global Industrial Cyber Security Professional (GICSP)

• ISA/IEC 62443 Cybersecurity Certificate

• Certified Information Systems Security Professional (CISSP)

• Certified SCADA Security Architect (CSSA) or Industrial Cybersecurity Professional (IC32)

• TOGAF or other enterprise architecture certifications

• Cisco (CCNP/CCIE) or Aruba certifications a plus for networking depth

• Microsoft Certified: Windows Server Hybrid Administrator Associate or similar (for domain controller relevance)

Education:

Bachelor’s degree in Cybersecurity, Networking, Engineering, or Computer Science (Master’s degree a plus)