McCormick & Company is a world leader in the spice, flavor and seasonings industry, seeking a full-time OT Cybersecurity Engineer. This role focuses on securing operational technology environments by managing cybersecurity tools and ensuring secure access, while collaborating with various teams to implement effective security measures.
Implement, manage and maintain OT security tools and technologies such as firewalls, secure remote access, asset discovery platforms, and endpoint protection systems across our industrial networks.
Work on implementing and supporting network segmentation strategies, helping to enforce proper separation between IT and OT networks.
Set up and manage secure remote access solutions for vendors, support teams, and engineering staff—making sure access is always controlled and monitored.
Review and clean up firewall rules, user access permissions, and other configurations to reduce exposure and enforce least privilege across OT systems.
Adjust security baselines and hardening strategies based on current threat landscape and intelligence reports.
Participate in the organization’s change management process to ensure that all changes to IT assets are evaluated for security impact and compliance.
Ensure that OT security policies and procedures are compliant with industry standards, regulations, and internal security requirements. Assist in audit activities and produce regular security reports.
Create and maintain clear documentation of site-specific configurations, SOPs, architecture diagrams, and change history.
Assist in OT security incident response, analysis, and resolution to minimize business impact.
Contribute to the continuous improvement of OT security practices, including recommending and implementing new security solutions and technologies.
Collaborate with operations, engineering, and corporate security teams to make sure we stay aligned on standards and compliance requirements.
Maintain thorough documentation for firewall rule sets, security configurations, procedures, and operational reports.
Qualification
Required
Bachelor’s degree in information technology, Computer Science or relevant field. Experience can be considered in lieu of degree.
One or More of: Certified ISA/IEC 62443 Cybersecurity Practitioner (CCSP), Certified ISA/IEC 62443 Cybersecurity Expert (CCSE), GIAC Global Industrial Cyber Security Professional (GICSP), Certified Ethical Hacker (CEH), OCSP, Security+, Certified SCADA Security Architect (CSSA), Checkpoint CCSE or other related security certification.
2+ years of experience in security engineering specifically within OT environments.
Strong hands-on experience in managing and configuring firewalls (CheckPoint, Palo Alto, Fortinet) in OT settings, with a focus on secure network segmentation between IT and OT.
Expertise in OT security solutions in asset discovery and vulnerability identification.
Familiarity with OT-specific protocols such as Modbus, DNP3, BACnet, and their security implications in industrial systems.
Proven ability to design, implement, and optimize OT security architectures, including network segmentation, secure zones, and firewall configurations.
Familiarity with conducting risk assessments specific to OT environments and implementing appropriate security controls to reduce exposure to threats.
Strong understanding of relevant OT security frameworks and standards, such as ISA/IEC 62443, NIST SP 800-82, and others applicable to industrial systems.
Hands-on experience implementing best practices for securing OT systems, including hardening industrial control systems, securing communication channels, and ensuring system integrity.
Must be able to multi-task and set priorities.
Must have experience leading and working in a collaborative, multi-disciplined, globally diverse team environment.
Effective communication skills and the ability to communicate appropriately at all levels of the organization; this includes written and verbal communications as well as visualizations.
Positive approach to customer service with demonstrated ability to handle high pressure support needs in a calm, respectful, and efficient manner.
Can explain OT risks and configurations issues to a range of stakeholders.
Attention to detail and follow through.
Demonstrated ability to manage both technical and business relationships and liaise on the information needs of the business to IT and system constraints back to the business.
Ability to maintain confidential and personal information.
Demonstrated leader of continuous improvement ideas and implementations.
Ability to operate a multi-cultural and multi-lingual environment both with team members and internal customers (critical).
Ability to discuss technical information with non-technical individuals across multiple cultures in multiple countries. (critical).
English fluency (critical).
Preferred
Benefits
401k
Health insurance
Paid time off
Competitive compensation
Career growth opportunities
Flexibility and Support for Diverse Life Stages and Choices
Wellbeing programs including Physical, Mental and Financial wellness
Tuition assistance
Comprehensive health plans covering medical, vision, dental, life and disability benefits
Family-friendly benefits such as paid parental leave, fertility benefits, Employee Assistance Program, and caregiver support
Retirement and investment programs including 401(k) and profit-sharing plans
McCormick manufactures, markets and distributes spices, seasoning mixes, condiments & other flavorful products to the entire food industry.
Glassdoor
3.7
Founded in 1889
Baltimore, Maryland, USA
10001+ employees
http://www.mccormickcorporation.com
McCormick manufactures, markets and distributes spices, seasoning mixes, condiments & other flavorful products to the entire food industry.
