Cybersecurity Architect

An exciting career awaits you

At MPC, we’re committed to being a great place to work – one that welcomes new ideas, encourages diverse perspectives, develops our people, and fosters a collaborative team environment.

The OT Cybersecurity Architect is responsible for designing solutions that balance business requirements with information and cybersecurity requirements. The position is responsible for facilitating, prioritizing, and leading architecture and design activities related to Cybersecurity projects and programs. The position acts as a liaison across IT and other internal and external operating (OT) business units to successfully deploy new cybersecurity capabilities. The position works closely with other architects to identify and implement tools and technologies while adhering to cybersecurity standards to strengthen the company’s defenses.

Key Responsibilities

• Possess and utilize subject matter expertise level knowledge of Industrial Control Systems (ICS) and other Operational Technology (OT). Develop logical architecture, standards, and processes for cybersecurity technologies
• Plan, research and design robust security architectures for OT cybersecurity projects
• Work closely with infrastructure architects, network architects, and other cybersecurity architects to ensure that the design adheres with Cybersecurity standards and applicable regulations
• Develop and drive the implementation of defense-in-depth strategies to protect information from sensor to datacenter, and across transient field devices
• Actively participate in cybersecurity technology evaluation and selection
• Provide security guidance and requirements to various technology teams on methods for driving security into every aspect of systems delivery
• Work closely with cross-functional teams as a subject matter expert for security standards and architectures
• Actively participate in proof-of-concept evaluations by assessing the technical risks, and formulating architectural requirements
• Identify security design gaps in existing and proposed architectures and recommend changes or enhancements
• Participate in compliance audits by providing subject matter expertise on technical controls
• Demonstrates in-depth conceptual and practical knowledge 
• Self-sufficient; works independently, with minimal guidance
• Solves complex problems; takes a new perspective on existing solutions; exercises judgment based on the analysis of multiple sources of information
• Makes decisions within broad parameters
• Supports project lifecycle activities and deliverables 
• Identifies and implements best practices in collaboration with stakeholders
• Must be willing to travel as needed, up to 20%
• Establish understanding of the business by nurturing positive working relationships with business partners

Education and Experience

• Bachelor’s degree in a technical field (Cybersecurity, Computer Science, Information Systems, Information Technology (IT), Information Systems Security, Electrical Engineering)
• In addition to education, the following experience and certifications are required
• 5 or more years of experience in a technical, professional role for a large enterprise, with a minimum of 4 years’ experience in cybersecurity architecture or in support of large-scale engineering and operations projects
• Professional certifications such as CISSP-ISSAP, CISA as well as GIAC certifications strongly preferred

Skills

• Expertise in network segmentation and network security (firewalls)
• Understanding of Operational Technology including industrial control systems, building management systems, and safety systems
• Knowledge about Industrial Internet of Things (IIoT) security and management
• Strong leadership, technical, interpersonal relationship, and communication skills (both written and verbal)
• Familiarity with the NIST CSF, 800-53, 800-82, and ISA/IEC 62443 controls and standards

Proficiency in the Purdue Enterprise Reference Architecture (PERA) for ICS

As an energy industry leader, our career opportunities fuel personal and professional growth.