Senior Security Engineer, IoT/OT and Vulnerability Management

Are you seeking to work on a team of professionals protecting one of the world’s largest global airlines? As a Senior Security Engineer at Delta Air Lines, you’ll be collaborating with multiple teams to advise on processes to identify and assess vulnerabilities and threats on IT/IoT/OT assets. You’ll have the opportunity to contribute to an expanding team and assist in guiding best practices.

As a Senior Security Engineer, you will work with both IT and Business partners to provide guidance on vulnerability management and risk related to IoT/OT devices. You will be responsible for maintaining and administering vulnerability management and IoT/OT tools. The Cyber team seeks a self-motivated, flexible individual who is always looking for a way to improve existing processes. This position requires knowledge of IT/OT Security programs, including IT/OT Security Strategy, OT Security Operations, Security Training and Awareness, IT/OT General Controls Compliance and Audit Management, and OT Risk.

Your Responsibilities in this Role:

• Lead and develop IoT(Internet of Things)/OT (Operational Technology) program, including strategy, governance, implementation, and operations.
• Engage with business and IT stakeholders in strategic discussions to provide best-in-class IoT/OT Strategy and industry guidance to maximize long-term business objectives.
• Ensure IoT/OT program is following and compliant with all regulatory requirements.
• Ensure all OT assets are properly defined and classified. Work with business owners to reduce risk identified on IT/IoT/OT assets. 
• Perform research and analysis of scheduled and on-demand vulnerability assessments and post results.
• Research exploit techniques and mitigation strategies.
• Perform analysis of asset and vulnerability information to identify risks that were not discovered via automated scanning
• Troubleshoot issues that may occur during automated network scanning, and or agent scans. 
• Review public and private vulnerability notifications/disclosures, consume research findings, and prioritize remediation efforts.
• Create visibility and awareness for upper management on risks that require attention.
• Integrate vulnerability and IoT/OT tools with other systems, such as CMDB, SIEM, Archer, and PowerBI.
• Configure and maintain IoT/OT solutions to ensure data visibility and accuracy. 
• Build automation within the tool to operationalize IT/OT security management.

WHAT YOU NEED TO SUCCEED (MINIMUM QUALIFICATIONS)

• Must have experience with automated vulnerability management and OT (Operational Technology) tools.
• 5+ years of cyber security experience working in Vulnerability Management.
• 3+ years of cyber security experience working in IoT/OT technology.
• Working knowledge of cloud environments such as AWS, GCP, and Azure.
• Creative and adaptive work ethic, with a strong customer-oriented attitude.
• Scripting experience with Bash, PowerShell, or Python
• Ability to communicate and present to various levels of the organization
• Strong organizational and analytical skills with attention to detail
• Where permitted by applicable law, must have received or be willing to receive the COVID-19 vaccine by the date of hire to be considered for a U.S.-based job, if not currently employed by Delta Air Lines, Inc.

WHAT WILL GIVE YOU A COMPETITIVE EDGE (PREFERRED QUALIFICATIONS)

• Bachelor’s degree in Information Security, Information Technology, or Computer Science.