R&D OT Network Security Engineer

GlaxoSmithKline
Stevenage
3 weeks ago
Create job alert

Site Name:UK - Hertfordshire - Stevenage, GSK HQ
Posted Date:Feb 5 2025

We create a place where people can grow, be their best, be safe, and feel welcome, valued and included. We offer a competitive salary, an annual bonus based on company performance, healthcare and wellbeing programmes, pension plan membership, and shares and savings programme.

We embrace modern work practises; our Performance with Choice programme offers a hybrid working model, empowering you to find the optimal balance between remote and in-office work.

R&D Operational Technology (OT) Network Security Engineer

Within R&D Digital & Tech we are looking for anOperational Technology (OT) Network Security Engineerwho will oversee networks used for R&D operations and have the necessary operational knowledge to specify network changes, assuring continued network availability. The OT Network Security Engineer will support Site Focal Point with technical insight necessary for secure file management according to policies and have a role in new system implementation and incident response.

It is key for the OT Network Security Engineer to have in-depth understanding of network architecture to design, implement, and manage secure and efficient networks and proficiency with cybersecurity tools (e.g., firewalls, intrusion detection/prevention systems) and techniques to protect network integrity and respond to security incidents.

The OT Network Security Engineer will have ownership and responsibility to deliver secure and reliable operational technology network infrastructure through the proactive identification and resolution of vulnerabilities.

Job Purpose

In this role you will

  1. Network Security: Support the implementation of key network controls such as segmentation to isolate different parts of the OT environment, zoning to secure conduits for communication between zones and firewall management.
  2. Change Management: Implement change control processes to ensure that network changes are appropriate tested and approved without disruption to critical OT operations.
  3. Incident Management: Support the technical response to operational technology-related incidents, ensuring rapid resolution to minimize downtime and operational disruption.
  4. Device Management: Harden devices such as switches, routers, firewalls by partnering and coordinating with the R&D OT Security Team and other key stakeholders aligned to GSK standards and proportionate to risk.
  5. Wireless Security: Support the security of OT communication protocols by enabling encryption, authentication or using protocol-specific security enhancements where possible.
  6. Vulnerability: Identify, triage and mitigate vulnerabilities that could lead to a breach of confidentiality, integrity or availability across the OT networks.
  7. Patch Management: Work with R&D lines and vendors to identify, test, validate and deploy security patches and updates for the OT network.
  8. Firewall Security: Configure and maintain firewall rules and associated documentation tailored for OT networks.
  9. Control Management: Support the implementation of cybersecurity measures specific to operational technology environments.
  10. Back-up and Restore: Work with key technology and business stakeholders to ensure that network configurations and critical security appliances such as firewalls are backed-up regularly and that recovery plans are in place in case of system failures, outages and/or cyber-attacks.
  11. Quality, Risk & Compliance: Support operational technology compliance with internal security and risk management policies and practices, as well as external regulatory and statutory requirements e.g. GxP and that Tech continuity plans are in place for all critical areas.
  12. People Management: Collaborate with internal owners of security technologies such as antivirus, IDS/IPS, SIEM, endpoint detection & response, configuration management, privileged identity management, etc.

Why you?

Basic Qualifications:

We are looking for professionals with these required skills to achieve our goals:

  1. Bachelor’s Degree - Technical Degree e.g. Engineering, Information Technology
  2. In-depth understanding of network architecture to design, implement, and manage secure and efficient networks.
  3. Proficiency with cybersecurity tools (e.g., firewalls, intrusion detection/prevention systems) and techniques to protect network integrity and respond to security incidents.
  4. Strong ability to collaborate with cross-functional teams and communicate technical insights effectively to support secure file management and other security initiatives.
  5. Expertise in ensuring R&D adherence to OT security policies and standards. Skill in driving initiatives that support security, innovation, and efficiency within the R&D environment.
  6. Self-confident/assertive/dynamic/motivated behavior & being able to work on multiple tasks/projects in parallel with supervision.

Preferred Qualifications:

If you have the following characteristics, it would be a plus:

  1. Master’s Degree – Technical Degree eg Engineering, Information Technology.
  2. Experience in network engineering roles.
  3. Completed relevant network related certifications (CompTIA Security+, GICSP, CISSP, ISA/IEC 62443) or equivalent.
  4. Experience supporting systems/applications used in pharmaceutical, clinical, or related fields would be an asset.
  5. Familiar with cloud computing and security standards for cloud first environment.

Closing Date for applications:16th Feb 2025

Please take a copy of the Job Description, as this will not be available post closure of the advert.

#J-18808-Ljbffr

Related Jobs

View all jobs

AIT Mechanical Operations Engineer - Aerospace

▷ (Apply Now) AIT Mechanical Operations Engineer -Aerospace

Data Architect

Head of Electronic and Electrical Engineering

Firewalls Design Engineer

Graduate Software Engineer

Get the latest insights and jobs direct. Sign up for our newsletter.

By subscribing you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

10 Must-Read Cyber Security Books for UK Professionals: Boost Your Career and Stay Ahead of Threats

With rapid advancements in digital infrastructure, cloud computing, and the Internet of Things (IoT), cyber threats continue to evolve at lightning speed. For organisations across the UK—and globally—robust cyber security is no longer optional: It’s a strategic imperative. From healthcare and finance to government agencies and tech start-ups, every sector needs skilled professionals to safeguard critical data and protect users. If you’re looking to break into or advance within the cyber security industry, staying updated on the latest techniques, threat landscapes, and defence strategies is paramount. One of the best ways to build and sharpen your expertise is by reading authoritative, high-quality books that combine foundational knowledge with cutting-edge insights. In this guide, we’ve compiled a list of ten books that cater to various skill levels, spanning ethical hacking and threat intelligence to secure software development and cryptography. By diving into these resources, you’ll fortify your understanding of cyber security fundamentals, explore hands-on techniques for defending systems, and gain the strategic perspective needed to excel in roles throughout the UK’s thriving cyber security landscape.

Navigating Cybersecurity Career Fairs Like a Pro: Preparing Your Pitch, Questions to Ask, and Follow-Up Strategies to Stand Out

In a world where digital threats are escalating and online infrastructure underpins nearly every aspect of our personal and professional lives, cybersecurity has swiftly become one of the most sought-after career fields. Demand for skilled cybersecurity professionals outstrips supply, both in the UK and globally. From ethical hackers and penetration testers to governance, risk, and compliance (GRC) specialists, the opportunities are extensive—and lucrative. Amidst this surge in demand, cybersecurity career fairs provide an invaluable chance to meet potential employers face-to-face, gain industry insights, and make connections that can accelerate your career trajectory. Unlike applying to countless jobs online, these events bring companies, security leaders, and aspiring candidates together under one roof. When approached with the right strategy, a single conversation at a cybersecurity fair can open the door to your dream job. In this comprehensive guide, we’ll explore how to prepare thoroughly, engage confidently, and follow up effectively after a cybersecurity career fair. By incorporating these insights into your approach, you’ll stand out from the crowd and maximise your chances of securing the perfect role in this fast-growing field.

Common Pitfalls Cyber Security Job Seekers Face and How to Avoid Them

The cyber security industry in the UK and worldwide is experiencing rapid growth. With cyber attacks growing in sophistication and frequency, organisations are investing more resources than ever into defending their digital assets. From penetration testers and threat analysts to security architects and compliance officers, cyber security professionals are in high demand across a variety of sectors—including finance, healthcare, government, and retail. Yet, in spite of this high demand, the process of landing a cyber security role can be more challenging than many candidates anticipate. The stakes are high: prospective employers entrust cyber professionals with their most sensitive data, their compliance posture, and often their core business operations. Therefore, they’re looking for candidates who can demonstrate not just technical know-how, but also excellent communication, adaptability, and an awareness of the broader business context. In this article, we’ll explore the most common pitfalls that cyber security job seekers face, especially in the UK market, and how to avoid them. Whether you’re a recent graduate, a professional transitioning from a different field, or an experienced practitioner aiming for a senior role, these insights will help you stand out and secure the opportunities that fit your skill set and career goals.