Defines enterprise-wide OT network strategy and reference architectures for BESS platforms. Acts as the final technical authority for OT networking, cybersecurity integration, and standardization across regions and projects.
Responsibilities
- Own global OT network architecture for BESS platforms
- Define reference architectures, standards, and design frameworks
- Architect secure OT/IT integration models aligned to IEC 62443
- Lead Zero Trust adoption for OT environments (ZPA/ZIA, Cisco ZTA)
- Drive architecture for multi-site, multi-region deployments
- Define resiliency, redundancy, and failover strategies
- Review and approve all OT network designs and deviations
- Lead architecture reviews with Product, Cybersecurity, and Compliance
- Influence vendor selection, technology standards, and long-term roadmaps
- Mentor Senior Architects and Engineers
- Represent OT network architecture in customer, regulator, and executive discussions
Essential Skills
Expert-level knowledge of:
- Industrial OT network architecture
- Firewall and Zero Trust design for OT
- BGP, OSPF, VRF, advanced segmentation
- Cisco ASA / FTD / FMC / ISE at scale
- Secure OT-to-cloud connectivity (AWS)
- IEC 62443, NIST, and critical infrastructure security models
Decision Authority
- Design exceptions and risk acceptance
Experience
1218+ years
Certifications (Strongly Preferred)
- CCIE (Enterprise or Security)
- IEC 62443 Lead Implementer / OT Security certifications
