OT Cybersecurity Architect

Roche fosters diversity, equity and inclusion, representing the communities we serve. When dealing with healthcare on a global scale, diversity is an essential ingredient to success. We believe that inclusion is key to understanding people’s varied healthcare needs. Together, we embrace individuality and share a passion for exceptional care. Join Roche, where every voice matters.The PositionWe advance science so that we all have more time with the people we love. This position provides the opportunity to play a key role in securing Roche’s US based diagnostics manufacturing facilities. The sites employ integrated and automated computer control systems to manage plant operations and manufacturing data. The Cybersecurity Architect plays a vital role in protecting Roche manufacturing systems and networks against cyber threats. This role is responsible for strategic decisions in architecture, engineering, and technologies keeping the site manufacturing environments up to date with the latest Roche Manufacturing Cybersecurity standards and industry best practices. You will implement and design standardized concepts and processes and be responsible for their implementation. You will achieve this by working with local cybersecurity engineers and partners at respective locations.The OpportunityActive involvement in the implementation of the Diagnostics OperationsCybersecurity Governance Model including Plan, Design, Build and Release, Operate and Maintain.This include activities like:• Implement the defined operations cybersecurity strategy at multiple locations (in the US) in cooperation with the business and service functions• Collaborates with the internal global cybersecurity community to find process improvements and drive governance• Translate global strategies into specific local (OT) strategies and architectures in a targeted manner• Represent defined operations sites in corresponding audits and coordinate the processing of any gaps• Cooperate with global informatics colleagues for the adoption and implementation of global IT/OT service offerings into local manufacturing environments• Advise and coordinate with site OT CS Engineers on the implementation on cybersecurity-relevant topics for the areas supported• You continuously analyze the market for new and suitable solutions and coordinate their introduction with local and global teams• OT Cybersecurity Advisor during OT System planning phase• Supports manufacturing System Risk Assessment process• Developing site specific project plans for implementation of strategic cybersecurity initiatives• Contribute and work together with the Swiss based Global Operations CS Governance teamWho You Are• Bachelor’s degree ( Master preferred ) in Computer Engineering, Computer Science, Automation Engineering or similar• 5+ years of experience in cybersecurity, preferably with a focus on manufacturing or• 8+ years of experience in cybersecurity, preferably with a focus on manufacturing and deploying strategic initiatives at a regional or global setting• Certified Information System Security Professional (CISSP), ISA/IEC 62443 Cybersecurity Specialist certification, Global Industrial Cyber Security Professional (GICSP); is preferredLeadership Skills• Attention to details and good problem-solving skills• Ability to multi-task with a calm behavior and work under pressure• Good team player, self-confident, motivated, and independent• Strong coordination and facilitation skills to operate the interface between governance and implementation• Ability to communicate with and influence stakeholders and leadership at multiple levels• Planning, researching and developing security policies, standards and procedures• Experience working in the life sciences industry or similar regulated environment• Ability to travel ~20%, sometimes internationallyTechnical Skills• Expertise in anti-virus software, intrusion detection, firewalls and content filtering in OT• Knowledge of risk assessment tools, technologies and methods• Expertise in designing secure networks, systems and application architectures• Disaster recovery, computer forensic tools, technologies and methods• Very good knowledge of manufacturing and automation technologies• Advanced knowledge on networking (LAN/WAN) and industrial protocols (OPC/UA, BACNet, Profibus, CIP, …)• Current knowledge of technology capabilities and trends; types, and techniques of hacking attacks• Familiarity with industry standards: ISA95, NIST, ISO27001, and IEC62443• Extensive experience in information security and/or IT risk managementLocations:You are based in Branchburg, NJ, Indianapolis, IN, or Tucson, AZAt the Company's discretion, an exception to the location requirement could be made under extraordinary circumstances. Relocation benefits are not available for this position.The expected salary range for this position based on the primary location of Indianapolis, IN is $106,330 - $197,470. Actual pay will be determined based on experience, qualifications, geographic location, and other job-related factors permitted by law. A discretionary annual bonus may be available based on individual and Company performance. This position also qualifies for the benefits detailed at the link provided below. BenefitsWho we areAt Roche, more than 100,000 people across 100 countries are pushing back the frontiers of healthcare. Working together, we’ve become one of the world’s leading research-focused healthcare groups. Our success is built on innovation, curiosity and diversity.Roche is an equal opportunity employer and strictly prohibits unlawful discrimination based upon an individual’s race, color, religion, gender, sexual orientation, gender identity/expression, national origin/ancestry, age, mental/physical disability, medical condition, marital status, veteran status, or any other characteristic protected by law. If you have a disability and need an accommodation in relation to the online application process, please contact us by completing this form Accommodations for Applicants.Roche is an equal opportunity employer and strictly prohibits unlawful discrimination based upon an individual's race, color, religion, gender, sexual orientation, gender identity/expression, national origin/ancestry, age, mental/physical disability, medical condition, marital status, veteran status, or any other characteristic protected by law.