Vantage Data Centers powers, cools, protects and connects the technology of the world’s well-known hyperscalers, cloud providers and large enterprises. Developing and operating across North America, EMEA and Asia Pacific, Vantage has evolved data center design in innovative ways to deliver dramatic gains in reliability, efficiency and sustainability in flexible environments that can scale as quickly as the market demands.
The Vantage Cybersecurity Department is very hands-on. In most cases, we specify, purchase, configure, and maintain all networking and server hardware with a keen focus on cybersecurity measures. We also work closely with partner Value Added Resellers (VARs) to learn about the latest technological changes and cybersecurity trends so that we can make informed purchase decisions. We are always looking for ways to strike the best balance between technology, performance, cost, and cybersecurity. Vantage Cybersecurity Department also participates in designing each of our new data center building’s cybersecurity infrastructure. If you like getting your hands dirty and helping to design, build, and maintain cybersecurity infrastructure in a modern data center, then come work at Vantage. We’re expanding with many new builds, enhancing our focus on safeguarding data and infrastructure in the face of evolving cyber threats.
The ICS/OT Cybersecurity Engineer will support the security of a global OT environment by implementing, and validating cybersecurity controls across ICS/OT systems. The role includes performing risk and vulnerability assessments, contributing to secure architecture and strategy, and delivering hands-on implementation of OT security solutions such as segmentation, monitoring, and privileged remote access.
The engineer will also support controlled security testing and purple team activities to validate controls, identify attack paths, and improve detection and response. Additional responsibilities include analysis of security events, root cause investigation, and continuous improvement of monitoring and response capabilities, while working closely with other teams to ensure a safe, non disruptive security posture.
Partner closely with the OT Cybersecurity Manager, other OT Cybersecurity Engineers, and wider cybersecurity functions including GRC and Threat Intelligence.
Represent OT Cybersecurity, supporting on call activities and participating in meetings with site operations, vendors, and internal stakeholders to drive consistent implementation of OT cybersecurity practices.
Perform OT Cybersecurity Risk assessments against best practices and industry frameworks (e.g., ISA/IEC 62443, NIST SP 800-82, NIST CSF) including participating in audits.
Act as a key contributor in OT security testing by conducting controlled, non disruptive vulnerability assessments, security validation, and simulation based (purple team) activities to identify vulnerabilities, validate security controls, and assess potential attack paths in coordination with engineering and operations teams.
Conduct technical data collection and analysis, including packet capture (PCAP), firewall rule reviews, system configuration reviews, Active Directory enumeration where relevant, and industrial network traffic analysis to identify vulnerabilities, attack paths, anomalous activity, and misconfigurations.
Support integration of OT security monitoring into SOC workflows, including alert tuning, use case development, detection improvement, and SOAR playbook development.
Support validation of alerts, reduce false positives, identify detection gaps, and improve response effectiveness against relevant OT attack techniques.
Support Implementation and Ongoing management of Privileged Remote Access (PRA) solution to control and monitor third party access to critical OT environments.
Perform OT asset discovery, inventory management, and risk classification using OT monitoring platforms (e.g., passive monitoring tools), and support the deployment and configuration of ICS/OT IDS solutions.
Work closely with data center teams to ensure cybersecurity controls do not impact uptime, safety, or operational resilience.
Researching, developing, operationalizing, evaluating, and improving OT defensive tactics, techniques, and procedures (TTPs) for detecting and responding to cyber threats
Maintain and create documentation as needed
Perform other ad hoc duties to support the company’s security goals.
Hands-on experience in IT / OT environments, deploying, configuring, and supporting IT / OT cybersecurity solutions across industrial systems and critical infrastructure.
Proven experience performing cybersecurity risk assessments across IT / OT environments, including identification of threats, vulnerabilities, and operational impacts.
Understanding of security testing methodologies, including white box, grey box, and controlled (non-disruptive) assessment approaches in IT / OT environments.
Strong knowledge of cyber threats, attack vectors, exploits, and adversary tactics, techniques, and procedures (TTPs), with the ability to apply this knowledge to real-world scenarios.
Experience in purple team or security validation activities, including simulating attack scenarios in a controlled manner to validate security controls, detection capabilities, and response effectiveness.
Ability to analyse network traffic and host-based data (e.g., logs, packet captures, system configurations) to identify anomalies, security events, and potential attack paths.
Strong understanding of networking fundamentals, including routing, switching, VLANs, segmentation, and secure network design for IT / OT environments.
Experience supporting or participating in incident response activities and tabletop exercises, helping validate readiness and improve coordination across teams.
Building Management Systems (BMS)
Electrical Power Monitoring Systems (EPMS)
SCADA platforms
PLC platforms (e.g., Siemens, Schneider, Rockwell)
Industrial Protocols (Modbus, DNP3, BACnet, OPC, S7, CIP)
Passive OT monitoring solutions (e.g., Tenable, Nozomi, Claroty)
Firewalls (IDS/IPS, DPI, application control, web filtering)
Network infrastructure (routing, switching, wireless, segmentation)
SIEM, SOAR, and XDR platforms
Log analysis, alert investigation, and incident response workflows
Familiarity with security testing and analysis tools such as Kali Linux, Nmap, Wireshark, Metasploit (controlled use), and other network and protocol analysis tools
Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or related focused technical training or 4 additional years of engineering experience that may have been acquired in the military, public or private sectors.
Following certifications are preferred CCNA, GICSP, GRID, other Network and Security certifications
Following certifications are nice to have OSCP / OSCP+, GPEN
Understanding of general cybersecurity frameworks (ISO IEC 27001/27002, ISO 15408, NIST Cybersecurity Framework (CSF), NIST SP800-53)
Excellent written and verbal communication skills with transparent and timely communication
Expected travel is less than 20% but may be higher during construction projects. May grow and evolve over time
Be available outside standard working hours when required
Data Center experience is strongly preferred, but not required
#LI-FW1
We operate with No Ego and No Arrogance. We work to build each other up and support one another, appreciating each other’s strengths and respecting each other’s weaknesses. We find joy in our work and each other, actively seeking opportunities to inject fun into what we do. Our hard and efficient work is rewarded with an above market total compensation package. We offer a comprehensive suite of health and welfare, retirement, and paid leave benefits exceeding local expectations.
Throughout the year, the advantage of being part of the Vantage team is evident with an array of benefits, recognition, training and development, and the knowledge that your contribution adds value to the company and our community.
Don't meet all the requirements? Please still apply if you think you are the right person for the position. We are always keen to speak to people who connect with our mission and values.
Vantage Data Centers is an Equal Opportunity Employer
Vantage Data Centers does not accept unsolicited resumes from search firm agencies. Fees will not be paid in the event a candidate submitted by a recruiter without an agreement in place is hired; such resumes will be deemed the sole property of Vantage Data Centers.
