Equinix is the world’s digital infrastructure company, operating 210 data centers across the globe and providing interconnections to all the key clouds and networks. Businesses need one place to simplify and bring together fragmented, complex infrastructure that spans private and public cloud environments. Our global platform allows customers to place infrastructure wherever they need it and connect it to everything they need to succeed.
At Equinix, we help the world’s digital leaders scale with agility, speed the launch of digital services, deliver world-class experiences, and transform people’s lives. Our culture is based on collaboration and the growth and development of our teams.
We hire hardworking people who thrive on solving challenging problems and give them opportunities to hone new skills, and try new approaches, as we grow our product portfolio with new software and network architecture solutions. We embrace diversity in thought and contribution and are committed to providing an equitable work environment that is foundational to our core values as a company and is vital to our success.
The ICS Security Engineer will ensure the security of the organization's information assets, designs, configuration baselines, and systems through a structured, proactive approach that balances risk with business requirements. He or she will plan, engineer, configure, implement, and troubleshoot security and Industrial Control Systems infrastructure necessary to maintain, an array of secure global data centers and ICS infrastructure. Provide domain expertise for a variety of technology projects with an emphasis on ICS security. Partner with internal and external business partners as necessary to provide security assurance against cyber-attacks, to include inappropriate and/or unauthorized disclosure of Company and/or Customer information; and other cyber activities that could negatively impact Equinix and its customers. Implement new technologies, policies, and procedures for optimal business network operations. Provide operational support for security and OT/IT infrastructure. Proactively identify security vulnerabilities and mitigation opportunities within the security and OT/IT infrastructure. Demonstrate an aptitude for maintaining strong security market awareness as well as to recommend, implement, and handle cutting-edge technologies.
Identify changes needed in data center infrastructure design and configurations necessary to achieve the technology organization goals.
Actively participate in data center infrastructure strategy reviews and design sessions by performing applicable network, system, application, database, and security analysis.
Analyzes network & IT/OT system response and determines tuning recommendations to improve performance, adhere to capacity management expectations, and provide performance management reporting.
Lead effective issue identification and resolution processes; Serve as a senior escalation point for all data center network and IT/OT security operations issues with a degree of quality that results in absolute root-cause determination and drive vendor partners to provide quality assurances by requiring immediate bug fixes, software updates, etc.
Perform advanced tier 3 support, to include but not limited to: troubleshooting, off-hour maintenance activities, problem resolution, and on-call rotation while ensuring all activities will adhere to the services change management policy.
Perform capacity planning of all systems and environments; ensure that upgrades are completed on a standardized basis.
Create and maintain documentation as it relates to IT/OT systems, design, configuration, support and processes.
Create and maintain playbooks and remediation plans ensuring that these are tested and updated regularly.
Conduct high-level and low-level designs for data center and network infrastructure security projects and lead data center infrastructure changes.
Interact with partner organizations/departments to design network or system solutions for our data center infrastructure.
Design and develop solutions and ICS requirements based on business unit needs; make recommendations on investments in network hardware and services.
Evaluate new technologies and recommend future strategy to Management.
Interact with business partners to develop a strategy to implement ICS security.
Experience in architecture and design of global ICS security data center solutions.
Follow industry standards, regulatory requirements and the potential impacts to policies / controls, standards, and procedures and assist in audit situations, regional compliance and steering committees.
3+ years experience preferred.
Bachelor's degree in Computer Science, Computer/Electrical Engineering, Information Technology or equivalent preferred.
Certification in SANS (GPEN), SANS (GCIH) and SANS (GCED) preferred.
Have at least 5 complete years of relevant working experience with implementation / deployment / securing ICS/OT/IT systems.
Solid experience in the field of cyber security in industrial control systems, operational technology and information technology.
Focus on detecting, monitoring and controlling physical equipment and processes using:
Sensors, Actuators, Controllers
PLC (Programmable Logic Controllers)
PCD (Process Control Dynamics)
BAS (Building Automation System)
Experience and knowledge of traditional security controls and technologies, such as:
Security Information and Event Management (SIEM) systems
Intrusion Detection/Prevention systems (IDS/IPS)
Public Key Infrastructure (PKI), Identity and Access Management (IDAM) systems
Antivirus software and Firewalls
Privilege/vulnerability and threat management
Operational Support Systems
In addition to newer offerings such as:
Endpoint Detection and Response (EDR)
Cloud Security (AWS/Azure)
Threat Intelligence Platforms
Security Automation and Orchestration
Deception technologies and application controls
Well-rounded knowledge of system and network security techniques and standards, NIST CSF, 800-53, 800-82.
Demonstrates understanding of project management processes, including the planning of action items and resources, including RFI/RFP.
Able to communicate developed technology solutions, expresses the importance of an effective implementation and develops implementation plans.
Certifications in Information Security and IT disciplines such as MCSE, RHCE, CISSP, CEH, Network +, etc.
Experience with system communications protocols (TCP/IP, UDP IP, HTTP, FTP, SFTP, USB, MODBUS TCP, PROFIBUS, BACNET, RS 232/485, XMPP).
Experience in Python, Bash, PowerShell is preferred and C, C++, Visual C, Java, Java Script, SQL, a nice to have.
Creative, independent with good problem-solving skills.
Strong analytical, interpersonal, communication and writing skills.
Willingness to travel on overseas assignment as the need arises.
We offer Medical, TeleMedicine, Dental, Vision, Life and AD&D insurance, 401K, Leave of absence & disability benefits, paid time off & holidays and more.
In accordance with Colorado State Law (https://leg.colorado.gov/bills/sb19-085) the salary range for Colorado for this role is $96K- $130K per year with 15% bonus target.
Equinix is an equal opportunity employer. All applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, gender identity, age, status as a protected veteran, or status as a qualified individual with disability.
You're now being redirected to the application website
Fill in your details
You're now being redirected to the application website
Equal Employment Opportunity:
Equinix is an Equal Employment Opportunity and Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, gender identity, age, status as a protected veteran, or status as a qualified individual with disability.
Please click here to see the “EEO is the Law” poster and supplement.
Please click here to see our EEO Policy Statement.
Please click here to see our Pay Transparency Policy Statement.
A one-time (for each page view) session cookie to provide protection against a security attack called "Cross-site scripting (XSS)". This cookie is mandatory, short lived (one page interaction) and contains no candidate personally identifiable information.
A permanent long lived cookie that is associated with your device. This is used to associate your candidate actions to your CRM record.
A temporary session cookie (lasts for 20 minutes after your last interaction). This is used to associate your candidate actions into "visits or sessions" and is recorded against your CRM record. This includes location data (city, country) which allows us to provide more localised and relevant job recommendations and other career related content.