Industrial Control Systems Infrastructure Engineer
Our client is a leading developer of Integrated Platform Management Systems used on Naval vessels. This position offers the unique opportunity to design, develop, and maintain cutting-edge infrastructure for naval platform management systems, including both surface ships and submarines. You will play a critical role in both the development of the product and the provision and maintenance of the development environment itself, supporting mission-critical naval programmes.
In addition to integrating IT/OT systems, you will be responsible for the management of IT assets within the development environment, ensuring compliance with company and regulatory standards such as ISO27001 and IEC62443. This role is ideal for engineers familiar with Windows Server domains, Red Hat Linux, virtualisation, industrial networking, and working within regulated environments such as defence, energy, or critical infrastructure.
Key Responsibilities:
Product Development:
* ICS Infrastructure Design: Lead the design and deployment of infrastructure solutions for PMS, ensuring high availability, security, and performance across both surface ships and submarines.
* IT/OT Integration: Develop and implement solutions that facilitate IT/OT convergence, integrating operational technology systems with IT infrastructure to enable efficient and secure data exchange between control systems and enterprise development networks.
* Networking & Security: Design and manage robust industrial networking architectures (e.g., Profinet, Ethernet/IP, fibre optics, wireless) for mission-critical applications, while ensuring compliance with defence-level security standards.
* Platform Management Systems: Work closely with multidisciplinary teams to design and integrate ICS solutions into PMS, ensuring they meet rigorous naval requirements for performance, reliability, and security.
Development Environment Provision & Maintenance:
* IT Asset Management: Oversee the inventory, tracking, and lifecycle management of all IT assets within the development environment, including both hardware and software, ensuring up-to-date documentation and optimal resource utilisation.
* Windows Server & Red Hat Linux Management: Maintain, secure, and configure Windows Server domains and Red Hat Linux environments to support the development and testing of ICS solutions. You will ensure these systems are optimised for reliability, security, and compliance with defence standards.
* Virtualisation Infrastructure: Design, implement, and maintain virtualised environments (e.g., VMware, Hyper-V) to facilitate scalable and secure development processes. This includes configuring virtual machines, monitoring system health, and automating deployment workflows for seamless operations.
* Vulnerability Assessments: Support vulnerability assessments of the development environment, including all networked systems, operating systems (Windows and Linux), and virtualisation platforms. Work with cybersecurity teams to identify and remediate security risks, ensuring the environment is protected against potential cyber threats.
* Cybersecurity & Compliance: Implement and enforce cybersecurity best practices for both IT and OT systems in the development environment. Ensure compliance with defence cybersecurity standards, including securing Windows Server domains, Linux systems, and all network infrastructure from internal and external threats.
* Automated Monitoring & Reporting: Develop automated solutions for continuous monitoring of IT assets, network traffic, and system vulnerabilities. Generate regular reports on system performance, security posture, and compliance status.
Cybersecurity & Compliance:
* Cyber Protection Techniques: Implement advanced cyber protection measures, including firewalls, intrusion detection/prevention systems (IDS/IPS), and secure authentication protocols, to safeguard both the development environment and the final ICS product.
* Vulnerability Management: Support regularly vulnerability scans, security audits, and patch management for both IT and OT systems. Collaborate with cybersecurity and product teams to address vulnerabilities, apply security patches, and harden systems against emerging threats.
* Regulatory Compliance: Ensure all systems and processes within the development environment adhere to defence regulations and cybersecurity standards, such as ISO 27001, IEC 62443, and other applicable regulatory frameworks. Implement compliance measures for secure IT and OT systems in line with industry best practices.
Required Skills & Experience:
* IT/OT Convergence: Strong background in IT/OT integration, experience working with ICS systems, including SCADA and PLCs in industrial environments.
* IT Asset Management: Proven experience in managing IT assets, including tracking hardware and software inventory, ensuring systems are updated and maintained, and handling asset lifecycle management.
* Windows Server & Red Hat Linux: Extensive hands-on experience in configuring, securing, and maintaining Windows Server domains and Red Hat Linux environments in complex, high-security settings.
* Virtualisation: Expertise in virtualisation technologies such as VMware and Hyper-V, with a demonstrated ability to set up, maintain, and optimise virtual environments for industrial applications.
* Cybersecurity & Vulnerability Management: Strong understanding of cybersecurity practices and vulnerability management for both IT and OT systems. Experience implementing vulnerability assessments reports, securing systems, and applying necessary patches or remediation.
* Industrial Networking: Knowledge of industrial networking protocols (Ethernet/IP, Profinet, Modbus), with hands-on experience in designing, deploying, and securing networks for industrial control systems.
* Regulated Industry Experience: Previous experience working in regulated environments, such as defence, energy, transportation, or critical infrastructure, with a deep understanding of compliance and security requirements.
Carbon60, Lorien & SRG - The Impellam Group STEM Portfolio are acting as an Employment Business in relation to this vacancy.
JBRP1_UKTJ