ICS Cyber Security Engineer

JobsCloseBy Editorial Insights

CRH seeks a Cyber Security Engineer to bridge IT security and plant floor automation across our global manufacturing footprint, designing, deploying and maintaining controls that protect uptime, safety and data integrity in cement, readymix and asphalt operations. You will manage OT security solutions, Purdue model network segmentation, secure third party access, vulnerability mitigation on legacy PLCs HMIs and SCADA, and monitoring and incident response while partnering with site electrical, instrumentation and automation engineers. Ideal candidates have 5+ years in IT/OT, deep OT networks knowledge, CPS visibility platforms (Claroty, Armis) and SIEM such as Splunk, plus ISA IEC 62443 and NIST CSF 2.0 familiarity. Location Atlanta Perimeter with hybrid schedule. How to apply: tailor your resume to show real world operational impact, quantify project outcomes, and demonstrate translating security risk into safe plant improvements. CRH offers competitive pay, benefits and growth opportunities.

Job ID:  525619
 

CRH is a leading global diversified building materials group, employing over 75,800 people at more than 3,160 locations in 29 countries. CRH is the leading building materials company in North America and the world. We manufacture and distribute a diverse range of superior building materials, products, and solutions, which are used extensively in construction projects of all sizes. 

Job Summary

The Cyber Security Engineer plays a critical role in bridging the gap between corporate IT security and plant floor automation across our global building materials manufacturing facilities (Cement, Readymix, and Asphalt). This role is responsible for designing, deploying, and maintaining cybersecurity controls to ensure maximum operational availability, physical safety, and data integrity. The engineer will safeguard critical continuous-flow and batch-processing environments—such as high-temperature kilns, milling operations, and automated batching systems—against emerging industrial cyber threats.

Job Location

This role is based at our corporate office in the Perimeter area of Atlanta, GA – hybrid work schedule

Job Responsibilities

• Heavy Industrial Project Delivery: Provide technical consultation and hands-on engineering support to divisional automation teams for OT cybersecurity deployments, line expansions, and plant modernization projects.
• Industrial Control Management: Operate and manage enterprise-grade industrial security solutions, including network segmentation (Purdue Model), secure remote access for third-party OEMs, endpoint protection, backup/recovery, and firmware/patch management.
• Vulnerability Mitigation: Identify, assess, and safely mitigate cybersecurity vulnerabilities in legacy PLCs, HMIs, and SCADA networks without disrupting critical manufacturing uptime or causing environmental control issues.
• Logistics & Supply Chain Security: Secure the integration points between OT plant networks, proprietary batching/mixing software, weighbridges, and bulk logistics/distribution interfaces.
• Monitoring & Incident Response: Maintain OT visibility platforms, construct relevant search queries within SIEM/log management tools, and participate in incident response planning tailored to physical process disruption and disaster recovery.
• Culture & Collaboration: Build strong relationships with site-level electrical, instrumentation, and automation engineers, fostering a culture of cybersecurity awareness across highly distributed plant environments.

Job Requirements

• 5+ years of experience in IT/OT operations, system administration, or industrial cybersecurity engineering, preferably within heavy industry, process manufacturing, or mining/aggregates.
• Exceptional interpersonal and technical documentation skills, with the ability to translate complex security risks into concrete operational impact for plant floor personnel.
• Self-motivated, methodical, and process-driven with a proven track record of delivering complex infrastructure projects within tight operational shutdown/turnaround windows.
• Deep understanding of OT networks, architectures (Purdue Model), and typical cyber threats facing heavy industrial Cyber-Physical Systems (CPS).
• Hands-on experience with Windows Server/Workstations, industrial networking, virtualization hosting environments, and robust backup/disaster recovery solutions for plant networks.
• Proven experience with Cyber-Physical Systems (CPS) visibility platforms (e.g., Claroty, Armis) and security tooling (Endpoint Protection, Network Security).
• Strong grasp of industrial incident response, change management, and exposure to log management/SIEM tools (e.g., Splunk) for threat detection.
• Direct familiarity with global industrial and IT security standards, with a strong emphasis on ISA/IEC 62443, supported by NIST CSF 2.0 and ISO 27001.
• Bachelor’s degree (or equivalent experience) in Automation Engineering, Electrical Engineering, Information Technology, Computer Science, or Industrial Cybersecurity.
• Preferred certifications include SANS/GIAC (GICSP, GRID, GCIP), ISA/IEC 62443 Expert, CISSP, or relevant network infrastructure credentials (e.g., CCNA).

What CRH Offers You

• Highly competitive base pay
• Comprehensive medical, dental and disability benefits programs
• Group retirement savings program
• Health and wellness programs
• An inclusive culture that values opportunity for growth, development, and internal promotion

About CRH

CRH has a long and proud heritage. We are a collection of hundreds of family businesses, regional companies and large enterprises that together form the CRH family. CRH operates in a decentralized, diversified structure that allows you to work in a small company environment while having the career opportunities of a large international organization.

If you’re up for a rewarding challenge, we invite you to take the first step and apply today! Once you click apply now, you will be brought to our official employment application. Please complete your online profile and it will be sent to the hiring manager. Our system allows you to view and track your status 24 hours a day. Thank you for your interest!

CRH is an Affirmative Action and Equal Opportunity Employer.

EOE/Vet/Disability

AI tools may be used in certain stages of the employment lifecycle, such as candidate review; however, all final employment decisions will be made by a person.