Network Engineer, OT jobs in United States
cer-icon
Apply on Employer Site
company-logo

PROENERGY · 1 day ago

Network Engineer, OT

positionHouston, TX
timeFull-time
remoteOnsite
senioritySenior Level
date7+ years exp

PROENERGY is a global energy transition platform focused on dispatchable power and renewable growth. The Network Engineer, OT is a senior technical professional responsible for architecting, implementing, and maintaining network infrastructure for operational technology environments across critical power generation facilities.

EnergyManufacturingRenewable Energy
badNo H1Bnote

Responsibilities

Design and implement sophisticated network architectures for SCADA, DCS, historian systems, and industrial control networks using Cisco Industrial Ethernet switches and Cisco Catalyst infrastructure
Engineer and maintain next-generation firewalls (NGFWs) for network segmentation, UTM, application control, and IPS/IDS functionality across IT/OT boundaries
Deploy and manage Cisco SD-WAN solutions for multi-site connectivity, optimize configurations, and implement advanced routing protocols (OSPF, EIGRP, BGP) for enterprise and industrial networks
Configure redundant network topologies utilizing protocols such as RSTP, PRP, HSR, and Cisco StackWise for high-availability industrial applications
Implement Quality of Service (QoS) policies, VLAN architectures, and traffic shaping to prioritize real-time control system communications and support converged IT/OT networks
Design and maintain enterprise Wi-Fi infrastructure using Wireless LAN Controllers and access point solutions for both corporate and industrial environments
Manage network infrastructure supporting virtualization platforms (VMware vSphere), cloud connectivity (Azure), and hybrid IT architectures
Deploy and optimize network monitoring solutions including SolarWinds, Cisco Catalyst Center, and FortiAnalyzer for comprehensive visibility across IT/OT environments
Architect and implement defense-in-depth security strategies and network access control (NAC) technologies
Configure and manage Firewall security policies, SSL/IPsec VPN tunnels, and secure remote access solutions for critical infrastructure personnel
Design Electronic Security Perimeters (ESP) compliant with NERC-CIP standards, implementing defense mechanisms including firewalls, unidirectional gateways, and DMZ architecture
Deploy and maintain intrusion detection/prevention systems (IDS/IPS) using next-gen technologies for continuous threat monitoring
Implement zero-trust network architectures, micro-segmentation strategies, and least-privilege access controls across IT and OT domains
Maintain comprehensive compliance with NERC-CIP and related standards for critical infrastructure protection
Conduct vulnerability assessments, penetration testing coordination, and security hardening of network devices following ISA/IEC 62443 and NIST Cybersecurity Framework guidelines
Lead incident response activities for network security events, coordinate forensic analysis, and implement corrective action plans
Configure and optimize industrial protocol communications including Modbus TCP/RTU, DNP3, OPC UA, IEC 61850, and Profinet across control system networks
Implement protocol gateways, serial-to-Ethernet converters, and ensure proper encapsulation for legacy industrial communications
Support historian database connectivity, real-time data acquisition systems, and SCADA master-to-RTU communication architectures
Design redundant communication paths for critical control functions utilizing diverse routing and automatic failover mechanisms
Troubleshoot deterministic Ethernet configurations, time-sensitive networking (TSN), and precision time protocol (PTP/IEEE 1588) implementations
Coordinate with controls engineers on PLC/DCS network requirements including Allen-Bradley ControlLogix, GE Mark series, and Siemens S7 platforms
Integrate OT networks with enterprise IT services including Active Directory, DNS, DHCP, NTP, and Windows Server infrastructure while maintaining proper segmentation
Configure and manage network infrastructure for Microsoft 365/Azure AD integration, site-to-site VPNs, and cloud service connectivity
Implement network solutions for audio/visual conferencing systems, IP telephony (VoIP), and unified communications platforms
Deploy network infrastructure for physical security systems including IP camera networks, access control integration, and building management systems (BMS)
Manage patch management, firmware updates, and change control processes for network devices across IT and OT environments using ServiceNow or similar ITSM platforms
Monitor and optimize network performance utilizing advanced analytics, NetFlow/sFlow analysis, and packet capture tools (Wireshark, tcpdump) for troubleshooting
Implement redundancy and high-availability solutions ensuring 99.99% uptime for critical OT communications and 24/7 operational support capabilities
Conduct capacity planning, bandwidth analysis, and network lifecycle management to support growing operational and business data requirements
Design and test disaster recovery/business continuity procedures for network infrastructure, including backup configurations and restoration processes
Maintain comprehensive network documentation including logical/physical topology diagrams, IP address management (IPAM), and configuration management databases (CMDB)
Lead network design and implementation for new facility construction, equipment installations, and technology refresh initiatives
Participate in commissioning activities, factory acceptance testing (FAT), and site acceptance testing (SAT) for control system network infrastructure
Provide technical leadership for vendor evaluations, RFP development, and technology selection processes for network equipment and services
Mentor junior engineers and technicians on advanced networking concepts, Cisco/Fortinet technologies, and OT security best practices
Develop and maintain standards, procedures, and technical documentation including network design templates and troubleshooting guides
Coordinate with IT Operations teams on service delivery, SLA management, and continuous improvement initiatives across infrastructure domains

Qualification

Cisco networking technologiesFortinet technologiesNERC-CIP complianceIndustrial control systemsNetwork security strategiesSCADA networksRouting protocolsIndustrial protocolsNetwork monitoring toolsCloud networkingAnalytical skillsCustomer service orientationProject managementCommunication skillsAttention to detail

Required

Bachelor's degree in Computer Science, Information Technology, Electrical Engineering, or related technical discipline
Minimum 7-10 years of progressive experience in network engineering with at least 5 years focused on industrial/OT environments
Demonstrated experience in power generation, oil & gas, manufacturing, or other critical infrastructure industries
Proven track record of managing complex, multi-site network infrastructure projects from design through implementation
Exceptional analytical and troubleshooting abilities for complex network issues in time-critical operational environments
Outstanding written and verbal communication skills with ability to translate technical concepts for diverse audiences including operations personnel and executive leadership
Strong project management capabilities with experience coordinating cross-functional teams and managing multiple concurrent initiatives
Demonstrated customer service orientation with focus on supporting 24/7 critical operations
Meticulous attention to detail for configuration management, documentation standards, and regulatory compliance
Ability to work independently, prioritize competing demands, and make sound technical decisions under pressure
Expert-level proficiency with Cisco enterprise and industrial networking technologies including Catalyst switches, Nexus data center switches, ISR/ASR routers, and Industrial Ethernet (IE-4000/IE-5000) platforms
Advanced expertise in Fortinet FortiGate firewalls, FortiManager central management, FortiAnalyzer logging/reporting, and Security Fabric integration
Deep understanding of Cisco IOS/IOS-XE command-line interface, configuration management, and troubleshooting methodologies
Comprehensive knowledge of routing protocols (OSPF, EIGRP, BGP), switching technologies (STP/RSTP/MST), and VLAN design principles
Advanced experience with SCADA networks, DCS infrastructure, and industrial control system communications architecture
Strong proficiency in industrial protocols including Modbus TCP/RTU, DNP3, OPC UA, and Ethernet/IP
In-depth understanding of NERC-CIP Critical Infrastructure Protection standards, particularly CIP-005, CIP-007, and Electronic Security Perimeter requirements
Working knowledge of PLC/PAC technologies including Allen-Bradley ControlLogix, Rockwell Automation FactoryTalk, and Siemens SIMATIC platforms
Experience with network security technologies including VPN (IPsec/SSL), NAC, 802.1X authentication, and identity management solutions
Proficiency with network monitoring and management tools such as SolarWinds, Cisco Prime Infrastructure, PRTG, or equivalent platforms
Understanding of IT infrastructure including Windows Server environments, Active Directory, virtualization (VMware/Hyper-V), and cloud networking concepts
Travel up to 35%
US work authorization is a precondition of employment. The company will not consider candidates who require sponsorship for a work-authorized visa
Successful candidate will need to satisfactorily complete pre-employment drug screen and background

Preferred

Experience with Cisco technologies, architecture, deployment, and management
Experience with Fortinet technologies, architecture, deployment, and management
Familiarity with network automation and scripting using Python, Ansible, or similar tools for infrastructure-as-code implementations
Experience with time-sensitive networking (TSN), deterministic Ethernet, and precision time protocol (PTP/IEEE 1588)
Knowledge of wireless industrial networks including WirelessHART, ISA100.11a, and private LTE/5G for industrial applications
Understanding of fiber optic technologies including single-mode/multi-mode design, DWDM, and outside plant (OSP) installations
Experience with software-defined networking (SDN), network function virtualization (NFV), and intent-based networking concepts
Specific experience in gas turbine power generation facilities, aeroderivative turbine controls, or combined cycle plant operations
Knowledge of asset performance management (APM) platforms, condition monitoring systems, and predictive maintenance analytics
Understanding of integration between OT and enterprise systems including ERP (SAP/Oracle), CMMS (Maximo/SAP PM), and document management systems
Experience with cloud networking architectures including Azure Virtual Networks, AWS VPC, and hybrid cloud connectivity
Familiarity with ITIL framework, ServiceNow ITSM platform, and IT service management best practices
Knowledge of emergency response procedures, business continuity planning, and crisis management for critical infrastructure

Benefits

Medical
Dental
Vision
Life/Disability Insurance
10 paid holidays
Paid time off
401K plan

Company

PROENERGY

twittertwitter
company-logo
PROENERGY is an engineering, R&D, and manufacturing powerhouse.
dateFounded in 2002
location
Sedalia, Missouri, USA
people-size501-1000 employees
web-link
http://www.proenergyservices.com

Funding

Current Stage
Late Stage
Total Funding
$100M
2024-09-05Acquired
2012-09-10Private Equity· $100M

Leadership Team

leader-logo
Jeff Canon
Chief Executive Officer
linkedin
leader-logo
Pedro Ejzykowicz
Chief Financial Officer
linkedin

Recent News

PR Newswire
PROENERGY Donates $1 Million to United Way of San Antonio and Bexar County Safety Net Program
2025-11-04
Houston Chronicle
San Antonio energy company dips into southeast Texas for capacity
2025-09-22
EIN Presswire
Gas Turbine Services Market CAGR to be at 9.8% from 2025 to 2029 | $46.52 Billion Industry Revenue by 2029
2025-08-05
Company data provided by crunchbase