Lead OT Network Systems

Job Description Who We Are   At Kraft Heinz,   we're   driving transformation in the way we deliver safe, resilient, and future-ready manufacturing environments. Technology plays a critical role in making this possible. This role sits at the intersection of operational technology and cybersecurity, helping us modernize infrastructure, strengthen security, and enable innovation across one of North America's largest food and beverage networks.   If   you're   a technical leader who thrives on building solutions, setting standards, and making a tangible impact, this is your opportunity to contribute at scale.   About the Role   The OT Infrastructure and Security Engineer, Group Lead provides technical leadership across 31 North American manufacturing facilities with accountability for OT infrastructure modernization and cybersecurity capability improvement.   You'll   define strategy, lead implementations, and act as a hands-on expert in environments spanning Allen-Bradley control systems, VMware-based OT compute, Windows platforms, and advanced OT security solutions such as   Claroty , EDR, NDR, and micro-segmentation technologies.   This is a builder's role: balancing strategic design with tactical execution, introducing standards, and delivering meaningful improvements in resiliency, visibility, and cyber posture.   What You'll Do   Lead OT Infrastructure Initiatives   Define and mature reference architectures, standards, and support models for core OT infrastructure: compute, virtualization, and site-level platforms   Act as a senior technical lead for Rockwell IDC environments, VMware-based OT systems, and Windows servers/workstations across plants   Advance OT Cybersecurity   Drive buildout of OT cybersecurity tools and foundational controls   Oversee   Claroty   platform evolution from CTD to   xDome , including architecture, integration, and use case development   Define and implement strategies for OT detection, asset intelligence, and vulnerability reduction   Lead deployment and management of Endpoint Detection & Response (EDR), Network Detection & Response (NDR), and micro-segmentation solutions within OT environments   Strengthen Asset Visibility and Lifecycle Management   Establish reliable OT asset inventory and configuration data foundations   Support lifecycle planning, vulnerability tracking, and risk-based remediation across diverse technologies   Shape Modernization and Risk-Reduction Roadmaps   Assess infrastructure health and prioritize modernization investments   Develop pragmatic strategies for containment, isolation, recovery readiness, and phased upgrades   Manage OT Security Operations Center (SOC) Services   Serve as the primary point of contact for OT SOC services delivered by a Managed Service Provider (MSP)   Coordinate alert triage, detection tuning, and escalation workflows between Kraft Heinz operations, cybersecurity, and the SOC team   Manage KPIs, service performance, and continuous improvement for OT SOC operations   Incident Response   Act as a technical lead or key contributor in OT-related incident response activities, from   initial   escalation through containment and recovery   Lead the development and implementation of comprehensive OT-specific incident response plans aligned with corporate security frameworks   Collaborate with SOC, cybersecurity teams, plant operations, and vendors to investigate, remediate, and report security incidents   Support tabletop exercises and continuous enhancement of OT incident response procedures   Develop recovery time   objectives   (RTO) and recovery point   objectives   (RPO) for critical control systems   Set Standards and Drive Governance   Create and   maintain   OT engineering standards and security baselines   Support governance of changes   impacting   cyber risk, resiliency, or supportability   Partner Across Functions   Collaborate with plant engineering teams, OT network teams, cybersecurity, operations, and technology vendors   Provide technical leadership during assessments, incidents, and major OT initiatives   Provide technical guidance and training to plant personnel on cybersecurity best practices   Participate in incident response activities and post-incident reviews   Support audit and compliance activities related to manufacturing systems   What Success Looks Like   Materially improved OT infrastructure and cybersecurity posture across 31 plants   Comprehensive implementation of EDR, NDR, and micro-segmentation solutions supporting a robust defense-in-depth posture   High-performing, responsive OT SOC services integrated into operational workflows   Clear, tested processes for rapid OT incident detection and response   Standardized practices and governance that enhance resilience at scale   Required Qualifications   Bachelor's degree in Engineering , IT, Cybersecurity, Computer Science (or equivalent OT experience)   7+ years in OT infrastructure, automation, industrial networking, or OT cybersecurity   Demonstrated experience supporting OT systems in manufacturing environments (Food & Beverage/CPG preferred)   Deep   expertise   with OT-hosted systems: Windows, VMware, and industrial application hosting   Strong understanding of Allen-Bradley/Rockwell ecosystems and OT operational constraints   Hands-on experience with EDR, NDR, or network segmentation solutions in OT or critical infrastructure   Familiarity with OT cybersecurity tooling, passive monitoring, and access governance   Ability to manage MSP relationships effectively and influence cross-functional teams through ambiguity   Preferred Qualifications   Experience with   Claroty   CTD/ xDome   deployments and tuning   Implementation experience with micro-segmentation technologies in OT   Understanding of Purdue OT reference architecture and industrial DMZ concepts   Familia