Deskripsi pekerjaan Security Engineer On Site (OT Security) - L2 PT Meta Wangsa Solusi
Role Overview:
We are looking for an experienced L2 OT Security Engineer to serve as the key technical
escalation point for our industrial managed security accounts. In this role, you will lead incident
response workflows, investigate deep traffic anomalies, and optimize perimeter security
configurations to address vulnerability exposure on the plant floor without interrupting critical
production lines.
Key Responsibilities:
● Escalation Support & Troubleshooting: Act as the main technical contact for complex
tickets, critical (P1) alerts, and subtle industrial protocol anomalies escalated by L1
engineers.
● Policy Tuning & Custom Signatures: Fine-tune network security profiles, manage
file-blocking rules, and develop custom signatures to accurately inspect proprietary or
modified industrial protocols.
● Vulnerability Analysis: Conduct root-cause investigations on threat exposures, filter out
false positives from network logs, and implement proactive validation steps against
targeted ICS threats.
● Reporting & Value Delivery: Build and present custom operational updates (covering
high-risk assets, top industrial applications, and key vulnerability metrics) to show current
security posture to the customer’s management.
● Mentoring & SOP Updates: Guide L1 site engineers and document clear incident
runbooks and operational procedures to keep field tasks consistent.
Technical Competencies (Hard Skills):
● Advanced OT Architecture: Strong understanding of industrial zone separation,
including micro-segmentation, DMZ structures, and securing air-gapped automation
setups.
● Palo Alto Networks Implementation: Hands-on experience configuring and maintaining
Palo Alto Networks Next-Generation Firewalls (NGFW) and centralized deployment via
Panorama, including the utilization of Industrial OT Security features.
● Packet-Level Inspection: Practical skills in deep packet analysis and troubleshooting log
flows for critical industrial protocols (Modbus, DNP3, CIP, Profinet, etc.).
● Root Cause Identification: Sharp analytical skills to distinguish between actual cyber
threats and typical hardware or automation network glitches.
Non-Technical Competencies (Soft Skills):
● Pressure Handling: Calm and methodical when leading incident response workflows
under tight customer SLA windows.
● Consultative Communication: Able to discuss deep technical details with automation
engineers while presenting concise risk metrics to management.
● Independent Drive: Active interest in tracking the latest industrial threat vectors and
remediation methodologies.
Preferred Certifications & Experience:
● 3 to 5 years of experience as a Network Security Engineer or Cybersecurity Engineer, with
clear exposure to manufacturing, industrial, or critical infrastructure operations.
● Required Certification: Active Palo Alto Networks professional certifications (PCNSA or
PCNSE).
● Additional credentials such as Cisco CCNP Security, GIAC Global Industrial Cyber
Security Professional (GICSP), or Certified Ethical Hacker (CEH) are highly preferred.

