About us: At Plexus, our vision is to help create the products that build a better world. Driven by a passion for excellence, we partner with leading Aerospace/Defense, Healthcare/Life Sciences and Industrial companies to design, manufacture and service some of the world’s most transformative products, including advanced surgical systems, diagnostic instruments, healthcare imaging equipment, mission critical aerospace systems, and electric vehicle (EV) charging solutions. Visit Plexus.com to learn more about our unwavering commitment to our vision.
When we invest in our people, we invest in building a better world.
With a vision rooted in the wellbeing and inclusive engagement of our team members, our customers, their end users and our communities, people are the heart of what we do and who we are. It is our values that unite us and guide us in everything that we do, including how we operate, behave and interact to foster a workplace where every team member feels valued and empowered to contribute their best.
Our values include: Growing our People, Building Belonging, Innovating Responsibly, Delivering Excellence and Creating Customer Success.
As a team member, you will engage in impactful work through global collaboration and the use of emerging technologies, join an inclusive culture where every team member is valued and working toward a greater purpose, and be empowered to reach your full potential through various development programs designed to accelerate your growth.
Plexus offers a comprehensive benefits package designed to support team members' wellbeing, including medical, dental, and vision insurance, paid time off, retirement savings, and opportunities for professional development. We also prioritize work-life balance and offer a variety of perks to enhance the team member experience. For more information, visit our US benefits website at usbenefits.plexus.com. Our commitment to pay range transparency fosters an equitable workplace, where everyone can feel valued. The annual compensation range for this position is stated below. The salary offered within this range will be based upon the geographic location, work experience, education, licensure requirements and/or skill level. Salary Range:
$129,500.00 - $194,300.00At Plexus, lead technology-driven initiatives as part of a winning team, focused on creating products that build a better world.
Position Overview: The OT Cybersecurity Architect is a strategic role responsible in bridging the gap between our corporate IT security standards and our physical Operational Technology (OT) environments. In this role, you will be the primary authority responsible for defining the security architecture, engineering standards, and risk management frameworks across our manufacturing environment and industrial control systems (ICS). You will ensure that our deterministic, safety-first production environments are resilient against modern cyber threats without compromising operational uptime or human safety.
Key Responsibilities
Define OT Security Architecture: Design, maintain, and govern a secure, standardized global OT cybersecurity architecture utilizing the Purdue Model and ISA/IEC 62443 frameworks.
Network Segmentation: Design robust Industrial Demilitarized Zones (iDMZs), firewalls, and micro-segmentation strategies to securely separate IT enterprise networks from the OT environment.
Technology Roadmap: Evaluate, select, and architect OT-specific security tools (e.g., asset discovery, passive network monitoring, endpoint protection for legacy systems, and industrial SIEM/SOC integration).
Governance & Standards: Establish and maintain enterprise-wide OT security governance and standards for Programmable Logic Controllers (PLCs), SCADA systems, Distributed Control Systems (DCS), Human-Machine Interfaces (HMIs), and other operational technologies relevant to manufacturing.
Bridge the IT/OT Divide: Act as the trusted liaison between Corporate IT/Security teams and Plant Engineering/Operations teams. Translate complex cyber risks into operational impacts for leadership.
Architecture Review Board (ARB): Lead architectural cyberstrategy and review for all projects affecting OT assets, guarding against unmitigated threats to manufacturing uptime or changes that violate defined cybersecurity policies and safety protocols.
Vendor Management: Partner with major automation vendors to ensure third-party systems and remote access connections comply with corporate security architecture.
Risk Assessments: Lead threat modeling and vulnerability assessments across disparate manufacturing sites, prioritizing remediation based on operational risk and safety impacts.
Incident Response Integration: Partner with the Enterprise Security Operations Center to architect OT-specific logging, monitoring, and incident response playbooks that respect the realities of a live production environment.
Qualifications & Experience
Experience: Minimum of 8–10 years of experience in cybersecurity, with at least 4+ years dedicated explicitly to OT/ICS cybersecurity architecture or engineering.
Education: Bachelor’s degree in Electrical Engineering, Computer Engineering, Computer Science, or a related technical field (or equivalent practical experience).
Industry Background: Proven experience working within large-scale, heavy industrial environments (e.g., manufacturing, pharmaceuticals, utilities, chemicals, or oil & gas).
Industrial Protocols: Deep understanding of proprietary and open industrial protocols (e.g., Modbus, Profinet, EtherNet/IP, DNP3, OPC UA).
Framework Mastery: Expert-level knowledge of ISA/IEC 62443, ISO 27001, NIST SP 800-82, and the Purdue Model.
Legacy Systems: Proven ability to architect defense-in-depth approaches around legacy, unpatchable operating systems and embedded firmware without disrupting deterministic operations.
Secure Remote Access: Experience designing zero-trust or secure multi-factor remote access solutions for internal engineers and third-party OEMs.
Additional Qualifications
SANS GIAC: GICSP (Global Industrial Cyber Security Professional), GRID (GIAC Response and Industrial Defense), or GCIP.
ISA/IEC 62443 Cybersecurity Design/Expert.
CISSP (Certified Information Systems Security Professional) with a strong portfolio of physical site experience.
Demonstrated proficiency in cloud-native architectures utilizing MQTT and other Pub/Sub methodologies.
Work Environment:
Hybrid
Travel Requirements:
Up to 25-30% travel to manufacturing/operational sites
This document does not represent a contract of employment and is not intended to capture every possible assignment the incumbent could be asked to perform.
We are pleased to provide reasonable accommodations to individuals with disabilities or special requirements. If you need an application accommodation, please contact us by email at GHQ.TA@plexus.com. Please include your contact information and clearly describe how we can help you. This email is for accommodation requests only and cannot be used to inquire about the status of applications.
We are an Equal Opportunity Employer (EOE) and do not discriminate based on race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
Some offers of employment are contingent upon successfully passing a drug screen and/or background check.