Project Lead - Network Segmentation
Location: Ghent region
Start: ASAP
Language: Dutch (mandatory), English
We are looking for an experienced Project Lead Network Segmentation to support a complex infrastructure and security program within a manufacturing/OT environment.
Required Profile:
* At least 10 years of experience in networking and network security
* Proven experience in industrial/OT environments (PLC networks, Profinet, MPN, manufacturing firewalls, L1–L3 layers)
* Strong project leadership skills
* Hands-on networking experience is a strong asset
* Dutch-speaking and preferably based in the region
Key Improvements:
* Correct and standardize DNS and NTP settings on manufacturing devices
* Remove legacy security applications (e.g. McAfee)
* Support deployment of TXOne Stellar Protect
* Perform scope analysis for impacted devices
Network Migrations & Segmentation Activities:
* Migrate legacy IP ranges to MPN/Profinet addressing
* Migrate Sattline communication from UDP (MMS) to TCP/IP
* Move all facility networks behind the manufacturing firewall (L4 zones)
* Move all Wireless MPN networks behind the firewall
* Maintain and update the VLAN master list
* Define migration batches and coordinate firewall changes
* Create and validate netflow rules in AppViz
* Coordinate weekend migration windows with engineering teams
Security Hardening:
* Implement micro-segmentation on manufacturing servers outside the firewall
* Secure servers that cannot be moved behind the manufacturing firewall
* Block unauthorized RDP, SSH, SMBv1, SMBv2, SNMPv1 and SNMPv2 traffic
* Introduce controlled access via BeyondTrust, Cyolo or secure jump servers
* Ensure secure communication between cloud and OT networks through the Industrial DMZ
* Document manufacturing applications in AppViz
Micro-Segmentation:
* Block East/West traffic between Profinet VLANs using ACLs
* Block East/West traffic between MPN VLANs using ACLs
Governance & Coordination:
* Act as primary lead between infrastructure, network, automation partners and manufacturing engineering
* Coordinate analyses during weekdays and plan/execute migrations during weekends
* Communicate gaps, required changes and remediation plans to stakeholders
If you meet the requirements, apply or send an email to: busra.dogu@templeton-recruitment.com
I will get back to you as soon as possible!