Construction Contracts and Administration Design and Construction Project Management Environmental Services Facilities and Operations Engineering Facilities Automation and Systems Facilities Customer and Service Management Facilities Operations and Campus Services Facilities Planning and Design Landscape Operations Maintenance Planning and Renovation Services Utilities Operations and Plant Management
Management Professional Supervisory
Penn State Job Catalog
Facilities Automation Systems Security Engineer – Advanced Professional (PSU0519)
Additional Levels
Additional levels that exist for this job profile can be seen below.
Missing levels within the leveling matrix can be added based on business need.
Job Summary and Representative Duties
The Facilities Automation Systems Security Engineer serves as a subject matter expert in Operational Technology (OT) cybersecurity and is responsible for securing Building Automation Systems (BAS), Supervisory Control and Data Acquisition (SCADA) systems, Laboratory Monitoring Systems, and other facility automation technologies; designs, implements, and maintains cybersecurity controls that protect critical facility infrastructure, operational continuity, and safety-related systems; leads complex cybersecurity initiatives, conducts risk assessments, investigates security incidents, and develops secure architectures for automation and control systems; collaborates with facilities, engineering, information security, and operational teams to ensure compliance with cybersecurity standards, regulatory requirements, and industry best practices, while supporting the reliable operation of mission-critical environments.
- Design, implement, and maintain cybersecurity controls for BAS, SCADA platforms, Laboratory Monitoring Systems, and related OT environments
- Conduct risk assessments, vulnerability analyses, security reviews, and threat modeling activities to identify and mitigate risks to facility automation systems
- Develop and implement secure architectures, network segmentation strategies, defense-in-depth controls, and secure remote access solutions for OT environments
- Monitor OT networks and systems for cybersecurity threats, anomalous activity, and operational risks; investigate and coordinate response to security incidents and system compromises
- Lead system hardening, secure configuration, patch management, and vulnerability remediation efforts for automation servers, controllers, field devices, and supporting infrastructure
- Evaluate, test, deploy, and administer OT cybersecurity technologies, including monitoring, detection, access control, and asset management solutions
- Assess and maintain compliance with applicable cybersecurity frameworks, standards, and regulations, including OT-specific security requirements and best practices
- Develop and maintain security policies, standards, procedures, and technical documentation related to facility automation and control systems
- Perform security audits, configuration reviews, and operational assessments to improve the security posture and resilience of OT environments
- Analyze threat intelligence, emerging vulnerabilities, and industry trends to identify risks and recommend mitigation strategies
- Collaborate with facilities, engineering, safety, and information security teams to integrate cybersecurity requirements into automation projects, system upgrades, and operational processes
- Review vendor solutions, system designs, and contractor activities to ensure compliance with cybersecurity and operational requirements
- Participate in system commissioning, testing, and implementation activities to validate security controls and operational readiness
- Track and support procurement, licensing, budgeting, and lifecycle management activities related to OT cybersecurity technologies and services
- Provide guidance on OT cybersecurity practices, technologies, and risk management strategies
- Prepare and deliver technical reports, risk assessments, recommendations, and briefings for management, project teams, auditors, and other stakeholders
- May supervise staff members, including hiring, development, and performance management
Level Matrix
- Level:
- – Advanced Professional
- Base Description:
- – Completes activities, tasks, and/or projects of a functional nature.
- Level Summary:
- – Demonstrates proficient and comprehensive knowledge of defined skill areas/applications. Applies knowledge of principles, practices, and procedures of a particular field to decision-making and problem–solving. Works under minimum supervision on varied and sometimes difficult work assignments, conferring with supervisor or subject matter experts on unusual matters. May lead others or a team in completion of complex assignments. Interprets and communicates information clearly, accurately, and persuasively. Researches and tries new approaches when solving difficult or novel problems.
- Supervisory Responsibilities:
-
– Indirect supervisor or mentor for other full–time employees
– May serve as direct supervisor for part–time, student, and/or temporary workers, volunteers, or a full–time employee
- Fiscal Responsibilities:
-
– May validate and pay invoices
– May monitor/track budgets and funding
- Problem Solving:
-
– Encounters generally routine problems with progressively more complex and/or varied problems
– Typically follows recommended course of action and procedures to resolve problems
– May apply specialized knowledge and skills to resolve complex and/or varied problems, with supervisor oversight
– Researches and tries new approaches when solving problems
- Independence of Action:
-
– Works with minimal supervision on more difficult work assignments, conferring with supervisor on unusual matters
– Follows precedents and procedures
– May set priorities and organize work within general guidelines established by supervisor
- Communication and Collaboration:
-
– Communicates internally and externally within working unit and the University
– May communicate with external audiences for business purposes
– Promotes open communication in a manner that builds relationships among team members
– Applies appropriate strategies for managing conflict; negotiate reasonable compromises; propose and evaluate possible solutions
– Interprets and communicates information, ideas and instructions clearly, accurately and persuasively both verbally and in written materials intended for distribution
Salary Structure
- Comp Grade – 12
- Minimum – $81,312.00
- MidPoint – $101,664.00
- Maximum – $122,016.00