Remote Splunk Engineer Jobs in Troy, MI (NOW HIRING)

Position Summary

As an OT/ICS Cybersecurity Senior Consultant at Deloitte, you will play a pivotal role in designing, implementing, and optimizing cybersecurity solutions for industrial environments. You will work with clients in energy, manufacturing, utilities, and other critical infrastructure sectors to secure operational technology (OT) and industrial control systems (ICS), ensuring the safety, reliability, and resilience of their operations. You will leverage your deep technical expertise, industry knowledge, and hands-on experience with leading OT/ICS security tools to deliver innovative solutions, lead project teams, and provide strategic guidance to clients.

Recruiting for this role ends on 12/31/2026.

Work you'll do

OT/ICS Security Architecture & Design

• Lead the design and implementation of OT/ICS cybersecurity architectures, including network segmentation, secure remote access, and integration with IT security controls.
• Develop and document security reference architectures, blueprints, and roadmaps tailored to client environments and industry standards (e.g., NIST 800-82, IEC 62443).
• Evaluate, select, and deploy OT/ICS cybersecurity technologies, with hands-on experience in:
• Claroty for OT asset discovery and vulnerability management
• Palo Alto and Cradlepoint for firewall configuration, segmentation, and secure connectivity
• CrowdStrike for OT monitoring and threat detection
• BeyondTrust for privileged secure remote access management
• Familiarity with other vendor tools such as Cisco (network security), ServiceNow (ticketing and workflow integration), Splunk (SIEM/log analytics), Crowdstrike (Falcon Discover for IoT) and TxOne (OT endpoint protection)
• Conduct security acceptance testing and validation of new or updated OT systems to ensure compliance with security requirements and industry best practices.

Risk Assessment & Vulnerability Management

• Perform consequence-based risk assessments for OT environments, utilizing methodologies such as Cyber Process Hazards Analysis (Cyber PHA) to identify, analyze, and prioritize cyber risks.
• Lead vulnerability management efforts for OT/ICS assets, including the use of Claroty for vulnerability identification, risk scoring, and remediation planning.
• Support clients in achieving regulatory compliance and readiness for audits related to OT/ICS cybersecurity.

Incident Response & Monitoring

• Design and implement OT/ICS security monitoring solutions, leveraging tools such as CrowdStrike for endpoint and network monitoring, and Splunk for log aggregation and analytics.
• Collaborate with IT and OT teams to develop and test incident response plans specific to industrial environments.
• Integrate monitoring and alerting workflows with ServiceNow for streamlined incident management.

Governance, Policy, and Training

• Develop and update OT/ICS cybersecurity policies, standards, procedures, and job aids.
• Deliver training and awareness programs for client personnel, including plant operators, engineers, and third-party vendors.
• Advise clients on governance frameworks and best practices for OT/ICS cybersecurity program development and maturity assessments.

Client Engagement & Leadership

• Serve as a subject matter expert in client meetings, workshops, and presentations, especially regarding the deployment, integration, and optimization of OT/ICS security tools.
• Lead project teams, mentor junior staff, and contribute to business development activities such as proposal writing and solution development.
• Stay current on emerging OT/ICS threats, vulnerabilities, and technologies, and share insights with clients and internal teams.

The team

The Cyber Services team delivers fully managed cyber capabilities that bring together market-tested technologies, leading practices, and pre-built use cases to accelerate time to value and improve operational resilience.

Qualifications

Required:

• Bachelor's degree in Engineering, Computer Science, Information Security, or related field.
• 7+ years of experience in OT/ICS cybersecurity, including hands-on experience with industrial control systems (e.g., SCADA, DCS, PLCs) in sectors such as oil & gas, energy, utilities, or manufacturing.
• 4+ years of demonstrated experience designing and implementing OT/ICS security architectures and controls using tools such as Claroty, Palo Alto, Cradlepoint, CrowdStrike, BeyondTrust PRA, and familiarity with Cisco, ServiceNow, Splunk, and TxOne.
• Limited immigration sponsorship may be available
• Ability to travel up to 50%, on average, based on the work you do and the clients and industries/sectors you serve.

Preferred:

• Advanced degree preferred.
• Professional certifications such as GICSP, CISSP, CISM, ISA/IEC 62443, or equivalent.
• Strong knowledge of OT/ICS protocols (e.g., Modbus, DNP3, OPC, Profibus), network architectures, and common vulnerabilities.
• Experience with cloud-based OT/ICS security solutions and IT/OT convergence initiatives.
• Experience with OT/ICS cybersecurity technologies for asset discovery, vulnerability management, network monitoring, endpoint protection, and privileged access management.
• Familiarity with industry standards and frameworks (e.g., NIST 800-82, IEC 62443, NERC CIP).
• Experience conducting risk assessments, vulnerability management, and incident response in OT environments.
• Strong communication skills, with the ability to present complex technical concepts to both technical and non-technical audiences.
• Demonstrated leadership in project delivery and client engagement.
• Prior consulting experience with a focus on critical infrastructure or industrial sectors.
• Experience developing and delivering OT/ICS cybersecurity training programs.

The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is 105,400 to 207,800.

You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.

Position Summary

As an OT/ICS Cybersecurity Senior Consultant at Deloitte, you will play a pivotal role in designing, implementing, and optimizing cybersecurity solutions for industrial environments. You will work with clients in energy, manufacturing, utilities, and other critical infrastructure sectors to secure operational technology (OT) and industrial control systems (ICS), ensuring the safety, reliability, and resilience of their operations. You will leverage your deep technical expertise, industry knowledge, and hands-on experience with leading OT/ICS security tools to deliver innovative solutions, lead project teams, and provide strategic guidance to clients.

Recruiting for this role ends on 12/31/2026.

Work you'll do

OT/ICS Security Architecture & Design

• Lead the design and implementation of OT/ICS cybersecurity architectures, including network segmentation, secure remote access, and integration with IT security controls.
• Develop and document security reference architectures, blueprints, and roadmaps tailored to client environments and industry standards (e.g., NIST 800-82, IEC 62443).
• Evaluate, select, and deploy OT/ICS cybersecurity technologies, with hands-on experience in:
• Claroty for OT asset discovery and vulnerability management
• Palo Alto and Cradlepoint for firewall configuration, segmentation, and secure connectivity
• CrowdStrike for OT monitoring and threat detection
• BeyondTrust for privileged secure remote access management
• Familiarity with other vendor tools such as Cisco (network security), ServiceNow (ticketing and workflow integration), Splunk (SIEM/log analytics), Crowdstrike (Falcon Discover for IoT) and TxOne (OT endpoint protection)
• Conduct security acceptance testing and validation of new or updated OT systems to ensure compliance with security requirements and industry best practices.

Risk Assessment & Vulnerability Management

• Perform consequence-based risk assessments for OT environments, utilizing methodologies such as Cyber Process Hazards Analysis (Cyber PHA) to identify, analyze, and prioritize cyber risks.
• Lead vulnerability management efforts for OT/ICS assets, including the use of Claroty for vulnerability identification, risk scoring, and remediation planning.
• Support clients in achieving regulatory compliance and readiness for audits related to OT/ICS cybersecurity.

Incident Response & Monitoring

• Design and implement OT/ICS security monitoring solutions, leveraging tools such as CrowdStrike for endpoint and network monitoring, and Splunk for log aggregation and analytics.
• Collaborate with IT and OT teams to develop and test incident response plans specific to industrial environments.
• Integrate monitoring and alerting workflows with ServiceNow for streamlined incident management.

Governance, Policy, and Training

• Develop and update OT/ICS cybersecurity policies, standards, procedures, and job aids.
• Deliver training and awareness programs for client personnel, including plant operators, engineers, and third-party vendors.
• Advise clients on governance frameworks and best practices for OT/ICS cybersecurity program development and maturity assessments.

Client Engagement & Leadership

• Serve as a subject matter expert in client meetings, workshops, and presentations, especially regarding the deployment, integration, and optimization of OT/ICS security tools.
• Lead project teams, mentor junior staff, and contribute to business development activities such as proposal writing and solution development.
• Stay current on emerging OT/ICS threats, vulnerabilities, and technologies, and share insights with clients and internal teams.

The team

The Cyber Services team delivers fully managed cyber capabilities that bring together market-tested technologies, leading practices, and pre-built use cases to accelerate time to value and improve operational resilience.

Qualifications

Required:

• Bachelor's degree in Engineering, Computer Science, Information Security, or related field.
• 7+ years of experience in OT/ICS cybersecurity, including hands-on experience with industrial control systems (e.g., SCADA, DCS, PLCs) in sectors such as oil & gas, energy, utilities, or manufacturing.
• 4+ years of demonstrated experience designing and implementing OT/ICS security architectures and controls using tools such as Claroty, Palo Alto, Cradlepoint, CrowdStrike, BeyondTrust PRA, and familiarity with Cisco, ServiceNow, Splunk, and TxOne.
• Limited immigration sponsorship may be available
• Ability to travel up to 50%, on average, based on the work you do and the clients and industries/sectors you serve.

Preferred:

• Advanced degree preferred.
• Professional certifications such as GICSP, CISSP, CISM, ISA/IEC 62443, or equivalent.
• Strong knowledge of OT/ICS protocols (e.g., Modbus, DNP3, OPC, Profibus), network architectures, and common vulnerabilities.
• Experience with cloud-based OT/ICS security solutions and IT/OT convergence initiatives.
• Experience with OT/ICS cybersecurity technologies for asset discovery, vulnerability management, network monitoring, endpoint protection, and privileged access management.
• Familiarity with industry standards and frameworks (e.g., NIST 800-82, IEC 62443, NERC CIP).
• Experience conducting risk assessments, vulnerability management, and incident response in OT environments.
• Strong communication skills, with the ability to present complex technical concepts to both technical and non-technical audiences.
• Demonstrated leadership in project delivery and client engagement.
• Prior consulting experience with a focus on critical infrastructure or industrial sectors.
• Experience developing and delivering OT/ICS cybersecurity training programs.

The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licens...