EPCOR Careers

Highlights of the job

The OT Cybersecurity Manager plays a key leadership role in protecting the systems that keep EPCOR’s water and wastewater operations safe, reliable, and resilient. You’ll guide the development and execution of our OT cybersecurity strategy, evaluate SCADA and network environments against leading industry standards, and represent the U.S. Business Unit in enterprise cyber governance. You’ll oversee the design and lifecycle of critical security technologies, provide hands‑on support when needed, and lead contractors and partners who help deliver major initiatives. You’ll also mentor a talented team of Cybersecurity & Network Engineers and collaborate closely with Operations, Maintenance, and Instrumentation & Controls to strengthen our security posture. This role directly supports EPCOR’s commitment to delivering essential services to the communities we serve, ensuring our systems remain secure, dependable, and future‑ready.

What you’d be responsible for

• Lead the operational technology (OT) cybersecurity program and team responsible for the performance and security of computer systems and data communication networks that enable reliable operations at our water and wastewater facilities.
• Lead the development, implementation, and maintenance of OT cybersecurity programs including vulnerability management, disaster recovery, incident response, access management, and auditing and reporting.
• Evaluate OT networks and supervisory control and data acquisition (SCADA) systems for alignment with the NIST Cybersecurity Framework (CSF), AWWA Cybersecurity Guidance, and other regulatory requirements or relevant standards through internal and third party assessments. Act as one of the representatives for the US Business Unit on EPCOR cyber governance teams.
• Oversee the design, installation, and evergreen refresh for systems and toolsets such as firewalls, centralized log management (SIEM), hypervisors, endpoint protection, and network anomaly monitoring. Provide direct administration and support of these systems when necessary including travel to work sites to review work quality or assist in implementation. Manage contractors for projects or ongoing services including scoping and bidding of work.
• Lead and manage the work of Cybersecurity & Network Engineers, and act as a subject matter expert for cybersecurity & networking standards and industry best practices. Coordinate collaboration with the Instrumentation & Controls team on projects and educate on best practices. Identify development opportunities such as industry conferences, training courses, and online resources.
• Assist the SCADA & Controls Group Director with planning, managing, and delivering the capital project budget for SCADA & Controls. Work with team members or draft own capital project submittals. Identify potential roadblocks to project execution and proactively mitigate these where possible.
• Coordinate resources for system support with Operations and Maintenance teams to ensure that process control systems continue to meet operational requirements efficiently and reliably.

What’s required to be successful

• Associates or higher degree in Computer Science, Information Technology, Engineering, Industrial Automation or equivalent experience in lieu of degree required.
• Requires advanced computer and networking knowledge including an understanding of the OSI model and IP networking, Microsoft Windows Server and Active Directory management, and firewall policy and VPN configuration.
• Capable of directing contractor work and managing projects from conception through completion.
• This role will have supervisory responsibilities and will serve as a mentor and resource to OT Cybersecurity & Network team members.
• Able to direct and review network and server administration by others. Knowledge of industrial control system (ICS) security standards including the NIST CSF, NIST SP 800-53 and 800-82, or ISA/IEC 62443 is preferred.
• Familiarity with ICS systems and concepts including Allen-Bradley PLC systems, the Purdue model and industrial DMZ architecture, and OT network monitoring systems such as Dragos, Claroty, or Nozomi is required.
• Five (5) or more years of experience with IT or OT systems with at least three (3) years of experience implementing cybersecurity solutions and standards.
• Experience with Cisco or Allen-Bradley Stratix switches and Windows Server preferred.
• Some experience providing field support to operations or maintenance teams preferred.
• Experience with industrial communication networks such as Ethernet/IP, Modbus TCP, Profinet, or radio telemetry required.
• Experience managing capital projects or budgets required.
• Must have valid driver’s license with good driving record.
• Security related certifications such as CISSP, CISM, GICSP, or ISA 62443 are a plus but not required.

Other important facts about this job

Occasional travel is required to facilities outside the Phoenix-metro area.

Frequent sitting and standing in office/desk; frequent reaching, handling paperwork/files, and operating computer and other office equipment; frequent speaking, listening, seeing; occasionally lifting up to 25 pounds.

As an EPCOR employee, you will enjoy a variety of benefits such as a competitive salary, an incentive award program, an excellent benefit package including medical, dental, vision and other insurance coverage, retirement plan with substantial company contribution, generous time-off schedules, training opportunities, tuition reimbursement, and certification support. We’ve been voted as a Best Places to Work employer and we value the safety of each of our team members through our robust safety training and celebration of safety milestones.

Headquartered in Glendale,  AZ EPCOR USA owns, operates and builds water, wastewater and natural gas infrastructure and is among the largest private water utilities in the Southwest. EPCOR USA is an indirect, wholly owned subsidiary of EPCOR Utilities Inc. We invest in and look after our communities and the environment. We’re proud of the work we do and the people we hire to do it.

Please note the following information:

• A requirement of working for EPCOR is that you are at least 18 years of age and legally entitled to work in the United States.
• If you are considered for the position, clearance on all applicable background checks (including criminal, driving, and educational) and professional reference checks is required.
• Clearance on pre-employment drug testing will be required.

EPCOR USA INC is an equal opportunity employer. We're committed to fostering a respectful, supportive, and inclusive workplace that recognizes and values the unique perspectives, experiences, and backgrounds of all individuals. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity or expression, pregnancy, age, national origin, disability status, genetic information, protected veteran status, or any other characteristic protected by law.