Norfolk Southern Security Architect - PTC/ICS in Atlanta, Georgia


Job Description

The primary responsibilities of the Security Architect are to design, enhance, and implement information security systems with specific focus on the industrial control system (ICS) and positive train control (PTC) technologies; Develop security policies, standards and procedures to enhance the overall posture of ICS and PTC information security; Conduct risk assessments to ensure the confidentiality, integrity and availability of information assets across the Norfolk Southern enterprise


4-yr college degree in Computer Science, Engineering, Physics, or Mathematics.


Designs and implements information security systems that supports Information Security’s roadmap for risk management in the ICS/PTC environment

Build security designs, standards and procedures to support implementation of the security architecture strategic roadmap for ICS/PTC environments

Develop, document, and enforce security policies, standards, procedures, and guidelines relative to the enterprise PTC/ICS landscape

Functions as subject matter expert for implementations of ICS/PTC Information Security Systems

Coordinate deeply technical and environment-specific solutions for numerous issues across IT Applications, Mechanical, Operations, and Communications & Signaling

Track development in industry forums to meet implementation deadlines

Participate in industry interoperable committees for standards and specifications development

Collaborate with the Security Architecture team and perform Security Architecture duties as applied to ICS/PTC, including:

Review and approve security variances to established Computer Compliance policies

Review and approve requests for firewall changes

Conduct risk assessments of enterprise initiatives, including external service providers and suppliers

Monitor industry security updates, technologies and best practices to improve corporate information security

Assists in the execution of, and response to, regulatory changes affecting information security. Follows up on developed compliance plans to ensure completion

Provide assistance incident response team for threats for computer/network forensics investigation



Functional automation

Connecting legacy systems

Electro-mechanical migration to electronics

Skills & Abilities:

Analytical Thinking

Written Communication

Communication Skills

Customer Service

Identifying and Considering Alternatives

Work Conditions

Environment: Office

Shift Work: No

On-Call: Yes

Weekend Work: Yes

Travel Required: 0 - 2 Days per Month,

Company Overview

Norfolk Southern Corporation(NYSE: NSC) is one of the nation’s premier transportation companies. Its Norfolk Southern Railway Company subsidiary operates approximately 19,500route milesin 22 states and the District of Columbia, serves every major container port in the eastern United States, and provides efficient connections to other rail carriers. Norfolk Southern operates the most extensive intermodal network in the East and is a major transporter of coal, automotive, and industrial products.

We are a team of more than 28,000 employees working together to maintain our reputation as "The Thoroughbred of Transportation". As an industry leader, Norfolk Southern offers a competitive salary and an excellent benefits package.

Norfolk Southern is an equal opportunity employer including veterans and disabled.