OT Cybersecurity & Compliance Specialist

We’re seeking an experienced and driven OT Cybersecurity and Compliance Specialist to join our team in securing and supporting the integrity of mission-critical technology infrastructure across our oil and gas terminals.  This role is essential to the organization’s efforts to protect the safety, reliability, and security of our marine terminals and industrial control environments, including SCADA systems, PLCs, and other OT systems. 

For over 90 years Global Partners LP has been delivering the energy our communities need to grow, move, and thrive. From Alltown Fresh, with its innovative chef-led creations and guest-focused retail experience, to our vast network of over 50 liquid energy terminals across the eastern seaboard and beyond, Global Partner’s integrated network of businesses delivers value day-in and day-out to our guests and customers across the US. At Global Partners we embrace the future, investing in energy transition with initiatives like GlobalGLO and supporting the communities in which we operate with our charitable work.

We’re excited for the next 90 years at Global Partners and what innovative new ideas we can bring to our guests and customers in the future. We’re looking for passionate people with great ideas to contribute to our company’s future. If you’re motivated by what’s next, Global Partners can provide you with the opportunities to push your career to the next level.
 

The Types of “Energy” You Bring  

• Strong understanding of OT systems, cyber risk management in industrial environments
• Proactive mindset toward protecting the company’s operational assets
• Outstanding ability to work collaboratively

“Gauges” of Responsibility  

• USCG Compliance & Plan Management: Oversee and ensure compliance with USCG regulations, including managing the Cybersecurity Plan and Cyber Incident Response Plan, acting as the primary point of contact for USCG inspections, and maintaining records. Assess security control design and operating effectiveness to protect systems and ensure compliance.
• OT Cybersecurity Management: Design and maintain a secure network architecture for OT systems, lead the secure configuration of industrial network devices, manage intrusion detection/prevention systems (IDPS), and develop/enforce OT cybersecurity best practices. Implement data security measures.
• Risk Assessment & Vulnerability Management: Conduct security and vulnerability assessments within OT environments, identify and communicate security issues, and evaluate systems for cyber risks and remediation.
• Incident Response: Develop and test incident response and disaster recovery plans for OT environments
• Training & Awareness: Ensure terminal personnel receive adequate cybersecurity training.
• Documentation: Develop and maintain detailed cybersecurity documentation and ensure an accurate inventory of network-connected systems.
• Implement and maintain cybersecurity controls for OT systems, including SCADA, PLCs, and terminal automation systems.
• Monitor and respond to OT cybersecurity events and incidents.
• Coordinate vulnerability assessments and penetration testing of OT environments.
• Support the development and maintenance of Facility Security Plans (FSPs) and Cyber Annexes in coordination with the Facility Security Officer (FSO).
• Interface with USCG during inspections, audits, and reporting processes.
• Conduct OT risk assessments and support the development of mitigation plans.
• Maintain cybersecurity documentation, including policies, procedures, and audit records.
• Align OT security programs with the NIST Cyber Security Frame(NIST-CSF)
• Provide cybersecurity input on capital projects, system upgrades, and vendor integrations.
• Review designs for compliance with cybersecurity and operational integrity standards.
• Lead OT cybersecurity awareness training for operations, engineering, and maintenance teams.
• Support incident response tabletop exercises and drills.

 “Fuel” for You

• Coins! We offer competitive salaries and opportunities for growth. We mean it! We have an amazing Talent Development Team who create trainings for growth and job development.
• Health + Wellness - Medical, Dental, Visions and Life Insurance. Along with additional wellness support. 
• The Road Ahead – We offer 401k and a match component!
• Professional Development - We provide tuition reimbursement; this benefit is offered after 6 months of service. 
• Give Back! We believe in community support. We know everyone gives in their own way, that’s why we offer paid volunteer time-off to you to help an organization of your choice.

The GPS of our Interview Process

• First thing first, if you’re interested in the role, please apply.
• A talent acquisition team member will review your resume in partnership with the hiring manager. If your experience would lend to this opportunity a recruiter will contact you. 
• We conduct “in-person” (Teams) interviews and provide additional interview information or other items needed at that time. 

Qualifications:

• Knowledge of MTSA, USCG cybersecurity guidance (e.g., NVIC 01-20), and port/terminal security practices.
• Familiarity with OT protocols (Modbus, DNP3, OPC, etc.) and system architectures.
• Experience with cybersecurity frameworks: NIST CSF, NIST 800-82, ISA/IEC 62443, or similar.
• Strong understanding of risk management and regulatory compliance in an operational environment.
• Certified Information Systems Security Professional (CISSP), Global Industrial Cyber Security Professional (GICSP), or similar certification.
• Experience working with USCG inspections and FSP development.
• Hands-on experience with industrial firewalls, intrusion detection systems, and asset inventory platforms.
• Understanding of physical security integration with cybersecurity in marine terminal environments.
• Hybrid work schedule with regular presence required at marine terminal facilities.
• Participation in on-call rotation or emergency response drills may be required.
• Travel to other terminal locations or compliance meetings (approx. 20%).

We value passion and potential. If you are enthusiastic about a position and think you can make a meaningful impact, we encourage you to apply even if you don't check every box. We embrace different perspectives, backgrounds and experiences.

Global Partners LP is an equal opportunity employer. We foster a company culture where ideas from all people help us grow, move and thrive. We embrace the diversity of all applicants and do not discriminate against race, color, religion, sex, age, national origin, sexual orientation, gender identity, disability, protected veteran status or any other basis prohibited by federal, state or local law. If you have a disability and need an accommodation to apply, please contact our recruiting department at 781-891-4000.

*Disclaimer: At Global Partners, we don't use lie detector tests for any employment decisions. We follow all the rules and regulations, so we need to let you know: In Massachusetts, it's illegal to require or administer a lie detector test as a condition of employment of continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.