Manager - OT Cybersecurity

Job Purpose

Securing operational technology (OT), industrial IoT (IIoT), and IoT environments across multiple critical infrastructure sectors, including oil and gas, utilities, manufacturing, mining, and more. Provide consulting on OT security strategy, assessment, architecture, industrial automation systems, and OT cybersecurity solutions. Capable of storytelling, structuring content, and problem-solving to effectively engage with clients, develop cybersecurity strategies, and guide organizations through their OT/IoT/IIoT cybersecurity transformation.

Job Responsibilities

Key Focus Areas (Up to 7)

Key Activities

OT/IoT/IIoT Cybersecurity Consulting & Advisory

• Develop and implement OT/IoT/IIoT cybersecurity strategies, architectures, and frameworks tailored to client’s needs.
• Provide cybersecurity by design expertise for securing industrial control systems (ICS) and automation solutions during the EPC (Engineering, Procurement, and Construction) phase.
• Conduct OT/IoT/IIoT cybersecurity risk assessments, maturity evaluations, and gap analyses based on industry standards (IEC 62443, NIST CSF, National Standards, etc.).
• Design and implement OT SOC (Security Operations Center) and security monitoring solutions for industrial environments.
• Guide clients in incident response, digital forensics, and resilience planning for OT/IoT/IIoT environments.
  
  

• Provide deep technical expertise in OT security solutions, including network segmentation, firewalls, intrusion detection/prevention (IDS/IPS), asset management, and anomaly detection solutions.
• Work with a wide range of industrial automation vendors (e.g., Siemens, Schneider Electric, Honeywell, ABB, Rockwell Automation, Emerson, GE, Yokogawa, etc.).
• Implement OT cybersecurity controls, including secure remote access, data diode solutions, and industrial endpoint protection.
• Ensure secure integration of IoT/IIoT devices into industrial environments while managing supply chain risks.
  
  

• Stay up to date with the latest threats, vulnerabilities, and attack techniques targeting OT/IoT/IIoT environments.
• Conduct proof of concepts (PoCs) for emerging OT security solutions.
• Develop best practices and technical whitepapers for internal and external knowledge sharing.
  
  

• Lead executive briefings, client workshops, and training sessions on OT/IoT/IIoT cybersecurity.
• Translate complex technical concepts into clear, compelling narratives to influence C-level executives and OT professionals.
• Develop structured presentations, reports, and consulting deliverables for various stakeholders.
• Collaborate with cross-functional teams, including IT security, compliance, and operations, to build holistic cybersecurity solutions.
  
  

• Deep knowledge of OT/ICS/SCADA cybersecurity principles, architectures, and best practices.
• Hands-on experience with industrial automation and control systems (DCS, PLCs, RTUs, HMIs, Historian, etc.) from multiple vendors.
• Strong expertise in OT network security, segmentation, and industrial protocols (e.g., Modbus, DNP3, OPC-UA, PROFINET, Ethernet/IP, etc.).
• Experience with OT cybersecurity solutions such as:
• Network security (firewalls, IDS/IPS, anomaly detection).
• Endpoint security (industrial antivirus, application whitelisting).
• Secure remote access (jump servers, data diodes, zero-trust models).
• Hands-on knowledge of threat intelligence, vulnerability management, and incident response in OT/IoT/IIoT environments.
• Familiarity with industry standards and regulations (IEC 62443, NIST 800-82, NERC CIP, ISA 99, TSA Security Directives, etc.).
• Experience with OT SOC implementation and security monitoring.
• Knowledge of cloud security and edge computing for IIoT environments is a plus
  

• Problem-solving & analytical thinking to identify and mitigate cybersecurity risks.
• Storytelling & communication skills to simplify complex security topics for executives and non-technical audiences.
• Content structuring & documentation skills for clear and impactful presentations, reports, and proposals.
• Strong client engagement & relationship management skills.
• Ability to lead workshops and train internal and external teams on OT cybersecurity.
• Experience in business development & pre-sales support is a plus
  
  

• Relevant OT cybersecurity certifications (preferred but not mandatory):
• GIAC GRID, GICSP (Global Industrial Cyber Security Professional)
• IEC 62443 Cybersecurity Expert
• CISSP, CISM, or CRISC (with OT focus)
• Cisco CCNA/CCNP Industrial
• SANS ICS Security Certifications
  

• Bachelors or Masters degree in Cybersecurity, Electrical Engineering, Electronics Engineering, Computer Engineering, Industrial Process and Automation Systems or a related field.