• Implement and manage comprehensive security measures for OT networks, applying the principle of least privilege (PoLP) and continuously improving defenses.
  
  

• Conduct security and regulatory audits of OT infrastructure, including NIS2 compliance assessments, and assist in remediation of identified gaps.
  
  

• Ensure OT security practices align with industry standards (e.g., NIST, IEC 62443) and regulatory frameworks, including the EU NIS2 Directive.
  
  

• Develop, maintain, and execute OT-specific incident response plans, including procedures for timely reporting to national authorities under NIS2.
  
  

• Investigate security incidents, ensure effective resolution, and document lessons learned to strengthen incident response capabilities.
  
  

• Identify, assess, prioritize, and coordinate timely remediation of vulnerabilities in OT environments, aligned with GICS (Global Information Cyber Security department) policy expectations.
  
  

• Manage and continuously review firewall rules, network segmentation, access controls, and user permissions based on job roles and operational needs.
  
  

• Deploy, configure, and operate security monitoring tools to detect and respond to anomalous activities within OT networks.
  
  

• Develop, update, and enforce OT-specific security policies, standards, and operational procedures.
  
  

• Conduct risk assessments for OT systems and collaborate with GICS to integrate risk findings into hardening and mitigation strategies.
  
  

• Assess and manage cybersecurity risks associated with critical third-party suppliers and service providers.
  
  

• Support OT leadership in demonstrating cybersecurity governance, accountability, and compliance with regulatory obligations.
  
  

• Contribute to cybersecurity awareness and training initiatives tailored to OT personnel, emphasizing NIS2 requirements and best practices.
  
  

• Maintain accurate and up-to-date documentation of OT system configurations, security controls, incident response plans, and business continuity measures.
  
  

• Collaborate with Enterprise Architecture, GICS, and Operations teams to ensure holistic security integration for new and existing OT systems.
  
  

• Participate in the design, review, and hardening of security architectures for OT environments, following industry best practices.
  
  

• Stay informed of emerging threats, vulnerabilities, and trends in OT cybersecurity, applying knowledge to enhance the organization's security posture.
  
  

• Collaborate with Business Continuity and Disaster Recovery teams to ensure resilience and continuity plans meet NIS2 expectations for essential services.
  
  

• Engage in occasional travel and on-call responsibilities as needed to support OT operations and incident response.
  
  

• Ability to speak English fluently in a professional work environment.
  
  

• Proven experience in OT cybersecurity engineering, ideally in industrial, manufacturing, or critical infrastructure environments.
  
  

• Solid understanding of OT security frameworks and standards (e.g., NIST CSF, IEC 62443).
  
  

• Solid understanding of OT network communication protocols (e.g., TCP/IP, UDP, DNP3, Modbus, IEC 61850, OPC, OPC UA, and PROFINET).
  
  

• Familiarity with EU cybersecurity regulations, particularly the NIS2 Directive, and experience supporting compliance initiatives.
  
  

• Experience with incident response processes, forensic investigations, and regulatory reporting of cybersecurity incidents.
  
  

• Practical knowledge of risk assessment methodologies and supply chain cybersecurity risk management.
  
  

• Experience managing or integrating OT-specific security tools (e.g., network monitoring, anomaly detection, asset inventory).
  
  

• Experience of working as a technology generalist with a high-level understanding of end-to-end solutions including infrastructure, applications, databases, networking and security with the ability to advise on security best practices for new solution implementations.
  
  

• Strong skills in firewall management, network segmentation, access control, and OT system hardening.
  
  

• Ability to develop security documentation, procedures, and governance reports tailored for operational environments.
  
  

• Strong collaboration skills, able to work effectively with multidisciplinary teams including GICS, Enterprise Architecture, Operations, and Legal/Compliance departments.
  
  

• Willingness to travel occasionally and participate in on-call rotations to support 24/7 OT environments.
  
  

• Minimum of Bachelor's degree in a technical area (computer science, engineering, cyber security).
  
  

• Relevant certifications are a plus (e.g., GICSP, GRID, ISA/IEC 62443 certifications, CISSP, CISM, or comparable).
  
  

• 3+ years of experience supporting enterprise-level technology operations and services.
  
  

• 3+ years of experience in a manufacturing environment.
  
  

• 3+ years of experience in cybersecurity engineering and industrial control systems (ICS)/OT security.
  
  

To apply please click on APPLY TO THIS POSITION