OT/ICS Cybersecurity Engineer

Responsible for securing Operational Technology (OT) and Industrial Control System (ICS) environments including SCADA, DCS, PLC, and IIoT infrastructures in industrial facilities. Designs and implements cybersecurity architecture and controls aligned with IEC 62443, NIST, and ISO 27001 standards while preserving system availability and operational safety.

• Design and implement OT/ICS cybersecurity architectures including network segmentation, DMZ design, and secure remote access.
• Perform cybersecurity risk assessments, vulnerability analysis, and security audits across SCADA, DCS, PLC, and IIoT networks.
• Monitor OT environments for cyber threats, anomalies, and security incidents in real time.
• Develop and implement cybersecurity policies, standards, and procedures for OT/ICS systems.
• Ensure secure integration between IT and OT environments while preserving industrial system availability and safety integrity.
• Configure and maintain industrial firewalls, unidirectional gateways, IDS/IPS, and endpoint security solutions in OT environments.
• Manage patch management programs, access control policies, and secure configuration baselines for OT assets.
• Support secure system design and cybersecurity review during engineering and commissioning phases.
• Respond to OT cyber incidents and conduct post-incident analysis and recovery.
• Deliver cybersecurity awareness training for operations and engineering personnel.

• Bachelor's degree in Cybersecurity, Computer Engineering, Network Engineering, or Electrical/Automation Engineering with a focus on industrial systems.
• Minimum 4 years of cybersecurity experience with at least 2 years specifically in OT/ICS or critical infrastructure environments.
• Knowledge of IEC 62443, NIST SP 800-82, and ISA/IEC industrial cybersecurity frameworks.
• Certifications such as GICSP, CSSA, CISSP (with OT track), or equivalent are strongly preferred.
• Hands-on experience with industrial network security, firewalls, IDS/IPS in OT environments.

• Deep knowledge of IEC 62443 OT cybersecurity standards.
• Industrial network security experience (firewalls, unidirectional gateways, network segmentation).
• OT asset inventory and vulnerability management capabilities.
• SIEM configuration and alert management for OT environments.
• Understanding of industrial communication protocols (Modbus, Profibus, DNP3, OPC) from a security perspective.
• Incident response and forensics in OT environments.