Engineer the Quantum RevolutionYour expertise can help us shape the future of quantum computing at Oxford Ionics.

View Open Roles

Information Security Specialist (Operational Technology)

William Grant & Sons
North Lanarkshire
2 months ago
Applications closed

Related Jobs

View all jobs

Senior Information Systems Security Specialist

Security Engineer

Security Logging and monitoring specialist

Security Consultant

Security Consultant

Security Engineer (Vlocity/Salesfore Industries)

Job Introduction

At William Grant & Sons, Operational Technology underpins our manufacturing and supply chain excellent. As an Information Security Specialist focusing on OT, you will play a pivotal role in securing our distilleries, manufacturing sites, SCADA/ICS/IIoT environments, and related supply chains. You’ll partner with site leaders, IT and OT teams, and cross functional stakeholders to embed robust security practices across OT systems, ensuring the resilience and integrity of our operational footprint while supporting innovation and efficiency.

Main Responsibility

As an Information Security Specialist (OT), you will lead security assessments across manufacturing sites and distilleries with a strong focus on SCADA, ICS, and IIoT systems, identifying potential vulnerabilities and driving remediation efforts.

You’ll be responsible for building a robust Information Security Management System (ISMS) from the ground up, aligning it with IEC standards. This role involves close collaboration with site leaders, OT engineers, and IT teams to ensure compliance with key OT security frameworks such as IEC , NIST CSF, and NIS2, while embedding governance and fostering continuous improvement within OT environments.

You will manage third-party OT risks by conducting Vendor Security Assurance Questionnaires (VSAQs) and performing detailed security reviews to verify that external partners align with WG&S’s expectations. Additionally, you’ll assist in developing and evolving the OT governance roadmap in line with industry best practices and the organisation’s risk appetite.

Part of your responsibility will be to monitor and advise on the convergence of physical and cyber threats at manufacturing and distillery locations, working in tandem with physical security and facilities teams to manage blended risks. You’ll provide guidance during OT-related security incidents, supporting with triage, containment, and post-incident analysis to reduce operational disruption.

Moreover, you’ll assist the Information Security Leader with internal and external investigations related to Operational Technology, contributing technical expertise, evidence gathering, and remediation recommendations. Finally, your role will include addressing Information Security tickets in Assyst that pertain to OT, ensuring issues are resolved promptly and thoroughly tracked.

Our Ideal Candidate

You are a proactive and technically adept professional with a passion for securing Operational Technology environments and a strong analytical mindset.

To excel in this role, you should have:

· Proven experience in OT security frameworks and standards (e.g., IEC , NIST CSF for OT), with hands on experience assessing and improving OT governance.

· Strong technical skills in SCADA/ICS/IIoT security, including familiarity with common OT architectures, protocols, and risk vectors.

· Experience with third party risk management for OT suppliers, including conducting VSAQs or equivalent assessments.

· Demonstrated ability to develop and execute OT security roadmaps, translating framework requirements into actionable controls and projects.

· Incident response experience in OT contexts, able to assist with containment and recovery while minimising production disruption.

· Solid understanding of physical cyber security convergence and the ability to collaborate effectively with facilities, physical security, and OT teams to mitigate combined risks.

· Excellent communication skills, capable of translating complex OT security concepts into clear guidance for site leaders, engineers, and non technical stakeholders.

· Strong problem solving abilities and attention to detail, able to foresee potential OT vulnerabilities, and recommend pragmatic mitigations.

· Familiar with supply chain and logistics technology security considerations in an operational context.

Desirable but not essential:

· Specific OT security certifications (e.g., GlCSP).

· Prior experience in the spirits, manufacturing, or process industries, particularly with large scale OT deployments.

· Knowledge of relevant regulatory and compliance requirements affecting OT environments in our sectors.

· Experience reviewing penetration testing and vulnerability scanning results for OT systems, with ability to recommend appropriate remediation actions.

What we can offer you

We offer a competitive salary and benefits which are designed to promote our employees financial wellbeing. Employees are also eligible to participate in a bonus plan. Our employees enjoy a generous holiday entitlement and an opportunity to ‘buy’ or ‘sell’ some holiday entitlement. Private Healthcare and Doctor@Hand (remote GP service). Our employees can join a defined contribution pension plan. Employees contribute either 4% or 5% of salary, the company contributes 8% or 10% depending on the employee contribution. Employee contributions can be made through salary sacrifice. Our Employee Assistance Programme offers practical, impartial support on everyday matters ranging from medical, financial and legal to home and family issues.  Our Life Assurance cover is a multiple of eight times your annual basic salary. Product allocation so that you can enjoy our fantastic portfolio of brands. Our Cycle to Work scheme allows you to hire a bike for an agreed length of time, and then snap it up for a fraction of its original value. All while making savings (at least 25%) and spreading the cost. Every employee has the opportunity to claim up to £1, per year for a charity or charities for which they have raised money, volunteered their time or personally donated. Learning resources to help you be your best self.

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Seasonal Hiring Peaks for Cybersecurity Jobs: The Best Months to Apply & Why

The UK's cybersecurity sector has emerged as one of the most critical and lucrative technology markets, with roles spanning from security analysts to penetration testers and chief information security officers. With cybersecurity positions commanding salaries from £28,000 for junior security analysts to £140,000+ for senior security architects, understanding when organisations actively recruit can dramatically impact your career trajectory in this essential field. Unlike traditional IT sectors, cybersecurity hiring follows distinct patterns influenced by threat landscapes, regulatory compliance cycles, and incident response requirements. The sector's unique combination of perpetual threat evolution, regulatory pressures, and skills shortages creates predictable hiring windows that strategic professionals can leverage to advance their careers in protecting Britain's digital infrastructure. This comprehensive guide explores the optimal timing for cybersecurity job applications in the UK, examining how cyber threat cycles, compliance deadlines, and government initiatives influence recruitment patterns, and why strategic timing can determine whether you join a cutting-edge security consultancy or miss the opportunity to defend against tomorrow's cyber threats.

Pre-Employment Checks for Cyber Security Jobs: DBS, References & Right-to-Work and more Explained

The cyber security sector in the UK stands at the forefront of protecting national infrastructure, business operations, and personal data from increasingly sophisticated cyber threats. As organisations across all sectors recognise cyber security as a critical business function, employers are implementing the most rigorous pre-employment screening processes in the technology industry to ensure they recruit professionals capable of defending against advanced persistent threats and maintaining the highest standards of security and trustworthiness. Whether you're a penetration tester, security analyst, incident response specialist, or chief information security officer, understanding the comprehensive vetting requirements is essential for successfully advancing your career in this security-critical field. This detailed guide explores the extensive background checks and screening processes you'll encounter when applying for cyber security positions in the UK, from fundamental eligibility verification to the most stringent security clearance requirements and specialised threat intelligence assessments.

Why Now Is the Perfect Time to Launch Your Career in Cyber Security: The UK's Digital Defence Revolution

The United Kingdom faces an unprecedented cyber security challenge that presents an extraordinary career opportunity. With cyber attacks increasing by 300% year-on-year and the average cost of a data breach reaching £4.24 million, Britain urgently needs skilled cyber security professionals to defend its digital infrastructure, protect citizens' data, and maintain national security in an increasingly connected world. If you've been considering a career change or seeking to future-proof your professional trajectory, cyber security represents one of the most secure, well-compensated, and socially impactful career choices available. The convergence of escalating threats, skills shortage, government investment, and regulatory requirements has created a perfect storm of opportunity that shows no signs of abating.