Responsibilities
Provide OT Cybersecurity Consultancy advice on products and systems, working both independently and as part of a team. Develop and implement security solutions for OT environments. Perform Risk Assessments and vulnerability analyses on OT systems and propose appropriate security controls. Engage with cross-functional teams to ensure the secure integration of OT systems with existing IT Infrastructure. Conduct security audits and compliance checks to ensure adherence to industry standards and regulations. Develop and maintain security policies, procedures, and best practices for OT environments. Provide technical expertise and support in the design and implementation of secure OT network architectures. Troubleshoot and resolve security issues in OT environments, ensuring minimal disruption to operations. Work closely with Technical Authorities, internal teams, and customer teams to ensure project alignment. Support the growth of Expleo Cybersecurity Practice, through conference attendance, publications, and workshop participation. Travel between Expleo and customer sites as required.
Qualifications
Relevant education or industry-recognised certifications in computing-related subjects suited to a senior role in Cybersecurity (MSc, BSc, GIAC, CISSP, CISM, CRISC, CASP+, CySA+, Security+, CC)
Essential skills
Industrial Control Systems (ICS) Knowledge: Understanding of SCADA systems, PLCs, DCS, and other ICS components used in industrial environments. Network Security: Expertise in network protocols, segmentation, firewall configurations, intrusion detection/prevention systems (IDS/IPS), and secure network architecture for OT environments. Vulnerability Assessment and Management: Proficiency in identifying, evaluating, and mitigating vulnerabilities specific to OT systems. Risk Management: Ability to conduct risk assessments, prioritize threats, and implement risk mitigation strategies tailored to OT infrastructures. Security Standards and Compliance: Knowledge of relevant cybersecurity frameworks and regulations such as NIST, ISO/IEC 62443, and IEC 61508. Access Control and Authentication: Implementation and management of robust access control mechanisms and authentication protocols suitable for OT environments.
Desired skills
Experience with Industrial Protocols: Hands-on experience working with and securing industrial communication protocols such as Modbus, DNP3, OPC, and PROFIBUS. Implementation of Security Controls in OT Environments: Demonstrated experience in designing, implementing, and managing security controls specifically for OT systems, including network segmentation and endpoint protection. Integration of IT and OT Security: Experience in bridging the gap between IT and OT security practices, ensuring cohesive and comprehensive security strategies. Conducting Security Audits and Assessments: Proven track record of performing security audits, vulnerability assessments, and compliance checks in OT settings to ensure adherence to industry standards and regulations.
Experience
Proven experience in roles requiring technical expertise in OT Cybersecurity. Experience working with OT systems in either Automotive, Transportation, or Critical National Infrastructure.
What do I need before I apply
Have the right to work in the UK
Benefits
Collaborative working environment – we stand shoulder to shoulder with our clients and our peers through good times and challenges We empower all passionate technology loving professionals by allowing them to expand their skills and take part in inspiring projects Expleo Academy - enables you to acquire and develop the right skills by delivering a suite of accredited training courses Competitive company benefits Always working as one team, our people are not afraid to think big and challenge the status quo
