Role Overview
We are seeking a highly skilled Industrial System Cybersecurity Referent Engineer to lead and define cybersecurity strategies for operational technology (OT) environments. This pivotal role focuses on protecting critical industrial infrastructure, including SCADA systems, PLCs, DCS, and IIoT devices, against evolving cyber threats. You will serve as the primary technical authority for OT security, ensuring compliance with international standards such as IEC 62443, NIST SP 800-82, and ISO 27001, while collaborating closely with IT security, engineering, and operations teams to embed security by design across the industrial lifecycle.
Core Responsibilities
- Develop and maintain the OT cybersecurity framework, policies, and procedures aligned with IEC 62443, NERC CIP, and industry-specific regulations.
- Conduct comprehensive risk assessments, threat modeling, and vulnerability assessments for industrial control systems (ICS) and supervisory control and data acquisition (SCADA) networks.
- Design and implement secure network architectures, including segmentation, firewalls, DMZs, and secure remote access solutions for OT environments.
- Lead incident response planning and execution for OT security events, coordinating with IT SOC, vendors, and regulatory bodies.
- Manage the deployment and tuning and monitoring of OT-specific intrusion detection systems (IDS), anomaly detection, and security information and event management (SIEM) integration.
- Perform security audits, penetration testing, and red team exercises on industrial networks, PLCs, RTUs, and historian servers.
- Define and enforce secure configuration baselines for industrial devices, firmware management, and patch management processes.
- Collaborate with procurement and vendors to evaluate security posture of third-party industrial equipment and software.
- Provide expert guidance on security requirements for new industrial projects, digital transformation initiatives, and Industry 4.0 implementations.
- Deliver OT cybersecurity awareness training and tabletop exercises for plant personnel, engineers, and management.
Required Qualifications
- Bachelor's degree in Computer Science, Cybersecurity, Electrical Engineering, or related field; Master's degree preferred.
- Minimum 7 years of experience in cybersecurity, with at least 4 years dedicated to OT/ICS/SCADA security.
- Deep knowledge of industrial protocols (Modbus, DNP3, PROFINET, EtherNet/IP, OPC UA) and Purdue Model architecture.
- Proven expertise with IEC 62443 standards, NIST SP 800-82, ISO 27001, and NERC CIP compliance.
- Hands-on experience with OT security tools: Claroty, Dragos, Nozomi Networks, CyberX, or similar platforms.
- Strong scripting skills (Python, PowerShell) for automation of security tasks and log analysis.
- Relevant certifications: GICSP, GRID, CISSP, CSSP, or IEC 62443 Expert.
- Excellent communication skills to articulate complex technical risks to both technical and executive audiences.
Preferred Skills & Certifications
- Experience with functional safety standards (IEC 61508, IEC 61511) and their intersection with cybersecurity.
- Familiarity with cloud-based OT monitoring solutions and IT/OT convergence architectures.
- Background in critical infrastructure sectors: energy, oil & gas, water treatment, manufacturing, or transportation.
- Active participation in industry groups (ISA99, ISACs, FIRST) and contribution to threat intelligence sharing.
- Advanced certifications: GSE, GCIP, or vendor-specific OT security certifications.
What Makes This Role Unique
This position offers the opportunity to shape the cybersecurity posture of mission-critical industrial systems at a strategic level. You will work at the forefront of IT/OT convergence, influencing security architecture decisions that directly impact operational resilience and safety. The role provides exposure to cutting-edge IIoT technologies, legacy system modernization challenges, and regulatory landscapes across multiple jurisdictions. You will collaborate with a multidisciplinary team of process engineers, automation specialists, and enterprise security architects, driving a culture of security awareness throughout the organization. This is a high-impact role with visibility to senior leadership and a clear path to advancing industrial cybersecurity maturity.