ICS OT Cyber Security Engineer

Earthstream are proud to be recruiting an OT Cyber Security Consultant for a true leader in advanced systems integration with a focus on operational technology & digital transformation for some of the most highly regulated and challenging industrial environments.

Job Role: OT Cyber Security Consultant

Location: Stone

Salary: Negotiable on skills and experience

As a OT Cyber Security Consultant your remit will include:

Due to an increased workload, our client requires a highly skilled and experienced Operational Technology (OT) Cyber Security Consultant to fill a crucial role within our dynamic and growing team. This role is designed for an individual ready to be at the forefront of delivering cutting-edge OT cyber security solutions across a range of sectors, with a focus on industrial automation and control systems (IACS). The ideal candidate will bring to the table not only deep technical expertise in areas such as NIS Regulations, Cyber Security Management Systems (CSMS), OT Operating Models, OT Cyber Governance, and OT Security Architecture but also a suite of soft skills that facilitate effective communication, client relations, leadership, and project management. This position is key in bridging the gap between our clients' strategic objectives and Capula's efforts to meet those goals, requiring a blend of robust technical knowledge, strong communication abilities, and an in-depth understanding of Operational Technology and Industrial Control Systems as deployed in Critical National Infrastructure. The successful candidate will be adaptable, quick to learn, and ready to hit the ground running on live and upcoming projects, ensuring the delivery of comprehensive security strategies that align perfectly with our clients' business objectives.

What you will bring to the company:

Essential Technical/Knowledge Skills:

• Recognised OT Security Certifications: Possession of at least one OT security industry certification with a strong preference for ISA/IEC 62443 Cybersecurity Expert. Other accepted certifications include but are not limited to: ISA/IEC 62443 Cybersecurity Risk Assessment Specialist, ISA/IEC 62443 Cybersecurity Design Specialist, ISA/IEC 62443 Cybersecurity Maintenance Specialist, SANS Global Industrial Cyber Security Professional (GICSP), and Certified SCADA Security Architect (CSSA). (Role holders without certification need to have significant experience with Operational Technology Cyber Security (5+ years) and the ISA 62443 standard, that would equate to a similar level of knowledge).
• ICS Expertise: At least 2 years minimum direct experience with critical infrastructure and ICS, including familiarity with SCADA HCI systems, PLCs, RTUs, etc., demonstrating a nuanced understanding of the complex security landscapes of ICS and critical infrastructure.
• CSMS Proficiency: Demonstrated skill in the design, implementation, or oversight of Cyber Security Management Systems aligning with ISA 62443-2-1 standards.
• ISA/IEC 62443: Clear experience of implementing the ISA/IEC 62443 suite of standards, especially ISA-62443-2-1 and ANSI/ISA-62443-3-3
• Regulatory Compliance: Advanced knowledge in guiding clients through the maze of regulatory standards, such as the NIS Regulations, with a solid foundation knowledge in relevant legal, regulatory, and industry considerations.
• Security Evaluation Experience: Experience in conducting detailed security assessments, audits, and gap analyses against standards, frameworks and guidance such as HSE OG-86, NIST SP 800-82, CAF, and/or NIST CSF 2.0, to evaluate and enhance clients' security posture.
• Policy Development Skill: Ability in crafting comprehensive OT Security Policies, Procedures, Guidelines, and Work Instructions within a CSMS framework.
• Risk Assessment Capability: Experience in conducting or assisting with OT security risk assessments, with a preference for adherence to the ANSI/ISA-62443-3-2 standard. Other relevant risk frameworks such as
• ISA 62443 Standards Application: Demonstrated application of the ISA 62443 standards suite in relevant sectors.
• Communication Protocol Familiarity: Knowledge of ICS communication protocols, such as MODBUS, OPC, DNP3, etc.

What they promise to offer:

• 25 days holiday plus bank holidays
• Flexible working
• Pension
• Life assurance policy
• Private health care
• Lifestyle screening
• Salary sacrifice programme
• Mental health assistance programme
• Cycle to work scheme
• Green car scheme
• Support in achieving professional engineer status (IEng, CEng) and professional memberships fees covered