Job Description
Key Responsibilities:
Conduct information-gathering workshops, stakeholder interviews, and coordinate system access for assessment activities
Collect and analyze network traffic data (PCAP files) to understand and map current OT network architecture
Perform OT network scanning, asset discovery, and vulnerability identification using OT security monitoring tools
Define and validate assessment scope by identifying OT assets and reconciling existing asset inventories
Conduct risk and gap assessments aligned with industry standards and frameworks such as IEC 62443 and NIST CSF
Evaluate current OT security posture and assign risk ratings based on identified vulnerabilities and gaps
Develop phased OT Security Roadmaps with prioritized short-, medium-, and long-term recommendations
Prepare detailed remediation plans and provide recommendations for OT security architecture improvements
Document findings, assessment outcomes, and technical recommendations in clear and professional reports
Collaborate with internal teams and stakeholders to support project delivery and security improvement initiatives
Key Requirements:
Minimum 2–7 years of experience in OT Security, Cybersecurity, Network Security, or related domains
Hands-on experience working in OT/ICS/SCADA environments
Strong understanding of OT network architecture, industrial protocols, and cybersecurity principles
Experience in asset discovery, vulnerability assessment, and network traffic analysis
Familiarity with OT security frameworks and standards such as IEC 62443 and NIST CSF
Experience with OT security tools such as Nozomi Guardian or equivalent platforms is an advantage
Strong analytical, problem-solving, and documentation skills
Good communication and stakeholder management abilities
Ability to work independently and collaboratively in project environments
Preferred Qualifications:
Relevant cybersecurity certifications are an advantage (e.g., GICSP, CISSP, CEH, CompTIA Security+)
Experience in security assessment, risk management, or OT security consulting projects
Knowledge of OT security architecture and segmentation best practices
