OT Security Specialist

We are an international mid‑sized group with a appetite for innovation, approachable management, and a results‑focused culture that gives wide empowerment opportunities. We, as a growth‑oriented market leader, invite you to join us on our journey from good to great!

Education / Experience

Degree in Cyber Security, Computer Science or Engineering (focus) or 3‑5 years’ experience working in Cyber Security with at least 2 years’ focus on OT, ICS or SCADA systems in a manufacturing or industrial setting.

Licences / Certifications

Industry‑recognised certifications preferred from: GISCP, CISSP, CISM, ISA/IEC 62443 Certificate or CEH.

Summary

• Working as a key player in a dynamic company with a global footprint.
• Skillful and detail‑oriented OT Security Specialist to lead and support cyber security initiatives focused on our Operational Technology (OT) environments across manufacturing facilities. This role ensures the integrity, confidentiality, and availability of critical industrial control systems (ICS), SCADA networks, PLCs, and other OT infrastructure for an international manufacturing company with more than 70 locations of which 26 have manufacturing facilities.
• The ideal candidate brings strong security expertise, hands‑on experience in industrial networks, and a collaborative mindset to bridge the gap between IT and OT teams.

Responsibilities

• Assess, implement, and monitor cybersecurity controls specific to OT environments, aligned with standards such as ISA/IEC 62443, NIST, and ISO 27001.
• Collaborate with operations, engineering, and key IT teams to identify risks and protect ITS/SCADA systems from cyber threats.
• Conduct threat modelling, vulnerability assessments, and risk analysis for OT assets and networks.
• Lead or assist in incident response efforts involving OT systems, including containment, remediation, and post‑incident reporting.
• Manage and maintain asset inventories of OT equipment, including network diagrams and configuration documentation.
• Define and enforce secure segmentation between IT and OT networks (e.g., using firewalls, data diodes, VLANs).
• Review and support secure configuration and patching strategies for OT hardware and software.
• Work with external vendors and service providers to assess third‑party risks and ensure compliance with cybersecurity policies.
• Provide training and guidance to plant and operational staff on OT security best practices.
• Contribute to the development of cybersecurity policies, procedures, and governance specific to OT environments.
• Participate in audits, compliance activities, and regulatory reporting as needed.

Required Qualifications

• Deep understanding of industrial communication protocols (Modbus, DNP3, OPC, etc.).
• Familiarity with network security tools (IDS/IPS, firewalls, NAC) and industrial control system platforms.
• Experience with risk assessment and cybersecurity frameworks (NIST CSF, ISA/IEC 62443).
• Ability to work cross‑functionally with engineers, IT staff, and plant operations teams.
• Relevant certifications such as GICSP, CISSP, CISM, ISA/IEC 62443 Certificate, or CEH.

Preferred

• Experience in conducting security assessments or penetration testing in OT environments.
• Experience collaboration with Betriebsrat (German Works Council) or similar.
• Knowledge of BSI Grundschutz or TÜV/DEKRA (Germany specific) cybersecurity standards.
• Knowledge of regulatory environments (e.g., NIS2 Directive (EU), IT‑Sicherheitsgesetz (German IT Security Act), ISO 27001, GDPR, etc.).

Contact for this position: ELISABETE GOMES BRANDAO