OT Security Architect

• Bachelor’s or Master’s degree in Cybersecurity, Industrial Automation, Computer Science, or a related technical field.
• Minimum 5 years of experience in a similar OT/industrial cybersecurity role.
• Hands-on experience with Purdue architecture modeling and implementation of OT security technologies such as IDS/IPS, industrial security gateways, and perimeter firewalls.
• Strong practical knowledge of OT security design and implementation, including industrial controller configuration and SCADA/HMI hardening.
• Advanced understanding of IEC 62443 and NIS2 requirements related to critical infrastructure and industrial process protection.
• Practical experience securing industrial communication protocols and integrating IoT solutions while maintaining strict network isolation.
• Basic understanding of AI/ML technologies for anomaly detection and behavioral analysis within OT environments.
• Professional working proficiency in English.

Nice to have:

• Industry certifications such as GIAC GICSP or ISA/IEC 62443 certifications (minimum Fundamentals level).
• Additional training or certifications related to industrial automation systems and industrial networking technologies.

• Design and maintain secure industrial network architectures in accordance with the Purdue Model and IEC 62443 standards.
• Define, implement, and oversee network segmentation and IT/OT microsegmentation policies to ensure physical and logical isolation of production environments.
• Implement and optimize passive OT monitoring systems leveraging AI-driven detection engines for early identification of cyber threats and operational anomalies.
• Design and audit secure remote access solutions for third-party vendors and service providers in compliance with NIS2 and GxP requirements.
• Develop and enforce security standards for engineering workstations, SCADA servers, and HMI operator panels.
• Design and supervise “Virtual Patching” processes for legacy OT systems to mitigate vulnerabilities without disrupting production continuity.
• Review and validate new CAPEX and industrial investment projects from a cybersecurity and operational integrity perspective.
• Assess and securely integrate emerging IoT and AI-based technologies into existing manufacturing and industrial environments.