OT Security Architect

Key Responsibilities

• Design and maintain secure industrial network architectures in accordance with the Purdue Model and IEC 62443 standards.

• Define, implement, and oversee network segmentation and IT/OT microsegmentation policies to ensure physical and logical isolation of production environments.

• Implement and optimize passive OT monitoring systems leveraging AI-driven detection engines for early identification of cyber threats and operational anomalies.

• Design and audit secure remote access solutions for third-party vendors and service providers in compliance with NIS2 and GxP requirements.

• Develop and enforce security standards for engineering workstations, SCADA servers, and HMI operator panels.

• Design and supervise “Virtual Patching” processes for legacy OT systems to mitigate vulnerabilities without disrupting production continuity.

• Review and validate new CAPEX and industrial investment projects from a cybersecurity and operational integrity perspective.

• Assess and securely integrate emerging IoT and AI-based technologies into existing manufacturing and industrial environments.

Requirements

• Bachelor’s or Master’s degree in Cybersecurity, Industrial Automation, Computer Science, or a related technical field.

• Minimum 5 years of experience in a similar OT/industrial cybersecurity role.

• Hands-on experience with Purdue architecture modeling and implementation of OT security technologies such as IDS/IPS, industrial security gateways, and perimeter firewalls.

• Strong practical knowledge of OT security design and implementation, including industrial controller configuration and SCADA/HMI hardening.

• Advanced understanding of IEC 62443 and NIS2 requirements related to critical infrastructure and industrial process protection.

• Practical experience securing industrial communication protocols and integrating IoT solutions while maintaining strict network isolation.

• Basic understanding of AI/ML technologies for anomaly detection and behavioral analysis within OT environments.

• Professional working proficiency in English.

Nice to Have

• Industry certifications such as GIAC GICSP or ISA/IEC 62443 certifications (minimum Fundamentals level).

• Additional training or certifications related to industrial automation systems and industrial networking technologies.