OT Security Manager

Job Summary

As the Lead for OT Security Assurance, you will be the primary technical authority for cybersecurity at the site level. You will bridge the gap between plant operations and the central security function, ensuring that critical industrial systems (SCADA, DCS, PLC) are resilient, compliant, and protected against emerging threats without disrupting production.

Core Accountabilities

1. Site Security & Compliance

• Assurance & Documentation: Execute the OT security assurance process and maintain all site-specific compliance documentation.
• Audit Management: Act as the technical Point of Contact (POC) for both internal and external cybersecurity audits at the plant level.
• Project Compliance: Ensure all local engineering and automation projects meet established cybersecurity standards before deployment.

2. Technical Field Operations

• Risk & Vulnerability Management: Perform hands-on OT/ICS Risk Assessments and Vulnerability Assessments at the field level (sensors, controllers, and actuators).
• Control Verification: Verify the performance of implemented security controls and gather shop-floor feedback for continuous process improvement.
• Reporting: Compile site-level technical collaterals and report on the local security posture to senior management.

3. Strategic Coordination

• Operational Bridge: Serve as the technical liaison between plant operations (Engineering/Maintenance) and the central Cybersecurity function.
• Continuous Improvement: Support programs to modernize and harden plant-level OT systems.

Technical Skills & Expertise

• Industrial Systems (OT/ICS): Direct experience securing SCADA, DCS, and PLC environments within a factory or plant setting.
• Standards & Frameworks: Deep working knowledge of ISA/IEC 62443 (ISA99), NIST SP 800-82, and NERC CIP.
• Industrial Protocols: Mastery of ICS-specific protocols including Modbus, Profibus, and EtherNet/IP.
• Network Security: Advanced understanding of network segmentation (Purdue Model), VLANs, VPNs, and industrial switching/routing.
• Security Tooling: Hands-on experience deploying Firewalls, IDS/IPS, and Endpoint Protection specifically tailored for industrial environments.

Key Attributes (Experience & Qualifications)

• Education: BE/B.Tech/ME/M.Tech/MCA from a recognized institute.
• Experience: 810 years of robust experience in the IT or Information Security domain, with a heavy focus on industrial/manufacturing environments.
• Mandatory Certifications: Must possess at least one of the following:
• Networking: CCNP, CCSP, or CCIE.
• Security/Audit: CISA or CISSP.