OT Cyber Security Commissioning Engineer

Gagan Deep

Role & responsibilities

We are seeking a highly skilled OT Cyber Security Commissioning Engineer on behalf of our client. This critical role focuses on the end-to-end deployment, testing, and validation of security systems, ensuring they are designed, installed, and function correctly to protect industrial control systems and SCADA networks. The successful candidate will be instrumental in securing power infrastructure, with a strong emphasis on substation projects.

Key Responsibilities:

• Lead the Factory Acceptance Testing (FAT) and Site Acceptance Testing (SAT) for OT cybersecurity systems, including firewalls, IDS, and other security appliances.
• Design, deploy, configure, and commission security infrastructure within OT environments, with expert-level knowledge of Fortinet firewalls and Nozomi Networks IDS/IPS.
• Develop detailed FAT and SAT procedures, test plans, and reports to validate system functionality and compliance with design specifications.
• Implement and validate security architectures compliant with IEC 62443, ISO 27001, and the NIST Cybersecurity Framework (CSF).
• Conduct post-commissioning security assessments, vulnerability scans, and support incident response activities.
• Manage and secure virtualization platforms, including VMware vSphere and Microsoft Hyper-V, that host critical OT applications.
• Collaborate with vendors, IT, and engineering teams to ensure a secure and seamless integration of new systems.
• Provide expert guidance and hands-on commissioning for substation cyber security projects.
• Prepare and maintain detailed commissioning documentation, network diagrams, and handover reports.

Preferred candidate profile

Bachelors degree in Computer Science, Cyber Security, Electrical Engineering, or a related field.

• 5-7 years of proven, hands-on experience in OT/ICS cyber security, with a strong focus on commissioning and testing.
• Proven experience in conducting FAT and SAT for cybersecurity systems is mandatory.
• Power Utility industry experience is mandatory, with specific hands-on involvement in substation cyber security projects.
• Deep technical expertise with:

Firewalls: Fortinet FortiGate (configuration, management, troubleshooting).

IDS/IPS: Nozomi Networks Guardian or similar OT-specific monitoring tools.

Virtualization: VMware vSphere and Microsoft Hyper-V.

Certification Requirements:

• Essential Industry Certifications:

GICSP (Global Industrial Cyber Security Professional) and/or

IEC 62443 Certifications

• Vendor-Specific Certifications (Highly Preferred):

Fortinet NSE 4 (Network Security Professional) or higher

Nozomi Networks Certified Engineer (NCE)

• Strongly Advantageous Certifications:

ISC CISSP (Certified Information Systems Security Professional) or CISSP-ISSAP

ISO 27001 Lead Implementer or Lead Auditor

VMware VCP (VMware Certified Professional)

Knowledge and Frameworks:

• Sound knowledge and practical experience implementing frameworks: IEC 62443, ISO 27001, and NIST CSF.
• Strong understanding of OT protocols (e.g., DNP3, Modbus, IEC 61850).