OT Expert

cyberani solutions

The OT Expert protects industrial control systems and critical infrastructure from cyber threats. Responsibilities include designing OT security architectures, conducting risk and vulnerability assessments, enforcing IEC 62443/NIST SP 800-82-based policies, deploying network segmentation and detection controls, and leading OT incident response. The role collaborates with engineering, operations, and IT teams to ensure secure, uninterrupted plant operations while maintaining compliance and reporting security posture to senior leadership.

Responsibilities:

• Design, implement, and manage security architectures for OT environments (SCADA, PLCs, DCS, HMI, IoT/IIoT devices).
• Conduct risk assessments, threat modeling, and vulnerability assessments specific to industrial control systems.
• Develop and enforce OT security policies, standards, and procedures aligned with industry frameworks (e.g., IEC 62443, NIST SP 800-82).
• Lead incident response and forensic investigations for OT security events, coordinating with IT security and plant operations teams.
• Oversee the deployment and maintenance of security controls such as network segmentation, firewalls, intrusion detection/prevention systems, and secure remote access solutions.
• Provide technical guidance and mentorship to engineering, operations, and IT teams on secure OT practices.
• Manage third-party vendor security assessments and ensure compliance with contractual security requirements.
• Stay current on emerging OT threats, vulnerabilities, and best-practice mitigations; recommend and implement improvements.
• Prepare and present security status reports, metrics, and compliance documentation to senior leadership and auditors.
• Develop and maintain OT security reference architectures, design standards, and reusable implementation patterns to ensure consistency, scalability, and delivery quality across multiple projects and environments.
• Define and operationalize OT-specific detection use cases and monitoring strategies, integrating industrial telemetry (e.g., historian data, OPC UA, network traffic) into SOC/SIEM platforms for contextual threat detection and response.
• Lead secure-by-design reviews for digital transformation initiatives (IIoT, cloud integration, remote operations), ensuring cybersecurity requirements are embedded early without impacting operational performance or safety.
• Establish and continuously improve OT incident response playbooks and decision frameworks, coordinating cross-functional teams to enable safe, timely, and controlled response to cyber events in industrial environments.

","requirements":"

• Bachelor s degree in Electrical/Electronic Engineering, Computer Science, Cybersecurity, or a related field (advanced degree preferred).
• 10 12 years of progressive experience in OT security, industrial automation, or related engineering roles.
• Deep knowledge of industrial control system protocols (Modbus, DNP3, OPC-UA, IEC 60870-5, etc.).
• Hands-on experience with OT network architectures, firewalls, DMZs, and secure remote access solutions.
• Proficiency in OT-specific security tools (e.g., IDS/IPS for OT, anomaly detection platforms, asset inventory systems).
• Strong understanding of IEC 62443, NIST SP 800-82, ISO 27019, and other relevant OT security standards.
• Experience with vulnerability management and patching processes for OT devices.
• Ability to translate security requirements into practical engineering solutions without disrupting production
• Excellent problem-solving, incident response, and forensic analysis capabilities.
• Strong communication skills for cross-functional collaboration and stakeholder reporting.
• OT Security Architecture & Network Segmentation Design Ability to design and implement Purdue-aligned architectures, including zones/conduits, IT/OT DMZs, secure remote access, and segmentation strategies that balance security with operational continuity.
• OT Threat Detection & Monitoring Engineering Experience developing and tuning OT-specific detection use cases using IDS/anomaly detection platforms, and integrating OT telemetry into SOC/SIEM environments for actionable threat visibility.
• Applied OT Cybersecurity Framework Implementation Proven ability to translate standards like IEC 62443, NIST SP 800-82, and ISO 27019 into practical engineering controls, policies, and deployable solutions within live industrial environments.