The OT Security Architect is responsible for protecting industrial control systems (ICS) and operational technology environments against cyber threats while ensuring safety, availability, and regulatory compliance. The role bridges IT and OT, enabling secure digital operations across critical infrastructure environments such as utilities, energy, manufacturing, and transportation.
Key Responsibilities
OT Security Strategy & Governance
Define and implement OT cybersecurity strategy, policies, and standards aligned to IEC 62443, NIST 800 82, NIS D, and ISO 27001.
Establish OT security governance models and maintain OT risk registers across facilities.
Act as a trusted advisor to OT operations, engineering, and executive stakeholders.
Architecture & Secure Design
Design secure OT network architectures aligned to the Purdue Model (Levels 0–3.5).
Define and validate secure IT/OT integration patterns, including data flows, remote access, and segmentation.
Review and secure digital transformation initiatives (e.g., historians, analytics platforms).
Threat & Vulnerability Management
Conduct OT specific risk assessments, vulnerability assessments, and penetration testing of SCADA/DCS/PLC environments.
Implement vulnerability management and patching strategies suitable for safety critical systems.
Support OT incident response and forensic investigations.
Security Controls Implementation
Deploy and operate OT security technologies including:
OT Intrusion Detection / Network Monitoring (e.g., passive IDS)
Firewalls and segmentation controls at Levels 2 & 3
Secure remote access solutions
Removable media controls and data diodes
Support deployment across geographically dispersed and remote field sites.
Compliance & Regulatory Assurance
Support compliance with NIS D, sector specific regulations, and audit requirements.
Prepare evidence, security reports, and remediation plans for regulatory and internal audits.
Translate regulatory requirements into practical, site level security controls.
Stakeholder & Delivery Management
Liaise with plant operators, OT engineers, OEMs, vendors, and system integrators.
Lead or support multi-site OT security deployments and uplift programmes.
Provide training and awareness sessions for OT and SCADA teams.
Required Experience & Skills
Strong hands‑on experience in OT / ICS / SCADA / DCS environments.
Deep understanding of industrial networking, protocols, and architectures.
Proven experience delivering OT security assessments, designs, and implementations.
Knowledge of OT security standards and frameworks:
IEC 62443
NIST 800 82
NIS D
ISO 27001 (OT relevant controls)
Experience working in critical infrastructure or highly regulated environments.
#J-18808-Ljbffr