Job Description Summary

We are seeking an OT Cyber Security Engineer to join the Automation & Controls New Product Introduction (NPI) organisation, playing a key role in the secure design and delivery of next-generation Automation & Controls products. This is an exciting opportunity to shape cyber-secure network architectures for control systems and ensure compliance with key cybersecurity standards and regulations - including CRA, NIS2, NERC CIP, and IEC 62443 - throughout the product development lifecycle.

You will work within a global organisation, collaborating closely with Product Technical Leads, Product Managers, testing teams, and Program Managers to deliver secure, resilient, and scalable solutions for new products and control systems. This role offers the opportunity to make a meaningful impact in a highly technical and innovative environment, contributing directly to product integrity, cybersecurity excellence, and global project success.

Job Description

Responsibilities

• Lead the design of secure network and communication architectures for control systems from concept through design and commissioning support, in line with IEC 62443 principles.
• Provide cybersecurity guidance and risk-based advice throughout the product development lifecycle.
• Support compliance with relevant industrial cybersecurity standards and frameworks, including CRA, NIS2, NERC CIP & IEC 62443.
• Act as the key point of contact for networking and cybersecurity matters.
• Plan and execute authorised penetration tests across systems, networks, applications, and infrastructure.
• Identify, validate, and document security vulnerabilities and misconfigurations.
• Assess the potential impact of identified weaknesses on confidentiality, integrity, and availability.
• Develop clear technical findings, risk ratings, and remediation recommendations.
• Collaborate with engineering teams to support vulnerability remediation.
• Develop and define hardening guidelines for networking components.
• Lead and mentor junior and graduate engineers, promoting knowledge sharing and professional development.

Role Requirements

The ideal candidate will be able to:

• Analyse and evaluate a range of cybersecurity and networking solutions, applying sound technical judgement.
• Clearly present and justify solutions, analyses, and recommendations to stakeholders, customers, and technical audiences.
• Design and build functional infrastructure from the ground up, including networking, virtualisation, and server operating system configuration.
• Demonstrate strong working knowledge of IEC 62443, particularly Parts 4-1, 4-2, 3-3, and 2-4.
• Apply proven experience in vulnerability management, including identification, assessment, and remediation.
• Work effectively with virtualisation platforms such as VMware and Hyper-V.
• Understand industrial communication protocols (e.g., IEC 61850, OPC UA, Modbus TCP/IP) and use tools such as Wireshark for troubleshooting and diagnostics.
• Possess solid knowledge of server operating systems (e.g., Windows Server) and secure communication protocols, including HTTPS, SNMP, SSH, SFTP, and IPsec.
• Demonstrate hands-on experience with intrusion detection systems such as Nozomi and Dragos.
• Understand and implement backup and recovery solutions, endpoint protection, and anti-malware controls.

Qualifications & Experience

• Bachelor’s or Master’s degree in Computer Science, Electronics, Communication, or a relevant engineering discipline, with 10+ years of experience.
• Strong understanding and very good working knowledge of control systems and networking technologies.
• Certifications such as CCNA, CCIE, NNCE, or CISSP are an added advantage.

Additional Information