We are seeking an experienced Operational Technology Consultant to design and define the strategic roadmap for integrating OT within Cybersecurity Incident Response Team (CSIRT). This role is critical for ensuring the security, resilience, and operational continuity of the infrastructure against cyber threats.

The ideal candidate will bring expertise in operational technology security, incident response challenges. They will develop a strategy for OT cybersecurity operations, enabling robust incident detection, response, and recovery tailored to the energy provider's unique landscape.

Strategic Planning:

• Develop a comprehensive OT security strategy for the CSIRT, ensuring alignment with organisational goals and regulatory requirements.

• Identify gaps and recommend solutions for integrating OT into incident response frameworks.

• Propose methodologies to enhance the CSIRT's ability to respond to OT-specific threats.

Incident Response Design:

• Define workflows, playbooks, and procedures for OT incident response, integrating them seamlessly with IT-focused processes.

• Design escalation paths and decision-making frameworks for OT-related incidents.

• Ensure alignment with industry standards (eg, NIST, IEC 62443, and ISO 27001).

Collaboration & Stakeholder Engagement:

• Partner with IT, OT, engineering, and leadership teams to ensure the strategy accounts for operational priorities.

• Liaise with regulatory bodies and external partners to incorporate compliance requirements and best practices.

• Train CSIRT members on OT-specific incident response challenges and solutions.

Technology Integration:

• Evaluate and recommend tools for OT monitoring, detection, and response.

• Assess existing OT systems to ensure compatibility with proposed strategies.

• Propose methods to integrate IT and OT cybersecurity technologies.

Risk Assessment & Threat Modelling:

• Conduct assessments of OT environments to identify vulnerabilities and potential attack vectors.

• Develop OT-specific threat models and incorporate them into the broader cybersecurity strategy.

Qualifications:

Required:

• Proven experience in operational technology security

• Deep knowledge of OT protocols (eg, SCADA, DCS, PLCs), architectures, and security challenges.

• Strong understanding of incident response methodologies and frameworks.

Preferred:

• Previous experience in designing or enhancing cybersecurity incident response teams.

• Strong stakeholder management and communication skills.

To arrange an immediate interview, please contact Abigail Knight today