Cyber Security Consultant

The company is a global business and technology transformation partner, helping organizations accelerate their dual transition to a digital and sustainable world. With over 340,000 team members in more than 50 countries, the company leverages its 55-year heritage to deliver end-to-end services and solutions that address the diverse needs of its clients.

The OT Cybersecurity Consultant – Level 2 will deliver advanced Industrial Control Systems (ICS) and Operational Technology (OT) cybersecurity monitoring, analysis, and incident response services for critical industrial environments. This role includes hands-on operation and optimization across Nozomi Networks, Industrial Defender, and Microsoft Sentinel platforms. The consultant will act as a key technical escalation point between Level 1 analysts and Level 3 specialists, ensuring secure, compliant, and resilient plant operations while supporting managed security services and regulatory compliance across OT landscapes.

Key Responsibilities:

1. ICS/OT Managed Security Monitoring

• Deliver managed cybersecurity monitoring services for ICS/OT environments.
• Utilize tools like Nozomi Networks and Microsoft Sentinel to monitor and analyze security events.

1. OT Security Platform Consulting & Operations

• Monitor OT network traffic and analyze industrial protocol traffic.
• Manage OT asset inventories and compliance reporting.

1. Security Event Management & Use Case Development

• Design custom OT security detection use cases and improve detection accuracy.

1. Threat Intelligence & IOC Management

• Manage OT threat intelligence and analyze advisories from various sources.

1. Vulnerability, Risk & Compliance Consulting

• Identify critical ICS/OT assets, monitor vulnerabilities, and support remediation planning.

1. Asset, Log Source & Integration Management

• Onboard OT assets and enhance event detection.

1. ICS/OT Protocol & Process Security

• Monitor industrial communication protocols for security threats.

1. Incident Response, Investigation & Threat Hunting

• Handle cybersecurity incidents, perform root cause analysis, and conduct proactive threat hunting.

1. Reporting, Documentation & Stakeholder Support

• Produce operational and compliance reports, maintain documentation, and support risk assessments.

Required Skills & Qualifications:

• Technical Skills:

  • Experience with Nozomi Networks, Industrial Defender, and Microsoft Sentinel.
  • Strong knowledge of ICS/OT architecture and industrial control environments.
  • Experience in incident response and forensic analysis in OT environments.

• Soft Skills:

  • Strong consulting mindset with analytical skills.
  • Ability to effectively communicate complex OT security risks.

• Experience:

  • 10-12 years of cybersecurity experience with 5+ years in ICS/OT environments.

• Preferred Certifications:

  • GICSPIEC 62443 (Foundation / Practitioner), GCIA / GRID, CISSP / CISM, Microsoft Sentinel / SC-200.

Work Conditions:

• Comfortable working in 24x7 operational and escalated support environments.

The company prioritizes Diversity & Inclusion, aiming to create environments where employees can maintain a positive work-life balance and thrive in a hybrid working setting.