CrawlJobs Logo

OT Cybersecurity Expert

https://www.edp.com Logo

EDP

Location Icon

Location:
Portugal , Porto

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

The mission of this role is to ensure the security, resilience and compliance of RGA's WS&S Operational Technology (OT) environments worldwide. The OT Cybersecurity Expert will design, implement and maintain robust cybersecurity architectures, standards and controls aligned with EDP Group governance and international regulations. This role supports RGA's WS&S global OT footprint, driving security compliance with NIS2, NERC-CIP, GridCode Cybersecurity, and other regional frameworks, while enabling safe operations and innovation across the renewable energy portfolio. The professional will also promote a culture of cybersecurity awareness and continuous improvement throughout the organization, coordinating cross-functional initiatives and leading cybersecurity projects to ensure consistent implementation and governance across all regions.

Job Responsibility:

  • Develop, maintain, and communicate OT cybersecurity policies, standards, and procedures aligned with corporate governance and international regulations
  • Lead compliance initiatives with NIS2, NERC-CIP, GridCode Cybersecurity, IEC 62443, and other relevant frameworks
  • Perform regular risk assessments, gap analysis, and audits across the regions, defining mitigation and improvement plans
  • Ensure that cybersecurity governance is embedded in OT operations and projects globally
  • Coordinate regional stakeholders to align compliance roadmaps, ensuring timely delivery of milestones and effective follow-up on action plans
  • Design and validate secure OT network architectures, including segmentation, zoning, secure remote access, and data flow control
  • Define functional and technical requirements for OT cybersecurity systems and oversee implementation according to best practices and EDP standards
  • Manage supplier evaluation, tender processes (RFI/RFP), and contract negotiations for OT cybersecurity solutions and services
  • Collaborate with Engineering, IT, and Operations teams to ensure Security by Design in new assets, systems, and upgrades
  • Plan, coordinate, and monitor OT cybersecurity projects from inception to implementation, managing resources, schedules, and deliverables to ensure quality and alignment with business priorities
  • Lead the development and execution of OT-specific incident response plans and coordinate with global SOC and CERT teams
  • Support vulnerability management, intrusion detection, and forensic analysis within OT networks
  • Provide expert troubleshooting and root cause analysis for OT-related cybersecurity incidents
  • Ensure lessons learned and post-incident improvements are incorporated into standards and procedures
  • Coordinate cross-functional response teams during incidents and ensure effective communication and escalation management
  • Promote cybersecurity awareness and capacity building for OT operations and maintenance teams
  • Lead periodic drills, workshops, and tabletop exercises to validate the OT incident response capability
  • Foster innovation by evaluating new technologies such as anomaly detection, zero-trust architectures, and secure cloud integration for OT environments
  • Contribute to RGA's WS&S Cybersecurity Roadmap, ensuring OT initiatives are aligned with business objectives and regulatory requirements
  • Participate in global and regional working groups on compliance, risk management, and technology standardization
  • Support the rollout of global cybersecurity programs such as IDS and PAM systems, and new compliance-driven initiatives
  • Provide leadership and project governance in multi-region OT security programs, ensuring alignment with the corporate cybersecurity strategy

Requirements:

  • University degree in Electrical, Electronic, Automation, Energy or Telecommunications Engineering, or another relevant technical field
  • Complementary education in Cybersecurity or Technology Risk Management is a plus
  • Proven experience in Operational Technology (OT) security, with strong understanding of international cybersecurity frameworks and standards
  • Professional certifications in technical or governance domains (e.g., GICSP, CISSP, CISM, ISO 27001 Lead Implementer) will be considered an advantage
  • English: fluent (mandatory)
  • Portuguese: fluent (mandatory) and Spanish: highly valued
  • Proven experience in OT environments, including SCADA, DCS, PLC, EMS, and industrial networks
  • Previous involvement in energy or industrial infrastructure projects (renewable energy preferred, but not mandatory)
  • Hands-on experience in OT cybersecurity, network segmentation, and regulatory compliance
  • Experience working on or supporting international OT security programs across multiple regions
  • Demonstrated experience in coordinating and managing cybersecurity projects, including budget control, stakeholder management, and progress reporting
  • Strong knowledge of industrial communication protocols (IEC-60870-5-101/104, Modbus, DNP3, OPC-UA, IEC-61850)
  • Solid understanding of industrial networking (firewalls, routing, VLANs, VPNs, DMZs, NAT, IDS/IPS)
  • Proficiency in cybersecurity standards: IEC 62443, NIST 800-82, ISO 27001, NERC-CIP, GridCode Cybersecurity
  • Experience with vulnerability management, asset inventory, and incident response in OT environments
  • Understanding of SOCs, SIEM, and threat intelligence applied to OT
  • Excellent communication and collaboration skills in multicultural environments
  • Strategic and analytical mindset with a focus on problem-solving
  • Ability to influence and coordinate across multidisciplinary global teams
  • Strong sense of ownership, accountability, and adaptability to changing business and regulatory demands
  • Commitment to continuous improvement and operational excellence

Nice to have:

  • Complementary education in Cybersecurity or Technology Risk Management is a plus
  • Knowledge of NIST 800-82, NERC-CIP, GridCode Cybersecurity, or equivalent frameworks is highly valued
  • Professional certifications in technical or governance domains (e.g., GICSP, CISSP, CISM, ISO 27001 Lead Implementer) will be considered an advantage
  • Spanish: highly valued
  • Previous involvement in energy or industrial infrastructure projects (renewable energy preferred, but not mandatory)
What we offer:
  • Empower our employees through a positive and innovative work environment that promotes collaboration and agile decision-making
  • Respect and value each person, providing a flexible, healthy, and inclusive workplace with a range of attractive benefits
  • Provide a meaningful work experience and prepare our people for future challenges through different opportunities for development and internal mobility

Additional Information:

Job Posted:
January 19, 2026

Expiration:
January 29, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
EDP - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for OT Cybersecurity Expert

Manager of NERC Compliance

Client is seeking a Manager of NERC Compliance to lead and enhance its Critical ...
Location
Location
United States , Charlotte
Salary
Salary:
Not provided
bhsg.com Logo
Beacon Hill
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Engineering, Cybersecurity, Information Technology, or related discipline
  • 7+ years of IT/OT and cybersecurity experience
  • Minimum of 3 years dedicated to NERC CIP compliance
  • 2+ years leading teams or managing functional compliance projects
  • Deep working knowledge of NERC CIP standards CIP-002 through CIP-014
  • Strong audit experience and regulatory documentation skills
  • Technical understanding of OT environments, SCADA systems, and cybersecurity controls
Job Responsibility
Job Responsibility
  • Lead and manage the organization's NERC CIP compliance program, ensuring alignment with all applicable CIP standards
  • Interpret and operationalize CIP-002 through CIP-014, including asset identification, access controls, incident response, and change management
  • Partner with IT, OT, cybersecurity, engineering, and operations teams to implement and maintain compliance controls
  • Lead internal and external audits, spot checks, and self-certifications
  • Conduct gap assessments, root-cause analysis, and drive corrective action plans
  • Develop, implement, and maintain CIP policies, procedures, tools, and internal controls
  • Provide leadership and guidance to compliance staff and cross-functional stakeholders
  • Serve as a subject matter expert on NERC CIP requirements and regulatory expectations
  • Fulltime
Read More
Arrow Right

Expert Security Analyst – Incident Coordinator

As an Expert Security Analyst – Incident Coordinator, you will take a leadership...
Location
Location
Netherlands , Veldhoven
Salary
Salary:
Not provided
asml.com Logo
ASML
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s or Master’s in Computer Science, Cybersecurity, or related field
  • 7+ years experience in advanced cybersecurity roles
  • Experience working with stakeholders in a complex organization
  • Proven record of influencing upper management towards security best practices
  • Expertise in Security Monitoring, Log Analysis, and Threat Hunting
  • Deep knowledge of a wide range of domains such as Endpoint, Network, OT, Information and Cloud Security
  • Certifications – CISSP, GCIH, GCFA, CISM preferred
  • A Certificate of Good Conduct “Verklaring Omtrent het Gedrag (VOG)” is required
  • Possess a valid work permit for the Netherlands (preferred)
  • Legally authorized to access controlled technology as defined in the United States Export Administration Regulations
Job Responsibility
Job Responsibility
  • Security Monitoring – Actively monitor security alerts for malicious activity or anomalies, ensuring swift response
  • Incident Handling – Lead investigations into high-profile, complex, or advanced persistent threats (APTs)
  • Threat Hunting – Proactively search for hidden threats and improve detection capabilities
  • Incident Analysis – Correlate data across multiple sources to detect sophisticated attack patterns
  • Detection & Response Optimization – Develop advanced detection techniques and security automation strategies
  • Technology Leadership – Act as an SME for SecOps tools and threat domains
  • Mentorship & Training – Provide guidance and mentorship to analysts at all levels
  • Fulltime
Read More
Arrow Right

OT Cybersecurity Expert

We are seeking a highly skilled OT (Operational Technology) Cybersecurity Profes...
Location
Location
India , Navi Mumbai
Salary
Salary:
Not provided
percivon.com Logo
Percivon
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s or master’s degree in ECTC, computer science, Cybersecurity, or a related field
  • Minimum 4 years of experience in OT cybersecurity or industrial control systems security
  • Hands-on experience with SCADA systems, PLCs, DCS, and industrial network protocols (e.g., Modbus, OPC, BACnet, Profibus)
  • Knowledge of cybersecurity frameworks like IEC 62443, NIST 800-82, and ISO 27001
  • Proficiency in Claroty’s tools and software like CTD, SRA etc.
  • Strong understanding of network segmentation, firewall policies, and secure remote access solutions
  • Certifications or strong practical know how on (multiple if not all) – ISA/IEC 62443 Cybersecurity Certificates, Certified SCADA Security Architect (CSSA), Certified Information Systems Security Professional (CISSP), CompTIA Security+, Offensive Security Certified Professional (OSCP), Certified Information Systems Auditor / Manager (CISA) / (CISM)
  • Excellent problem-solving and analytical skills
  • Familiarity with safety instrument systems (SIS) and knowledge of industry standards such as IEC 61511
  • Excellent problem-solving skills and attention to detail
Job Responsibility
Job Responsibility
  • Design and Deployment: Architect and implement advanced security solutions tailored to OT environments, such as network segmentation, firewall configurations, and secure remote access gateways
  • Threat Detection and Response: Configure OT-specific intrusion detection systems (IDS), intrusion prevention systems (IPS), and anomaly detection tools of products from companies like Nozomi Networks or Claroty
  • Protocol Analysis: Analyze and secure industrial network protocols (e.g., Modbus, OPC-UA, DNP3, Ethernet/IP, Profibus, Profinet and other fieldbus protocols) against vulnerabilities and unauthorized activity
  • Security Hardening: Implement device hardening practices on PLCs, RTUs, and HMIs, legacy products, including secure firmware updates, role-based access control, and default credential elimination
  • Incident Management: Establish incident response plans for OT environments, including preparation, detection, containment, eradication, recovery, and post-incident review
  • Vulnerability Management: Conduct regular vulnerability scanning and patch management for OT systems, ensuring minimal downtime while adhering to operational requirements
  • Secure Integration: Lead the secure integration of IT-OT environments, ensuring compatibility while minimizing cybersecurity risks, such as lateral movement threats
  • Continuous Monitoring: Configure and maintain Security Information and Event Management (SIEM) systems specifically for OT environments to identify and respond to threats in real time
  • Compliance Audits: Perform in-depth compliance audits for standards like IEC 62443, NIST 800-82, and other relevant frameworks, ensuring regulatory alignment
  • Red Teaming and Penetration Testing: Simulate cyberattacks to test the resilience of OT systems, document findings, and implement necessary remediation measures
  • Fulltime
Read More
Arrow Right

Senior Cybersecurity Risk & Compliance Analyst

The Senior Cybersecurity Risk & Compliance Analyst is responsible for executing ...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
kennametal.com Logo
Kennametal
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in information security, Information Systems, Computer Science, or related field
  • 5–8 years of experience in cybersecurity risk management, GRC, or enterprise risk roles
  • Demonstrated hands-on experience conducting formal cybersecurity risk assessments
  • Working knowledge of major cybersecurity frameworks (NIST RMF, NIST CSF, ISO 27001)
  • Strong written and verbal communication skills with the ability to brief technical and non-technical audiences
Job Responsibility
Job Responsibility
  • Lead structured cybersecurity risk assessments across business, IT, and OT environments
  • Perform qualitative and quantitative risk analysis using recognized methodologies (e.g., NIST 800-30, FAIR, OCTAVE)
  • Maintain cybersecurity risk register entries, including risk statements, impact analysis, likelihood assessments, and remediation tracking
  • Monitor and report the status and effectiveness of risk mitigation plans
  • Develop and present cybersecurity risk status metrics and summaries for leadership review
  • Serve as a subject-matter expert for cybersecurity risk identification and treatment guidance
  • Identify confidentiality, integrity, and availability (CIA) requirements for information assets
  • Support Kennametal’s information classification and data protection programs
  • Provide risk-based input into data protection controls, including Data Loss Prevention (DLP) strategies
  • Advise stakeholders on appropriate handling, labeling, and protection of sensitive data
  • Fulltime
Read More
Arrow Right

Metering Solution Engineer

One of my consultancy clients are currently looking to build out a team of Meter...
Location
Location
United Kingdom
Salary
Salary:
Not provided
lawrenceharvey.com Logo
Lawrence Harvey
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Metering device skills: ability to select the right device following site assessments, install them (Elec, Mech, IT, Environment), integrate them (IT/OT architecture) and configure them
  • Experience with floor walks, technical metering assessments (hands on) and offering solutions for metering skills
  • Leads site-level technical coordination for metering deployments
  • Participates to site surveys (so will travel a lot at the beginning) and assessments as OT technical expert (instrumentation + IT/OT integration)
  • Strong specialist in metering technologies, instrumentation, and automation
  • Designs and validates connectivity architecture (PLCs, SCADA, gateways, PME)
  • Oversees configuration, commissioning, and interface validation
  • Ensures cybersecurity compliance with the support of the Cyber SME in the central team
  • Reports to Project managers in each Cluster (by Geo) and the lead architect in the central technical team
Read More
Arrow Right

Senior Product Security Engineer

At Boeing, we innovate and collaborate to make the world a better place. We’re c...
Location
Location
United States , Seattle; Everett
Salary
Salary:
218450.00 - 295550.00 USD / Year
boeing.com Logo
Boeing
Expiration Date
January 24, 2026
Flip Icon
Requirements
Requirements
  • Bachelor of Science degree from an accredited course of study in engineering, engineering technology (includes manufacturing engineering technology), chemistry, physics, mathematics, data science, or computer science
  • 8+ years of experience in a role that required teaming and collaboration skills, and ability to work well with a geographically dispersed cross-functional and matrix team
  • 2+ years of experience leading a team and/or technical project
Job Responsibility
Job Responsibility
  • Principle technical Subject Matter Expert (SME) for all Product Security Engineering related concerns in enterprise operational technology
  • Establishing, executing, and maturing technology and personnel strategy that elevates and integrates PSE personnel and activity across the enterprise
  • Lead Enterprise OT Program Office (SOTER) technical working groups
  • Oversee OT security requirements, architectures, and risks, issues and opportunities
  • Establishing and executing OT program office and proposal technology, and operations strategies including roadmaps for technology, implementation plans for secure automation and operationalization of the secure factory plan
  • Provide technical oversight for Production Security Engineering teams deployed to Boeing production facilities and related facilities and labs, providing technical direction, partner and teammate mentorship, and review and assessment of program performance and artifacts
  • Primary OT focal and SME for Product Security related compliance and certification concerns
  • Provide technical oversight for OT Vulnerability Management and Incident Response
  • Propose investments in virtual OT testing capabilities
  • Support Production Engineering management in developing equipment engineering skills related to secure and resilient operational technology
What we offer
What we offer
  • Generous company match to your 401(k).
  • Industry-leading tuition assistance program pays your institution directly.
  • Fertility, adoption, and surrogacy benefits.
  • Up to $10,000 gift match when you support your favorite nonprofit organizations.
  • health insurance
  • flexible spending accounts
  • health savings accounts
  • retirement savings plans
  • life and disability insurance programs
  • paid and unpaid time away from work
  • Fulltime
!
Read More
Arrow Right

Red Team Operations Manager

To lead, oversee, and quality assure the execution of Red Team engagements end-t...
Location
Location
United Kingdom
Salary
Salary:
Not provided
bugcrowd.com Logo
Bugcrowd
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Extensive experience leading and/or managing Red Team engagements in enterprise environments, preferably across multiple industries (e.g. finance, critical infrastructure, cloud / SaaS / OT)
  • Deep technical knowledge of exploitation, post-exploitation, lateral movement, persistence, command & control, evasion, privilege escalation
  • Good knowledge and experience with Blue Team controls e.g. IDS/IPS, SIEM, EDR, NGFW, log analysis, detection engineering, ideally experience in bypassing or evading them safely
  • Solid experience with modern cloud environments (Azure, AWS, GCP), hybrid / on-premise networks, potentially OT/IoT/industrial environments
  • Strong tradecraft / OpSec awareness around how to avoid detection and conduct operations with minimal operational risk
  • Familiarity with CREST / STAR / TIBER etc. and regulatory / compliance requirements in relevant geographies
  • Proven experience in threat intelligence ingestion, scenario design, mapping to relevant threat actors
  • Excellent written and verbal communication skills and able to produce high quality reports, executive summaries, interact with senior leadership, legal, compliance etc.
  • Good project / operations management skills with an eye for budgeting, scheduling, resource allocation, interfacing external/internal teams
  • Ability to make real-time decisions under pressure, to balance risk vs reward
Job Responsibility
Job Responsibility
  • Lead, oversee, and quality assure the execution of Red Team engagements end-to-end from scoping & planning, through execution, reporting, to debrief and capability development
  • Ensure that all operations are safe, legal, technically robust, aligned with threat intelligence, compliance frameworks, and deliver high value to customers
  • Act as a subject-matter expert and manager for both operations and sales / client-facing aspects of Red Team services
  • Lead multiple concurrent Red Team engagements across industries
  • Define, negotiate and document scope, objectives, rules of engagement, deliverables, constraints, escalation & approval pathways
  • Oversee milestone planning e.g. kick-offs, stand-ups, wash-ups, strategic debriefs
  • Manage resources e.g. operator assignments, tooling, support functions
  • Track engagement progress vs objectives, adjust as needed
  • Assess and manage technical risk ensuring that any red team activity minimises risk to customer operations, data, systems
  • Real-time decision making during operations around TTP deployment, bypass of defenses, managing detections or unexpected discovery
Read More
Arrow Right

Red Team Operations Manager

To lead, oversee, and quality assure the execution of Red Team engagements end-t...
Location
Location
Australia
Salary
Salary:
Not provided
bugcrowd.com Logo
Bugcrowd
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Extensive experience leading and/or managing Red Team engagements in enterprise environments, preferably across multiple industries (e.g. finance, critical infrastructure, cloud / SaaS / OT)
  • Deep technical knowledge of exploitation, post-exploitation, lateral movement, persistence, command & control, evasion, privilege escalation
  • Good knowledge and experience with Blue Team controls e.g. IDS/IPS, SIEM, EDR, NGFW, log analysis, detection engineering, ideally experience in bypassing or evading them safely
  • Solid experience with modern cloud environments (Azure, AWS, GCP), hybrid / on-premise networks, potentially OT/IoT/industrial environments
  • Strong tradecraft / OpSec awareness around how to avoid detection and conduct operations with minimal operational risk
  • Familiarity with CREST / STAR / TIBER etc. and regulatory / compliance requirements in relevant geographies
  • Proven experience in threat intelligence ingestion, scenario design, mapping to relevant threat actors
  • Excellent written and verbal communication skills and able to produce high quality reports, executive summaries, interact with senior leadership, legal, compliance etc.
  • Good project / operations management skills with an eye for budgeting, scheduling, resource allocation, interfacing external/internal teams
  • Ability to make real-time decisions under pressure, to balance risk vs reward
Job Responsibility
Job Responsibility
  • Lead multiple concurrent Red Team engagements across industries
  • Define, negotiate and document scope, objectives, rules of engagement, deliverables, constraints, escalation & approval pathways
  • Oversee milestone planning e.g. kick-offs, stand-ups, wash-ups, strategic debriefs
  • Manage resources e.g. operator assignments, tooling, support functions
  • Track engagement progress vs objectives, adjust as needed
  • Assess and manage technical risk ensuring that any red team activity minimises risk to customer operations, data, systems
  • Real-time decision making during operations around TTP deployment, bypass of defenses, managing detections or unexpected discovery
  • Review and approve attack plans, threat modelling, intelligence
  • Ensure operators employ strong operational security (OpSec), safe tradecraft, evidence collection, clean up post-engagement
  • Maintain up-to-date knowledge of Red Team tools, adversary TTPs, defensive controls, detection systems
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy