Join us in this role where you’ll work closely with offshore windfarm engineering, OT experts, IT and corporate functions across locations and regions to develop and manage cyber‑security compliance activities in global offshore windfarm operations.
Welcome to Ørsted Generation
You’ll be part of Ørsted Generation, where you, together with your colleagues, will help ensure that our offshore wind operations comply with international and national cyber‑security regulations and standards. As wind energy continues to mature globally and is recognised as critical infrastructure in key markets, owners and operators must meet increasing regulatory and cyber‑security requirements, including standards such as ISO 27001 and IEC 62443.
In this role you’ll act as a technically oriented compliance expert with strong project‑management skills, supporting the continuous compliance of OT operations in critical infrastructure environments. You will contribute to the application and improvement of information‑security management processes, lead global compliance and audit activities, and help strengthen Ørsted’s overall security and compliance posture. You will also collaborate closely with and support a community of Regional Cyber Security Officers across Ørsted’s locations worldwide.
You’ll play an important role in:
* Managing the compliance baseline documentation system and related artifacts.
* Developing methodologies and tooling concepts to improve and automate compliance management (cyber GRC concepts and tooling).
* Establishing cyber‑security frameworks, policies, and procedures tailored for offshore windfarm environments to address risks related to industrial control systems (ICS) and SCADA systems.
* Performing control assessments and risk assessments from the compliance perspective.
* Maintaining and facilitating internal and certification audits and governmental inspection activities.
* Managing the community of Regional Cyber Security Officers to coordinate and support their local compliance activities.
* Establishing operational compliance reporting (e.g., KPIs, KRIs, assessments, maturity assessments, compliance risk reporting).
* Consulting operations teams regarding compliance.
To succeed in the role, you:
* Have experience with governance, risk, and compliance approaches.
* Have very good knowledge and understanding of industrial standards such as ISO 27001, ISO 27002, ISO 27005 and IEC 62443.
* Are capable of fully understanding and getting familiar with national and/or energy‑market‑specific standards and regulations such as NIS2, UK NIS‑CAF, German IT Sicherheitskatalog, KRITIS regulations and US NERC CIP, and how they apply to OT environments and how different authorities audit and inspect across jurisdictions.
* Have experience with security and compliance in the OT area (e.g., PLCs, HMIs, RTUs, and auxiliary systems such as HVAC, LV systems, UPS).
* Have project‑management skills.
* Have good communication skills and are capable of stakeholder engagement in a matrix organisation.
* Have very good analytical and methodological skills.
Employment in this role may be subject to the successful candidate being able to obtain the required security clearance.
As an applicant or employee, you may request reasonable work and position accommodation or adjustments via accommodation@orsted.com.
#J-18808-Ljbffr