🔧 OT/ICS Security Engineer – FortiSIEM Specialist
Location: UK (Hybrid - 2 Days a week in Ipswich)
Start: Immediate / ASAP
We are partnering with a leading organisation undergoing a major uplift of their OT/ICS security capability. They are seeking an experienced OT/ICS Security Engineer with strong FortiSIEM expertise to enhance monitoring, compliance, and incident response across critical industrial environments.
* Strengthen OT/ICS security across SCADA, DCS, EMS, and field‑level systems.
* Lead FortiSIEM administration and content engineering, including log onboarding, rule creation, parsing, correlation, and dashboard/report development.
* Support compliance programmes covering NIS CAF, IEC 62443, NERC CIP, ISO 27001, NIST, or similar frameworks.
* Drive OT incident detection and low‑impact containment, supporting response activities across industrial assets.
* Manage and optimise the wider Fortinet ecosystem (FortiGate, FortiAnalyzer, FortiManager).
* Work with ICs protocols and architectures including Purdue, IEC 61850, DNP3, Modbus, and IEC 60870‑5‑104.
* Oversee OT vulnerability and risk management activities, applying compensating controls where patching or modification is restricted.
* Build automation, parsers, and integrations using Python, APIs, and scripting.
* Develop monitoring and use cases for OT assets such as IEDs, HMIs, historians, PLCs, and field controllers.
* Engage cross‑functional stakeholders, manage change control, coordinate with vendors, and maintain a safety‑critical mindset.
đź“Ś Essential Skills & Experience
* Proven experience in OT/ICS security, industrial networks, or critical infrastructure.
* Hands‑on FortiSIEM engineering experience (administration, content, rules, and dashboards).
* Strong knowledge of Fortinet security technologies.
* Familiarity with ICs/OT protocols and architectures.
* Strong scripting/automation capability (Python preferred).
* Experience working within regulated environments or frameworks (NIS, NIST, IEC 62443, etc.).
* Confident working with stakeholders, engineers, vendors, and operational leads.
#J-18808-Ljbffr