OT Cybersecurity Lead
Location: Stanlow, Ellesmere Port
Are you an experienced OT cybersecurity professional looking to lead critical initiatives in a dynamic environment? We are seeking an OT Cybersecurity Lead to spearhead our Operational Technology (OT) cybersecurity strategy. In this pivotal role, you will collaborate closely with IT and refinery operational teams, ensuring seamless integration and robust protection against cyber threats.
Role Summary
The OT Cybersecurity Lead is responsible for developing, implementing, and managing cybersecurity strategies and controls for Operational Technology environments. This role ensures the protection of Critical National Infrastructure systems such as SCADA, DCS, PLCs, and other Industrial Automation & Control Systems (IACS), aligning with regulatory requirements including COMAH, HSE OG86, NIS, and ISO/IEC 62443.
Key Responsibilities
* Lead the design, implementation and upkeep of the OT Cybersecurity Management System and policies to OG86 and IEC62443-2-1 compliance.
* Conduct risk assessments and threat modeling for OT environments in accordance with IEC62443-3-2.
* Manage NIS compliance for OT Networks and produce the NIS annual report.
* Collaborate with Refinery OT Engineers to manage security controls for ICS, SCADA, and other OT systems.
* Collaborate with engineering, IT, and safety teams to ensure secure integration of OT systems.
* Oversee incident response and recovery procedures for OT-related cyber events reported by 24/7 OT SOC.
* Ensure compliance with relevant standards and regulations (e.g., COMAH, HSE OG86, NIS, ISO/IEC 62443).
* Develop and deliver OT cybersecurity awareness and training programs.
* Manage Cybersecurity MSP/suppliers in delivery of proactive monitoring, detection and response to cyber threats
* Constantly monitor and analyze security improvement needs and map them to appropriate OT Security Solutions
* Monitor and report on OT cybersecurity posture and KPIs to senior leadership.
* Inform and report the progress of all audits, response and recovery actions to the Head of Data & Information Security
* Represent OT Cybersecurity in the Refinery change control process.
* Test and identify network and system vulnerabilities.
* Develop and maintain key stakeholder relationships within the Refinery, DESNZ, NCSC and 3rd party suppliers.
About You
Required Qualifications
* A bachelor’s degree in Cybersecurity, Computer Science, Engineering, or a related discipline.
* Relevant certifications such as GICSP, CISSP, CISM, or ISA/IEC 62443 are preferred.
* Significant experience working in cybersecurity or operational technology (OT) environments within critical national infrastructure (CNI) sectors such as power, water, oil & gas, transportation.
* Strong understanding of industrial control systems (ICS) and communication protocols such as Modbus, OPC, and DNP3.
* Proven experience with OT network architecture, including network segmentation, firewalls, and secure remote access.
* Practical knowledge of key regulatory and compliance frameworks, including COMAH, NIS, HSE OG86, and ISO/IEC 62443.
Key Competencies
* Strategic thinking and leadership
* Strong communication and stakeholder engagement
* Analytical and problem-solving skills
* Ability to work under pressure in high-risk environments
* Ability to manage OT Cybersecurity projects
* Collaborative mindset across multidisciplinary teams
* Competitive Salary
* 10% Company Contribution Pension rising to 15% with service
* 25 days Holiday, increasing with service
* Private Medical Insurance
* Additional Flex Benefits- including Holiday Purchase
* Access to Employee Assistance Programme with Exclusive access to a range of Discounts
* Free Secure On Site Car Parking
Seniority level
* Mid-Senior level
Employment type
* Full-time
Job function
* Information Technology
Industries
* Motor Vehicle Manufacturing
#J-18808-Ljbffr