OT Security Consultant

We are seeking an experienced OT Security Consultant to support our Energy & Utilities clients in designing, implementing and maturing their IT/OT security capabilities. In this role, you will work with Critical National Infrastructure (CNI) operators, distribution networks, generation facilities and major utilities organisations to help them secure their operational technology environments, manage cyber risk, and comply with sector‑specific regulations.

The ideal candidate will have strong hands‑on experience across industrial control systems (ICS), SCADA, OT network security, and a solid understanding of the challenges faced by organisations in the UK Energy & Utilities sectors. This role suits someone who thrives in complex environments, can communicate effectively with engineering teams and senior stakeholders, and enjoys blending security engineering with consultancy.

‍

OT Security Advisory

· Deliver expert consultancy on OT and ICS security, providing guidance across risk management, architecture, governance, strategy, and controls implementation.

· Conduct OT security assessments, including maturity reviews, threat modelling and risk assessments aligned to industry standards.

· Support clients in developing OT security improvement plans, security roadmaps and investment cases.
‍

Technical OT / ICS Security Delivery

· Perform OT network security reviews, segmentation assessments and architecture validation work.

· Assist with the design and implementation of secure OT networks, including firewalls, DMZs, data diodes and remote access solutions.

· Conduct vulnerability assessments within ICS environments.
‍

Regulatory & Compliance Support

· Guide clients on compliance with UK frameworks such as NIS/NISR and NCSC CAF.

· Assist with audit preparation, documentation and remediation planning.
‍

Client Engagement & Delivery Leadership

· Work with engineering, IT, security, and operations teams.

· Produce high‑quality consultancy deliverables.

· Support pre‑sales activities.

What we’re looking for

Essential Experience

· Experience with operational technology, industrial control systems and SCADA.

· Experience delivering OT security projects within the Energy & Utilities sector.

· Understanding of industrial protocols.

· Hands‑on experience with OT network design and security.

· Familiarity with control system vendors.

· Experience applying OT frameworks such as IEC62443.
‍

Certifications – Highly Desirable

· OT/ICS Security/Safety Certifications

· ISA/IEC 62443 Cybersecurity

· GIAC (GRID, GICSP, GCIP)
‍

General Security Certifications

· CISM, CISSP, ISO 27001 Lead Implementer/Auditor

Engineering Certifications

· CCNA/CCNP (optional)
‍

Personal Attributes

· Strong analytical and problem‑solving skills.

· Calm under pressure.

· Comfortable working on industrial client sites.

· Strong communication skills.

· Collaborative mindset.

‍

Nice to have

· Understanding of OT vs IT architecture differences.

· Knowledge & experience of OT IDS technologies (e.g. Nozomi, Claroty, Dragos).

· Understanding of industrial networking and gateways.

· Experience with OT focused penetration testing.

· Knowledge of cloud‑integrated OT solutions.

· Consulting Skills

· Ability to translate technical findings into business recommendations.

· Strong stakeholder management.

· Comfortable delivering workshops.

‍