Senor OT Security Consultant

We are seeking a highly experienced Senior OT Security Consultant to lead and deliver complex security engagements across UK Energy & Utilities clients. This senior role will be responsible for shaping security strategy, leading technical delivery, influencing senior stakeholders, and mentoring consultants across IT/OT security domains.

The ideal candidate brings deep OT/ICS expertise, an understanding of energy and utility sector regulations, strong consulting capability, and the ability to operate confidently at both technical and executive levels.

‍

OT Security Advisory Leadership

· Lead OT and ICS security strategy development, maturity assessments, and architectural reviews.

· Advise senior client stakeholders on governance, risk, resilience, and regulatory obligations.

· Define OT security improvement roadmaps and investment cases.
‍

Technical OT / ICS Delivery Leadership

· Lead design and validation of secure OT architectures including segmentation, firewalls, DMZs, and remote access.

· Oversee OT vulnerability assessments, configuration reviews, and secure integration of ICS solutions.

· Provide senior guidance during OT cyber incidents including containment, forensics, and recovery.
‍

Regulatory & Compliance Expertise

· Interpret and apply NIS/NISR, Ofgem/Ofwat expectations, NCSC CAF and IEC62443 requirements.

· Support audit readiness, evidence collation, and remediation planning.
‍

Client Engagement & Delivery Excellence

· Own client relationships and act as senior point of escalation.

· Produce and review high-quality deliverables including designs, assessments and reports.

· Lead proposals, pre‑sales activities and contribute to business development.

· Mentor and coach junior consultants.

‍

Essential Experience

· Extensive experience with OT, ICS, SCADA, DCS and industrial networking.

· Proven track record delivering and leading OT security engagements in Energy & Utilities.

· Expert understanding of ICS protocols (Modbus, DNP3, IEC‑104, OPC/UA etc.).

· Significant experience designing and reviewing OT architectures using the Purdue Model.

· Strong familiarity with major OT/ICS vendors (Siemens, ABB, GE, Schneider Electric).

· Experience applying frameworks such as IEC62443, NIST CSF, NIST 800‑82, NCSC CAF.

· Senior-level stakeholder management experience.
‍

Certifications – Highly Desirable

· OT/ICS Security/Safety Certifications

· ISA/IEC 62443 Cybersecurity Expert

· GIAC: GRID, GICSP, GCIP

· TÜV Certified Cyber Security or Functional Safety (preferred)
‍

General Security Certifications

· CISSP, CISM, ISO 27001 Lead Implementer/Lead Auditor

Engineering Certifications

· CCNA/CCNP or equivalent networking certification (optional)
‍

Personal Attributes

· Strategic thinker with ability to influence senior stakeholders.

· Strong analytical and problem-solving capability.

· Excellent communication and documentation skills.

· Ability to work flexibly across industrial client environments.

‍

Nice to have

· Technical Leadership Skills

· Experience with OT IDS technologies (e.g. Claroty, Nozomi, Dragos).

· Knowledge of secure ICS engineering lifecycle and OT asset management.

· Experience leading OT penetration testing or red‑team style engagements.

· Understanding of IoT/IIoT integrations and cloud‑connected OT systems.

· Consulting & Leadership Skills

· Ability to translate complex OT risks into business‑aligned recommendations.

· Strong workshop facilitation and presentation capability.

· Ability to lead multidisciplinary teams and manage complex client programmes.

‍