OT & IoT Security Architect
- Barcelona
- Permanente
- Tiempo completo
- OT Security Strategy - Develop and implement a comprehensive OT security strategy that aligns with industry best practices and regulatory requirements.
- Product Security - Lead efforts to embed security into the product development lifecycle, ensuring that security considerations are integrated from design through deployment. This includes OT, ICS, IoT, and enterprise security processes / standards.
- Risk Assessment - Conduct risk assessments and vulnerability assessments for OT systems and products to identify and prioritize security threats and weaknesses.
- Security Architecture - Design and implement secure system architectures and product designs, considering factors such as network segmentation, access controls, and encryption.
- Security Standards - Establish and enforce security standards, policies, and procedures for OT / ICS systems and product development.
- Security Testing - Oversee security testing activities, including penetration testing, vulnerability scanning.
- Security Awareness - Promote security awareness and training among OT / ICS and product development teams to foster a security-conscious culture.
- Vendor Assessment - Evaluate third-party vendors and suppliers for their security practices and ensure they meet our security requirements.
- Documentation - Maintain detailed documentation of security configurations, design patterns, shared service designs, inventories, incident response plans, and security architectures.
- Bachelor’s or master’s degree in computer science, Information Security, Information Technology, or related field)
- 5 years’ experience with securing and conducting incident response in Operational Technology and related systems environments
- Experience aligning ICS with applicable risk management, cyber security, and compliance frameworks (e.g., NIST 800-, ISO 27XXX, ISA/IEC 62443, GxP)
- Familiar with Security in Microsoft Azure IaaS and PaaS cloud environments
- Experience implementing security practices in CI/CD environments
- Ability of solving problems and analytical skills
- Outstanding oral and written communication skills (e.g., documenting technical runbooks/procedures) in English.