Head of Operational Technology (OT) Security

The Head of OT Security is responsible for developing and executing the OT security strategy to protect critical manufacturing systems, including SCADA, PLCs, DCS, MES (Manufacturing Execution Systems), EDA tools, and fab automation systems from cyber threats. This role ensures compliance with global standards, mitigates risks, and aligns OT security initiatives with business objectives in a highly automated semiconductor manufacturing environment.

Key responsibilities

1. Strategy & Leadership

a. Define and implement the OT security strategy aligned with corporate cybersecurity objectives and regulatory requirements.

b. Lead OT security governance, policies, and frameworks across all manufacturing sites.

c. Collaborate with IT security, engineering, and operations teams to integrate security into OT processes.

2. Risk Management & Compliance

a. Conduct OT-specific risk assessments and vulnerability management.

b. Ensure compliance with standards such as SEMI, IEC 62443, ISO 27001, and NIST CSF.

c. Maintain audit readiness and manage regulatory reporting.

3. Security Operations

a. Oversee OT network segmentation, access control, and monitoring.

b. Implement and manage OT-specific security tools (IDS/IPS, anomaly detection, SIEM for OT)

c. Lead incident response for OT environments, including root cause analysis and recovery.

4. Technology & Innovation

a. Stay ahead of emerging OT threats and recommend advanced security solutions.

b. Drive adoption of secure-by-design principles in new OT deployments.

c. Ensure security integration with MES, EDA tools, SCADA, PLCs, DCS, and fab automation systems.

5. Stakeholder Management

a. Engage with plant managers, automation engineers, and external vendors to ensure security alignment.

b. Manage relationships with third-party security providers and auditors.

6. Team Leadership

a. Build and lead a team of OT security specialists.

b. Provide training and awareness programs for OT personnel.

Qualifications & Experience

• Bachelors or Master’s in Engineering, Cybersecurity, or related field.
• 10+ years in cybersecurity, with at least 5 years in OT/ICS security within manufacturing or critical infrastructure.
• Certifications: GICSP, CISSP, IEC 62443 Expert, or equivalent.
• Deep understanding of OT systems (SCADA, PLCs, DCS, MES, EDA tools, fab automation systems).
• Knowledge of SEMI standards and Cybersecurity controls for Tool move-in and sustenance phases.
• Knowledge of semiconductor manufacturing processes and MES systems.
• Strong leadership and communication skills
• Worked in EMS/Semicon industry will be of added importance

KPIs

• Reduction in OT security incidents.
• Compliance audit scores.
• Mean Time to Detect (MTTD) and Respond (MTTR) for OT incidents.
• OT security maturity improvements year-over-year.