Job
Description
As an OT Security Risk and Governance Lead at Capgemini, you will be responsible for leading and delivering OT security assessments, including risk assessments, architecture reviews, and maturity evaluations across SCADA, DCS, PLC, and ICS environments. Your role will involve conducting OT/ICS-specific vulnerability assessments, supporting red/blue/purple team simulations in industrial networks, and developing customized OT cybersecurity roadmaps aligned with international standards such as IEC 62443, NIST 800-82, NCA CCC, etc. Additionally, you will interface with client stakeholders from operational, engineering, and executive teams to deliver technical findings and strategic recommendations. Your key responsibilities will include: - Developing OT security programs, policies, network segmentation strategies, and incident response playbooks tailored for industrial operations - Managing multiple concurrent engagements to ensure quality delivery, client satisfaction, and timely completion - Collaborating with internal teams from advisory, IT cyber, and risk consulting for integrated service delivery - Developing detailed reports, articulating technical findings, and delivering actionable recommendations to both technical teams and executive stakeholders - Staying updated with emerging cyber threats, vulnerabilities, and offensive security techniques, and incorporating these insights into client engagements - Mentoring and coaching junior team members to foster their technical and professional development Qualifications required for this role include: - A bachelor's or master's degree in information technology, cyber security, etc. - 9-15 years of experience in technical OT security assessments - A valid passport for travel Required skills for this position: - Strong technical understanding of OT/ICS systems and cybersecurity challenges unique to industrial environments - Experience working with OT network protocols (Modbus, DNP3, OPC, etc.) and devices (PLCs, RTUs, HMIs) - Familiarity with industrial threat intelligence, attack vectors, and real-world OT incident case studies - Excellent communication and stakeholder management skills, especially in cross-functional industrial settings - Proven ability to interpret complex findings and translate them into actionable insights for both technical and non-technical audiences - Strong analytical, problem-solving, and critical-thinking skills - Deep technical understanding of offensive security methodologies, including network penetration testing, web application testing, and adversary simulation - Strong knowledge of OT security frameworks (e.g., IEC 62443) Preferred skills for this role include: - Industry-recognized certifications (e.g., IEC 62443, NIST 800-82, NCA OTCC, SANS ICS) - Experience in OT security engagements - Certifications such as GICSP, ISA/IEC 62443, GRID, or equivalent - Experience supporting or responding to OT cyber incidents or implementing cybersecurity controls in industrial networks Join Capgemini as an OT Security Risk and Governance Lead and contribute to securing industrial operations with your expertise in OT security assessments and cybersecurity frameworks.,
