SRC Operational Technology Associate

Key Responsibilities

• Conduct risk assessments and audits for operational technology systems to identify security weaknesses and potential threats.

• Identify and assess security risks and vulnerabilities in OT systems.

• Design and implement security controls and measures to protect OT systems from cyber threats, including intrusion detection systems, firewalls, access controls, and network segmentation.

• Develop OT security architecture and network segmentation designs.

• Collaborate with clients' cross-functional teams, including OT engineers, IT professionals, and management, to ensure cybersecurity considerations are integrated into the design, deployment, and maintenance of OT systems.

• Stay updated on emerging threats, vulnerabilities, and industry best practices related to OT cybersecurity.

• Provide technical expertise and guidance regarding OT security standards, policies, and procedures.

• Prepare and conduct security training and awareness programs, including OT-specific training for clients and internal teams.

• Conduct compliance assessments and prepare for OT certifications such as IEC 62443.

• Draft assessment reports including Executive Summary, observations/recommendations/peer comparisons, benchmark, etc.

• Contribute to practice enablement and business development activities (development of SOW’s, RFPs in alignment to client’s requirement, etc.)

• Drive initiatives to develop innovation quotient (publishing whitepapers, help develop business case for an innovative technical idea to seek investments, point of view, etc.)

Position Requirements 

• OT (Operational Cybersecurity) experience, possibly in the industry or at another firm, with a strong understanding of OT systems and networks such as PLCs, DCSs, and other systems.

• Solid understanding of industrial control systems (ICS), supervisory control and data acquisition (SCADA) systems, and other OT technologies.

• Knowledge of OT-specific protocols and standards such as Modbus, DNP3, IEC 61850, and OPC.

• Good understanding of OT cybersecurity frameworks such as NIST 800-82 and ISA 62443 preferred.

• Knowledge of network security/hardening, whitelisting, and cybersecurity best practices.

• Familiarity with network segmentation techniques and security architecture for OT systems.

• Experience in industrial communication network and system security IEC 62443 standards.

• Knowledge of NIST CSF.

• Good knowledge of cybersecurity principles, theories, and techniques.

• Demonstrate application of business acumen while leveraging technologies.

Desired Knowledge

• Experience with OT monitoring tools or certifications preferred for products such as Claroty, Nozomi, Tenable, Armis, or other systems.

• Relevant OT certifications such as GICSP, IAS 62443, or similar are preferred.

• In-depth knowledge and understanding of OT security regulations and requirements.

• OT security assessments, risk assessments, and security risk analysis.

• Excellent leadership, teamwork, and collaboration skills.

• Knowledge of emerging OT security threats and vulnerabilities, and the ability to quickly adapt to new technologies and solutions.

• Experience with OT security tools and labs for development and processing.

Years of experience

Minimum of 3-8 years of experience in an Operational Technology (OT) environment.

Professional and Educational Background 

BE / B Tech / MCA / MS / MBA (Field of Study: Computerand Information Science, Information Cybersecurity, Information Technology, Management Information Systems).

Additional Information 

• Travel Requirements: Not Applicable

• Line of Service: Advisory

• Industry: Consulting

• Location: Bangalore, Hyderabad, Mumbai, Kolkata