Product Security Consultant

As a Senior Security Consultant specialising in Operational Technology (OT) & Industrial Security, you will help clients protect critical national infrastructure, industrial control systems, and safety-critical operational environments.

You will assess and secure OT/ICS estates - including SCADA, PLCs, DCS, HMIs and industrial networks - by applying security controls, segmentation patterns, and risk-based mitigation strategies that strengthen resilience without disrupting operations.

Where relevant, you may also support industrial IoT (IIoT) and connected operational platforms, applying the same safety-aware, risk-based principles.

This is a highly technical, client-facing consulting role that requires balancing operational constraints with modern security practices to support secure digital transformation across energy, utilities, manufacturing, transport, and other regulated sectors., * Assess OT/ICS security posture, including network architecture, access pathways, remote access, asset visibility, and control system exposures.

• Design and implement secure architectures for industrial networks, including segmentation, zoning/conduits, DMZ patterns, and secure access to SCADA, PLC, and DCS environments.
• Conduct risk assessments and threat modelling tailored to OT environments, ensuring alignment with NIS/NIS2, IEC 62443, NCSC CAF, and other industry frameworks.
• Integrate and uplift monitoring and logging across OT/ICS systems, supporting improved event visibility, anomaly detection, and incident response readiness.
• Support incident response for OT environments, including containment strategies, recovery planning, and coordination across operations, engineering, and security teams.
• Collaborate with engineering, plant operations, and vendor teams to embed secure-by-design principles into industrial systems, upgrades, and transformation programmes.
• Advise on OT-specific vulnerabilities, patch management constraints, compensating controls, and risk-based prioritisation suited to safety-critical environments.
• Design secure remote access and vendor connectivity models, balancing operational requirements with robust authentication and segmentation controls.
• Guide clients through regulatory alignment, including NIS/NIS2, CAF assessments, audit preparation, and sector-specific compliance expectations.
• Deliver workshops and technical briefings, translating complex OT security risks into clear, actionable, business-aligned recommendations., A leading cyber security services firm in the UK is seeking a Senior OT Security Engineer / Consultant to enhance security in industrial environments. The role requires deep knowledge of Operational Technology and Industrial Control Systems, with a focus on designing secure..., A consulting firm specializing in technology is seeking an experienced Security Project Manager to lead security initiatives for Operational Technology environments in the Greater London area. The successful candidate will oversee OT security projects across live systems,..., A leading technology firm in Greater London is seeking a Senior Security Consultant specializing in Operational Technology & Industrial Security. You will be responsible for assessing and securing critical infrastructures, including SCADA and industrial networks. Ideal..., Principal Operational Technology (OT) Consultant Location: UK (Hybrid / Client Site as Required) Salary: Up to £110,000 + Package Clearance: Eligibility for UK security clearance desirable We are seeking an experienced Principal Operational Technology Consultant to lead...

Bachelor's Degree

Required Technical And Professional Expertise

• Hands-on experience securing OT/ICS environments, including SCADA, PLCs, DCS, HMIs, and industrial networking components.
• Understanding of industrial protocols, such as Modbus, DNP3, OPC, Profinet, BACnet, or equivalent.
• Strong knowledge of OT network architecture, including zoning, conduits, segmentation, DMZ patterns, firewalling, and secure remote access.
• Experience with industrial security frameworks, such as IEC 62443, NIS/NIS2, NCSC CAF, NIST 800-82, or sector-specific regulatory guidance.
• Ability to perform OT-specific risk assessments, threat modelling, and safety-aligned security reviews.
• Exposure to OT-friendly logging, monitoring, and anomaly detection approaches, including integration into SIEM/SOC ecosystems.
• Experience collaborating with OT engineers, plant operators, safety teams, and vendors, understanding both operational and technological constraints.
• Knowledge of compensating controls for unpatched or legacy OT assets, and practical approaches for risk reduction without system downtime.
• Understanding of OT remote access patterns, vendor maintenance pathways, MFA enforcement, and secure jump-host/terminal server models.
• Consulting experience, including stakeholder engagement, requirements gathering, documentation delivery, and presenting risk-based recommendations.

This role requires eligibility for UK Government security clearance. Candidates who already hold clearance (SC or DV) are encouraged to apply, but we will fully consider applicants who meet the eligibility criteria and can obtain clearance.

Preferred Technical And Professional Experience

• Experience securing OT systems in energy, utilities, transport, chemicals, manufacturing, or CNI sectors.
• Hands-on exposure to OT monitoring tools or industrial detection platforms (e.g., Nozomi, Dragos, Claroty, Tenable.ot).
• Experience supporting CAF or NIS/NIS2 assessments, or leading remediation programmes against these frameworks.
• Knowledge of industrial wireless, safety systems (SIS), or building management systems (BMS) security considerations.
• Certifications such as GICSP, GRID, IEC 62443 qualifications, or vendor-specific OT security training.
• Experience integrating OT telemetry into SOC/SIEM environments, with an understanding of constraints around logging, latency, and data sensitivity.
• Exposure to IoT and IIoT security, including device onboarding, identity, firmware assurance, and edge gateway security.
• Experience delivering secure-by-design guidance during ICS upgrades, modernisation, or cloud-connected industrial programmes., A leading engineering consultancy in the UK is looking for OT Cybersecurity professionals. The role involves providing cybersecurity advice, conducting risk assessments, and building relationships with clients. Ideal candidates will have a strong background in OT/ICS..., TQUKE0881_5444 - Network Architect - SCADA / OT Infrastructure Job Type:PermanentWork Mode:Onsite (Client)Employment Type: Full-TimeRole Overview We are seeking a highly experienced Network Architect with 10-15+ years of relevant experience in SCADA and OT network...

• Many training opportunities from classroom to e-learning, mentoring and coaching programs and the chance to gain industry recognized certifications
• Regular and frequent promotion opportunities to ensure you can drive and develop your career with us
• Feedback and checkpoints throughout the year
• Diversity & Inclusion as an essential and authentic component of our culture through our policies and process as well as our Employee Champion teams and support networks
• A culture where your ideas for growth and innovation are always welcome
• Internal recognition programs for peer-to-peer appreciation as well as from manager to employees
• Tools and policies to support your work-life balance from flexible working approaches, sabbatical programs, paid paternity leave, maternity leave and an innovative maternity returners scheme
• More traditional benefits, such as 25 days holiday (in addition to public holidays), private medical, dental & optical cover, online shopping discounts, an Employee Assistance Program, life assurance and a group personal pension plan of an additional 5% of your base salary paid by us monthly to save for your future., Level: ConsultantSalary: Competitive Salary & Package (Dependent on Experience)Please Note: Any offer of employment is subject to satisfactory BPSS and SC security clearance which requires 5 years continuous UK address history (typically including no periods of 30...

At IBM CIC, we provide technical and industry expertise to a wide range of public and private sector clients in the UK. Introduction At IBM CIC, we provide technical and industry expertise to a wide range of public and private sector clients in the UK. A career in IBM CIC means you'll have the opportunity to work with leading professionals across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. You will get the chance to deliver effective solutions, driving meaningful business change for our clients, using some of the latest technology platforms. Curiosity and a constant quest for knowledge serve as the foundation to success here. You'll be encouraged and supported to constantly reinvent yourself, focusing on skills in demand in an ever changing market. You'll be working with diverse teams, coming up with creative solutions which impact a wide network of clients, who may be at their site or one of our CIC or IBM locations. Our culture of evolution centres on long-term career growth and development opportunities in an environment that embraces your unique skills and experience., A leading technology consultancy is looking for an OT Cyber Security Consultant to join their team in the UK. You will deliver security solutions and conduct assessments on industrial control systems. This hybrid role involves working with critical national infrastructure..., A leading technology consultancy in the UK is seeking a Principal Operational Technology (OT) Consultant. This strategic role involves leading advisory engagements in industrial control and OT environments, defining secure architectures, and conducting cyber risk..., Dragos is on a relentless mission to defend industrial organizations that provide us with the necessities of modern civilization; running water, functioning electricity, and safe industrial working environments. As the market leader in ICP/OT Cybersecurity, we are dedicated..., At IBM CIC, we provide technical and industry expertise to a wide range of public and private sector clients in the UK.A career in IBM CIC means you'll have the opportunity to work with leading professionals across multiple industries to improve the hybrid cloud and AI..., One of the most exciting prospects in the UK cyber security sector today, Bridewell is a leading cyber security services company specialising in protecting and transforming critical business functions for some of the world's most trusted organisations. We are the trusted..., OverviewWe have two key clients who are seeking experienced OT Cybersecurity professionals across the UK. Both are established engineering consultancies, operating across a wide range of industrial market sectors including energy, water treatment, transportation, O&G and..., Introduction At IBM CIC, we provide technical and industry expertise to a wide range of public and private sector clients in the UK.A career in IBM CIC means you'll have the opportunity to work with leading professionals across multiple industries to improve the hybrid...