OT Cybersecurity Architect

Job Description

Roles & Responsibilities :
. Design and implement comprehensive end-to-end cybersecurity architecture for OT/ICS environments.

. Develop and maintain security reference architectures and blueprints for Linux-based SCADA control systems

. Conduct comprehensive threat modeling, risk assessments, and vulnerability analysis for critical infrastructure systems

. Define network segmentation strategies and security zones for OT/IT convergence environments

. Establish defense-in-depth strategies and implement zero-trust principles for industrial control systems

. Lead enterprise-wide Linux hardening initiatives including OS-level security configurations, secure boot implementation.

. Design and enforce file system security policies, implement robust logging and auditing mechanisms, and establish continuous monitoring frameworks

. Harden network stack configurations including firewall rules secure protocol implementations, and network segmentation strategies

. Develop and maintain Linux hardening baselines, security benchmarks and automated compliance validation frameworks

. Minimize attack surface through service reduction, secure default configurations, and elimination of unnecessary software components

. Implement security controls Required to secure MQTT communication protocols.

. Design and implement secure architectures for visualization platforms

. Establish OT-specific security monitoring, anomaly detection, and incident response capabilities

. Develop and implement security controls for web-based UI/UX operational dashboards

. Collaborate with development teams to embed security into web applications, ensuring secure coding practices

. Ensure implementation and enforcement of IEC 62443 controls during the development and deployment phases.

. Maintain compliance with global OT cybersecurity best practices and regulatory requirements

. Develop and maintain security policies, procedures, and technical documentation

. Perform regular vulnerability assessments, penetration testing coordination, and security gap analysis

. Stay current with emerging threats, vulnerabilities, and security technologies relevant to OT/ICS environments

Qualifications

Mandatory Skills

• Linux Security Architecture & Hardening

• OT/ICS Cybersecurity Architecture Design

• OT Risk Assessment & Risk Management Frameworks

• SCADA Security (Linux-Based Control Systems)

• Network Security & Segmentation

• MQTT Protocol Security

• IEC 62443 Implementation & Compliance

• Defense-in-Depth Security Architecture

• Vulnerability Management & Threat Modeling

• OT Security Monitoring, Logging & Incident Response

Good-to-Have Skills

• Energy / Battery Storage / Renewable Energy Domain Experience

• Advanced UI/UX Security

• DevSecOps Integration

• SIEM & SOAR Platforms (Splunk, QRadar, Sentinel)

• Advanced Threat Intelligence & Threat Hunting

• Endpoint Detection & Response

Education & Experience

. Bachelor's degree in computer science, Cybersecurity, Information Technology, Engineering, or related field

. 10-12 + years of experience in cybersecurity

. Expert-level knowledge of Linux system hardening and secure configuration

. Extensive hands-on experience in OT cybersecurity, SCADA systems, and ICS environments

. Proven expertise in implementing IEC 62443 controls and compliance frameworks for industrial systems

. Strong knowledge of MQTT protocol security, including TLS/SSL implementation, authentication mechanisms, and authorization controls

. Experience securing web-based applications and UI/UX systems with knowledge of OWASP Top 10

. Strong understanding of network security principles including firewalls, VPNs, network segmentation, and secure protocols

Preferred Qualifications

. Master's degree or Bachelor Degree in Cybersecurity, Computer Science, or related technical field

. Professional certifications such as GICSP (Global Industrial Cyber Security Professional), CISSP, CISM, CEH, or OSCP

. Specific experience in the energy sector, renewable energy, or battery energy storage systems