OT Security Engineer

Job Description

Position Summary:
Location: Amsterdam, Rotterdam Europoort or Hamburg

We are seeking an OT Security Engineer to strengthen the cybersecurity posture of our Operational Technology (OT) environments in EMEA/APAC. In this role, you will be responsible for implementing robust technical defenses, supporting regulatory compliance efforts including the EU NIS2 Directive, and ensuring the resilience of critical OT systems. You will collaborate closely with OT engineers and Process Automation engineers, and partner with key business segments, Global Technology (IT), and your global OT peers to proactively manage risks, respond to incidents, and drive continuous improvement in OT security across the organization.

Job Responsibilities:

• Implement and manage comprehensive OT security measures, including firewall rules, network segmentation, and strict adherence to the Principle of Least Privilege (PoLP).
• Ensure all OT practices align with industry standards (NIST, IEC 62443) and lead NIS2 compliance assessments, audits, and gap remediation.
• Develop and execute OT-specific incident response plans, encompassing investigation, resolution, and mandatory reporting to national authorities under NIS2.
• Identify, prioritize, and coordinate the timely remediation of OT vulnerabilities in strict alignment with GICS policy expectations.
• Conduct OT system risk assessments and manage cybersecurity risks associated with critical third-party suppliers and service providers.
• Deploy, configure, and operate specialized monitoring tools to detect and respond to anomalous activities and potential threats within OT environments.
• Create and update OT-specific security policies, standards, and operational procedures to maintain a robust and measurable security posture.
• Support OT leadership in demonstrating cybersecurity governance and accountability, ensuring all actions meet regulatory and GICS requirements.
• Partner with Enterprise Architecture, GICS, and Operations teams to ensure seamless security integration for both new and legacy OT systems.
• Maintain detailed system documentation and business continuity plans while delivering tailored cybersecurity awareness training to OT personnel.

Required Skills:

• Proven experience in OT cybersecurity within industrial or critical infrastructure environments, including deep knowledge of OT protocols (e.g., Modbus, OPC UA, PROFINET, IEC 61850) and frameworks like IEC 62443 or NIST CSF.
• Thorough understanding of EU cybersecurity regulations, specifically the NIS2 Directive, with a track record of supporting compliance initiatives and regulatory reporting requirements.
• Hands-on proficiency in OT network segmentation, firewall management, and system hardening, complemented by experience managing OT-specific security tools (e.g., anomaly detection, asset inventory).
• Practical experience performing OT risk assessments and supply chain risk management, alongside the ability to lead incident response, forensic investigations, and remediation efforts.
• A broad technical background in end-to-end solutions (infrastructure, databases, networking) with the ability to advise on security best practices for new solution implementations.
• Fluent English and strong interpersonal skills to collaborate across GICS, Legal, and Operations teams while developing high-quality technical documentation and governance reports.

Education:

• Minimum of Bachelor’s degree in a technical area (computer science, chemical engineering, cyber security).
• Relevant certifications are a plus (e.g., GICSP, GRID, ISA/IEC 62443 certifications, CISSP, CISM, or comparable).

Experience:

• 3+ years of experience supporting enterprise-level technology operations and services.
• 3+ years of experience in a manufacturing environment.
• 3+ years of experience in cybersecurity engineering and industrial control systems (ICS)/OT security.

About ADM