Management Consultant – Cybersecurity in Operational Technology
Thales
Location: Remote UK, United Kingdom
Thales people architect identity management and data protection solutions at the heart of digital security. Business and governments rely on us to bring trust to the billions of digital interactions they have with people. Our technologies and services help banks exchange funds, people cross borders, energy become smarter, and much more. More than 30,000 organizations already rely on us to verify the identities of people and things, grant access to digital services, analyze vast quantities of information, and encrypt data to make the connected world more secure.
Your opportunity
As a Management Consultant specializing in Cybersecurity within Operational Technology, you will provide expert guidance to organizations seeking to enhance the security and efficiency of their operational technology (OT) environments. Your role will involve evaluating current cybersecurity practices, identifying vulnerabilities, and recommending strategic improvements to protect critical infrastructure and ensure seamless operations.
Key Responsibilities and Tasks
1. Business Development:
o Develop product and service roadmaps for Thales’ Operational Technology capability.
o Define the go-to-market strategy for all Operational Technology services across all customer domains.
o Work with the sales team to engage new customers across all market sectors.
o Manage accounts with key customers.
2. Capability Development:
o Manage the global Operational Technology Competency Centre by coordinating skills and competencies.
o Share knowledge across the global resources.
o Manage multi-national programmes utilizing in-country resources.
3. Client Engagement and Strategy Development:
o Serve as the primary advisor to clients on matters related to cybersecurity and operational technology.
o Understand clients’ business objectives, OT environments, and cybersecurity challenges to tailor recommendations effectively.
4. Governance and Compliance:
o Work with customers to define and implement Cyber Security Management Systems within their organizations.
o Assist customers in the routine application and interpretation of OT security legislation, standards, policies, and practices.
5. Risk Assessment and Vulnerability Analysis:
o Perform thorough assessments of clients’ OT systems, identifying security gaps and vulnerabilities.
o Conduct risk analyses to determine potential impacts on operations and prioritize areas for improvement.
6. Strategic Recommendations and Solutions:
o Develop actionable strategies and comprehensive plans to enhance the security of OT systems and mitigate identified risks.
o Recommend and design tailored cybersecurity solutions that integrate with existing OT infrastructure.
7. Implementation Oversight:
o Guide and support the implementation of cybersecurity measures, including technology solutions, policy changes, and procedural enhancements.
o Ensure that new systems and processes are integrated smoothly into the client's operational environment.
8. Incident Response and Recovery Planning:
o Assist clients in developing and refining incident response plans and disaster recovery strategies tailored to their OT environment.
o Provide guidance on managing and recovering from cybersecurity incidents to minimize downtime and operational impact.
9. Training and Capacity Building:
o Deliver training sessions and workshops to client teams on cybersecurity best practices and OT management.
o Enhance client knowledge and readiness through educational initiatives and hands-on support.
10. Continuous Monitoring and Improvement:
o Stay updated on the latest cybersecurity threats, technological advancements, and industry best practices.
o Recommend continuous improvements and adjustments to clients’ cybersecurity strategies based on emerging trends and evolving threats.
11. Documentation and Reporting:
o Prepare detailed reports documenting assessments, recommendations, and implementation progress.
o Communicate findings and recommendations clearly to stakeholders, ensuring transparency and understanding.
Skills and Expertise
* A degree or equivalent in related control systems or cybersecurity.
* ISA/IEC 62443 certification or GIAC GICSP certification.
* 5 years’ experience in an Industrial Control/Operational Technology environment, such as Automated manufacturing facility, Utility provider, and Critical National Infrastructure.
* Deep understanding of cybersecurity principles, frameworks, and best practices as they apply to OT environments.
* Strong analytical skills with the ability to evaluate complex technical issues and devise effective solutions.
* Excellent communication and presentation skills, with the capability to convey technical concepts to non-technical stakeholders.
* Demonstrated project management abilities, with experience handling multiple projects and meeting deadlines.
* Understanding of industrial control systems device configuration and the ability to test, diagnose, configure, and maintain control systems.
* Articulate how security in the connected world is best implemented at the point where IT meets other industry domains such as manufacturing/CNI.
* An understanding of the threats arising from the exploitation of vulnerabilities in distributed systems and how these can be managed.
* Understanding of how to secure a network using technologies and security protocols.
* Ability to undertake vulnerability assessments of networks and devices using tools and databases.
* Produce security architecture design documents that analyze potential risks and produce pragmatic security controls.
* Selection of appropriate security components to provide security-enforcing functions.
* Demonstrate a working knowledge of the Policies and Standards required for systems operating in a controlled environment.
* Production of security risks through identification of vulnerabilities, assessment of exposure, and likelihood of risk.
* Ability to analyze information and produce reports, network diagrams, and recommendations on how to improve security posture.
* Ability to plan, control, report, and manage the risk for a defined package of work.
This role will require SC Clearance. It would be advantageous if currently held; however, if not currently held, it is a requirement that the successful applicant will undergo, achieve, and maintain SC Clearance.
At Thales we provide CAREERS and not only jobs. With Thales employing 80,000 employees in 68 countries, our mobility policy enables thousands of employees each year to develop their careers at home and abroad.
Thales UK is committed to providing an inclusive and barrier-free recruitment process. We will provide reasonable adjustments and support to ensure neuro-diverse applicants or those with a disability or long-term condition can be their best during the recruitment process.
Great journeys start here, apply now!
#J-18808-Ljbffr