At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all.
The opportunity
In your role at EY, you’ll be inspired by a team of the brightest business and technical minds in cyber security. We are passionate champions for our clients and know from experience that the best solutions for our clients’ needs come from working hard together. As part of our team, your voice matters, and you will do important work that has impact, on people, businesses, and nations. Our industry and our company move fast, and you can be sure that you will always have room to learn and grow. We’re proud of our team and the important work we do to build confidence for a more connected world.
Your key responsibilities
We are seeking a highly skilled and experienced Senior Cybersecurity Engineer, OT/IoT Security Management to join our team. The ideal candidate must have a strong background in Operational Technology (OT) / IoT security, with a focus on frameworks such as NIST Cybersecurity Framework (CSF), ISA/IEC 62443, NIST SP 800-82, and Zero Trust principles. The OT Analyst will be responsible for Governance, Risk, and Compliance (GRC) activities, conducting assessments, evaluating security postures, and ensuring adherence to applicable regulations and standards.
Responsibilities for success include, but not limited to:
• Implement and maintain compliance with NIST CSF, ISA/IEC 62443, NIST SP 800-82, and other relevant cybersecurity frameworks.
• Conduct regular assessments to evaluate the effectiveness of security controls and compliance with established frameworks.
• Perform risk assessments to identify vulnerabilities and threats within OT environments.
• Develop risk management strategies and mitigation plans to address identified risks.
• Assess the current security posture of OT systems and networks.
• Provide recommendations for improvements based on industry best practices and regulatory requirements.
• Develop and maintain GRC policies, procedures, and documentation.
• Ensure that OT security policies align with organizational goals and regulatory requirements.
• Advocate for and assist in the implementation of Zero Trust principles within OT environments.
• Evaluate and recommend technologies and practices that support a Zero Trust security model.
• Participate in incident response planning and execution for OT security incidents.
• Collaborate with IT and security teams to investigate and remediate security incidents.
• Work closely with cross-functional teams, including IT, engineering, and operations, to ensure a cohesive approach to OT security.
• Communicate findings and recommendations to stakeholders at all levels of the organization.
• Stay current with emerging trends, threats, and technologies in OT security.
• Recommend and implement continuous improvement initiatives to enhance the security posture of OT systems.
Preferred Qualifications:
• Bachelor’s degree in Cybersecurity, Information Technology, Engineering, or a related field. Master’s degree preferred.
• Minimum of 3-5 years of experience in OT security, cybersecurity, or a related field.
• Hands-on experience with NIST CSF, ISA/IEC 62443, NIST SP 800-82, and Zero Trust frameworks.
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified in Risk and Information Systems Control (CRISC) are preferred.
• Strong understanding of OT environments, including SCADA, PLCs, and industrial control systems.
• Familiarity with security tools and technologies used in OT environments.
• Excellent analytical and problem-solving skills.
• Strong communication and interpersonal skills, with the ability to work collaboratively in a team environment.
• Detail-oriented with a strong commitment to quality and compliance.
What working at EY offers
At EY, we’re dedicated to helping our clients, from start–ups to Fortune 500 companies — and the work we do with them is as varied as they are.
You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:
• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you
About EY
As a global leader in Assurance, Tax, Strategy & transactions and Consulting services, we’re using the finance products, expertise and systems we’ve developed to build a better working world. That starts with a culture that believes in giving you the training, opportunities and creative freedom to make things better. Whenever you join, however long you stay, the exceptional EY experience lasts a lifetime. And with a commitment to hiring and developing the most passionate people, we’ll make our ambition to be the best employer by 2020 a reality.
If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible.
Join us in building a better working world. Apply now
EY | Building a better working world
EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.
Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.
Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.