HelpAG is looking for an experienced Senior Security Engineer – OT responsible for providing technical support, administration, and maintenance for OT cybersecurity services in Operational Technology (OT) and OT-IT integration environments.
The role focuses on ensuring the availability, integrity, and secure operations of Industrial Automation & Control Systems (IACS), SCADA, DCS, and mission-critical OT systems by implementing and maintaining cybersecurity controls in compliance with OT Cybersecurity Policies, Standards, and Procedures.
Responsibilities
Provide support, administration, and maintenance of OT cybersecurity systems.
Maintain an inventory of OT cybersecurity assets and infrastructure.
Manage cybersecurity tools such as antivirus, application whitelisting, firewalls, IDS/IPS, data diodes, and secure file transfer solutions.
Administer user accounts, access controls, and network rights for OT cybersecurity systems.
Ensure adherence to OT cybersecurity KPIs, SLAs, and performance metrics.
Maintain security baselines for OT cybersecurity systems and assist OT custodians in applying them.
Perform patch management and vulnerability remediation for OT cybersecurity systems.
Conduct system health checks, configuration reviews, and performance testing.
Troubleshoot network connectivity and cybersecurity incidents in OT environments.
Maintain OT cybersecurity documentation including security baselines, standard operating procedures, and maintenance records.
Monitor IDS alerts, firewalls, network logs, and security events for anomaly detection and threat mitigation.
Respond to OT cybersecurity incidents and coordinate remediation actions with stakeholders.
Implement security measures to mitigate vulnerabilities, risks, and potential threats.
Work with OT custodians to collect cybersecurity monitoring data from OT systems and networks.
Monitor external cybersecurity sources (CERT advisories, security bulletins) to stay updated on ICS specific cyber threats.
Apply threat intelligence, IOCs, and detection signatures on OT cyber defense tools.
Support OT cybersecurity design and integration in new projects, ensuring compliance with IEC 62443 and policies.
Provide cybersecurity requirements for DGS, FEED, FDS, DDS, FAT, SAT, and SIT phases of OT projects.
Ensure that cybersecurity architecture, segmentation, and protection layers align with client’s security frameworks.
Lead the assessment, evaluation, and implementation of new OT security solutions.
Conduct technical reviews of OT cybersecurity specifications to ensure compatibility with existing infrastructure.
Support OT cybersecurity risk assessments, audits, and gap analysis.
Ensure compliance with IEC 62443, NIST, CIS CSC cybersecurity policies, and regulatory requirements.
Develop and update OT cybersecurity policies, standards, guidelines, and procedures.
Collaborate with HSE, Enterprise Risk, and other units to ensure cybersecurity integration into operational processes.
Provide mentorship and training to junior OT cybersecurity engineers.
Prepare and submit daily, weekly, and monthly reports on OT cybersecurity operations and incident handling.
Ensure documentation and compliance reporting for preventive maintenance activities in SAP and client’s service management systems.
Set annual objectives and track progress through monthly and quarterly reports.
Qualifications & Skills
5-7 years in IT Security, with a minimum 3 years in OT/ICS cybersecurity or equivalent experience in process automation systems with 3+ years in cybersecurity for OT.
Strong knowledge of SCADA/DCS (Honeywell preferred), industrial protocols, and cybersecurity.
Hands-on experience with OT security tools (firewalls, IDS/IPS, endpoint security, data diodes).
Understanding of industrial network topologies, redundancy protocols, and wireless technologies (FTE, ISA100, WirelessHART).
Knowledge of industrial communication protocols (OPC, Modbus, PROFINET, Vnet/IP, Ethernet/IP, DNP3, Fieldbus).
Experience in IEC 62443, CIS CSC, NIST SP 800-53 frameworks.
Ability to assess security controls and mitigate ICS cyber threats & attack scenarios.
OT/ICS network, servers, and virtualization security.
Configuring and maintaining firewalls (Cisco FTD/FMC), IDS/IPS, data diodes.
Managing Trellix ENS, Carbon Black App Control, Whitelisting tools.
Regular updates, patching, and monitoring of security systems.
Ability to detect, analyze, and mitigate OT cybersecurity threats.
Preferred Technology-Specific Expertise:
Cisco Security: Secure Firewall Threat Defense (FTD), Firewall Management Center (FMC).
Data Diodes: OWL Cyber Defense.
Endpoint Security: Trellix ENS, Carbon Black App Control, ePolicy Orchestrator.
Honeywell OT Systems: Honeywell DCS, ICS, and industrial network security.
Professional Certifications
GICSP (Global Industrial Cyber Security Professional).
ISA/IEC 62443 Cybersecurity Fundamentals Specialist.
CCNA Security / Cisco Certified Specialist – Cybersecurity Core.
CISSP, GCWN, GCIA, GDSA (Cybersecurity professional certifications).
ITIL/ITSM, CCNA R&S, Virtualization Computing & Storage.
OT Vendor Certifications (DCS, SCADA, PLC programming, Instrumentation security).
Benefits
Health insurance with one of the leading global providers for medical insurance.
Career progression and growth through challenging projects and work.
Employee engagement and wellness campaigns activities throughout the year.
Excellent learning and development opportunities.
Annual flights tickets to home country.
Inclusive and diverse working environment.
Flexible/Hybrid working environment.
Open door policy
About Us
Help AG is the cybersecurity arm of e& enterprise (formerly Etisalat Digital) and provides leading enterprise businesses and governments across the Middle East with strategic consultancy combined with tailored information security services and solutions that address their diverse requirements, enabling them to evolve securely with a competitive edge. Present in the Middle East since 2004, Help AG was strategically acquired by e& (formerly Etisalat Group) in Feb 2020, hence creating a cybersecurity and digital transformation powerhouse in the region. Help AG has firmly established itself as the region's trusted IT security advisor by remaining vendor dagnostic, trustworthy, independent, and cybersecurity focused. With best-of-breed technologies from industry-leading vendor partners, expertly qualified service delivery teams and a state-of-the-art consulting practice, Help AG delivers unmatched value to its customers by strengthening their cyber defenses and safeguarding their business