Cyber and Digital Security Expert - OT and IoT

Cyber and Digital Security Expert - OT and IoT

We are seeking a Cyber and Digital Security Expert - OT and IoT to join our IT Security and Compliance team.

Position Snapshot

• Location: Barcelona
• Type of Contract: Permanent
• Stream: IT Security & Compliance
• Type of work: Hybrid
• Work Language: Fluent Business English

The role

As a Cyber and Digital Security Expert, you will establish and maintain security products, platforms, and solutions to mitigate IS/IT risks across the Nestlé Group, ensuring the protection of information assets. You will identify, evaluate, and report on information security risks, aligning with compliance and regulatory requirements, and supporting the enterprise's risk posture. You should be a visionary leader with strong business management skills and knowledge of information security technologies. Your proactive collaboration with IS/IT and business units will ensure practices meet policies and standards. You will represent Security in core team meetings and stay updated on emerging threats, technologies, and trends.

What you’ll do

• Ensure new products, platforms, and solutions are implemented 'Secure & Compliant by Design' for ICS or Enterprise IoT solutions.
• Contribute to securing manufacturing and building facilities' IoT & OT solutions.
• Provide strategic risk guidance for IT projects and product management, including evaluation of technical controls for IoT or IIoT solutions.
• Ensure Consumer IoT solutions comply with relevant laws, regulations, and policies to minimize risk and audit findings.
• Coordinate with information security, compliance, audit, legal, and HR teams as needed.
• Ensure consistent application of policies and standards across all product groups and systems, including privacy, risk management, compliance, and business continuity.
• Collaborate with Enterprise Architects and Security Specialists to implement adequate security solutions across IT products, mitigating risks and meeting regulatory requirements.
• Develop enterprise information security architecture and solutions.

We offer you

We prioritize people and your growth, offering:

• Competitive salary, comprehensive social benefits, including a top-tier pension plan, health insurance, restaurant card, mobility plan, etc.
• Ongoing training and career development opportunities.
• Hybrid work environment with flexible schemes. Our campus is dog-friendly and equipped with amenities like a medical center, canteen, and co-creation spaces.
• Recreation activities such as yoga, Zumba, and volunteer programs.

Minimum Qualifications

• Bachelor's Degree in Computer Science, System Analysis, or related field, or equivalent experience.
• 7+ years in risk management, information security, or related IS/IT roles.
• Progressively responsible employment history.
• Experience implementing Cyber Security products in manufacturing environments.
• Experience deploying Industry 4.0 solutions securely end-to-end.
• Proven ability to develop security policies and execute programs effectively.
• Experience creating ICS security monitoring and remediation policies using standards like the Purdue model.
• Knowledge of security frameworks such as IEC 62443-2, ISO 27001, IS/ITIL, COBIT, NIST-80.

Bonus Points if you:

• Hold professional security certifications like GICSP, CISSP, CCSP, or similar.

We support your growth with tailored development solutions.

Application process:

1. Apply via our portal.
2. Submit your CV.
3. We contact suitable candidates.
4. Interviews with HR, hiring team, and stakeholders.
5. Receive feedback.
6. Receive an offer.
7. Complete location checks and pre-onboarding.

Nestlé, the world's largest food and beverage company, with brands like KitKat, Nescafé, Maggi, and Purina, employs approximately 275,000 people worldwide. Our mission is to enhance quality of life and promote a healthier future. We value respect for ourselves, others, diversity, and our future. In 2022, we achieved CHF 94.4 billion in sales, with operations in 77 countries across 344 factories.

Visit us at

We embrace diversity across gender, age, ethnicity, nationality, sexual orientation, social background, religion, and disability.

J-18808-Ljbffr