Cyber Security Engineer

The OT Cyber Security Engineer will contribute to the delivery of high‑quality technical consultancy services within high‑hazard industries, including oil and gas, power, water, chemical, and pharmaceutical sectors. Reporting to the OT Cyber Security Team Lead, this role focuses on supporting risk assessments, asset inventories, physical and standards‑based site audits, and the creation or review of network diagrams under the guidance of senior team members. The Engineer will also assist in developing and reviewing OT Cyber Security Management Systems (CSMS) and producing accurate, professional technical reports. This position provides an excellent opportunity to build foundational knowledge and technical capabilities in OT cybersecurity, including frameworks such as IEC 62443, CAF, OG86, and NIS. The position is hybrid, with a preference for candidates located in the North East or North West of England. Occasional travel within the UK, and potentially internationally, may be required but is not a regular feature of the role.

• Support risk assessments and create asset inventories for OT systems across client sites under supervision.
• Perform physical and standards-compliant site audits as directed by senior consultants or team leads.
• Assist in the creation, documentation, review, and validation of network diagrams and OT systems architecture.
• Support the review, development, and implementation of OT Cyber Security Management Systems (CSMS) in alignment with established frameworks and international standards.
• Collaborate with the OT Cyber Security team and other departments to deliver projects successfully, ensuring high-quality outputs.
• Prepare and deliver accurate and professional technical reports and documentation that meet client expectations and regulatory compliance.
• Stay informed of industry trends and emerging OT cybersecurity challenges, applying foundational knowledge to support team-directed initiatives.
• Interaction with customers to ensure TUV deliver a solution on time and to high quality.

• A relevant technical degree or equivalent industry experience in OT cybersecurity is desirable.
• Good working understanding of industrial control systems (DCS, SCADA, PLCs, etc.).
• Prior experience in technical delivery roles, including hands‑on involvement in a project delivery or client‑facing setting, is desirable but not essential.
• Evidence of delivering high‑quality technical work under supervision.

• Foundational knowledge of OT cybersecurity practices, frameworks, and regulations, such as IEC 62443, CAF, OG86, and NIS.
• Awareness of OT cybersecurity techniques and tools for compliance with national/international standards, contributing to effective technical solutions.
• Developing competency in performing assignments in areas such as:
  • Supporting risk assessments and vulnerability analysis of OT environments.
  • Assisting in asset inventory preparation and management for industrial control systems (ICS).
  • Conducting physical and standards-based site audits, aligned with international standards.
  • Contributing to network diagram creation to improve system visibility and security.
  • Supporting the development and implementation of OT Cyber Security Management Systems (CSMS).
  • Understanding incident response plans and frameworks for OT cybersecurity.
• Proficiency in Microsoft Office Suite and other relevant software tools for technical documentation, reporting.

• Bachelor's or Master's degree a relevant technical subject.
• OT cyber security certifications (e.g. IEC 62443 Fundamentals, TUV 263).