Operational Technology (OT) Security Consultant

• Develop security requirements, architecture, and design for complex OT systems.
• Develop cyber security assessment approaches.
• Specify and implement a robust security risk management process.
• Support accreditation activities with the client and regulating authorities.
• Conduct security reviews and audits.
• Support security operations, including protective monitoring, incident management, incident response, and incident recovery activities.
• Provide technical assistance to business development.
• Maintain familiarity with legislation and regulations of relevance.
• Build and maintain relationships with internal and external stakeholders.

• Certified Information Systems Security Professional (CISSP) or Certified Information Security Management (CISM). SANS Global Industrial Cyber Security Professional (GICSP) would be a plus.
• Must be able to travel as and when required.
• Cyber Security work experience with a significant focus on Operational Technology.
• Practical experience of IT and OT cyber security risk/threat assessment approaches.
• Understanding of design considerations with emphasis on operational safety and the availability/security of operating environments.
• Working knowledge and hands‑on experience in a variety of operating systems and OT environments.
• Experience in security engineering and associated solutions (Endpoint Protection, IDS/IPS, Firewalls, etc.) for IT and OT environments.
• Working knowledge of networking technologies including architectures, key components, and common IT/OT protocols.
• Certifications: Cybersecurity & Infrastructure Security Agency (CISA) Industrial Control Systems (ICS) Training, AttackIQ – MITRE ATT&CK, SANS GICSP, CISSP.
• Standards, frameworks, and regulatory experience: EU NIS Directive, ISA/IEC 62443 Series / ISO 27000 Series, MITRE ATT&CK, NIST Cyber Security Framework (CSF), NCSC CAF, Office for Nuclear Regulation (ONR) Security Assessment Principles, Technical Assessment Guides, and supplementary guidance.

Amentum offers a competitive package for UK employees, including free single medical cover and digital GP service, family‑friendly benefits such as enhanced parental leave pay, free membership of employee assistance and parental programmes, and reimbursement toward professional development and memberships. The company also supports volunteer time and matched funding through its Collectively program.

People are our greatest asset. The company places safety, integrity, inclusion, and diversity at the core of its values. It puts people at the heart of the business and fosters a culture of caring, supporting one another through positive mental health initiatives and a sense of belonging for all employees. Inclusion is embedded in every aspect of the organization, welcoming people regardless of age, disability, gender identity, gender expression, marital status, mental health, race, faith or belief, sexual orientation, socioeconomic background, or family circumstances.

We encourage proactive and collaborative Cyber Security Professionals to work within the Nuclear market, with opportunities across multiple sectors to support digital transformation in critical national infrastructure, national security, defence, and nuclear environments. Training, development, and career‑plan support are available and tailored to each project’s needs and individual aspirations.