Security Consultant (Operational Technology (OT))

Location(s): UK, Europe & Africa: UK: London

BAE Systems Digital Intelligence is home to 4,500 digital, cyber, and intelligence experts. We work across 10 countries to collect, connect, and understand complex data, enabling governments, armed forces, and commercial businesses to unlock digital advantages in demanding environments.

Security Consultant – Operational Technology (OT)

Location: London

We offer hybrid and flexible working arrangements. Please discuss options with your recruiter.

Grade: GG11-GG12

Referral Bonus: £5000

Working on client sites, including critical infrastructure providers, you will support and lead engagements that deliver cyber risk assessments, improve security control maturity, define secure solutions, and ensure compliance.

1. Deliver small to medium cybersecurity workstreams or engagements.
2. Understand the business and information risk context of OT customers and assess risks at technical and business process levels.
3. Review the effectiveness of security controls and propose appropriate security improvements and mitigations for OT systems.
4. Research and analyze security technologies to develop innovative solutions.
5. Collaborate with account teams to identify new opportunities and support proposal development.

• Passion for and understanding of cybersecurity trends and threats.
• Experience in a consulting environment.
• Experience in defining and delivering security transformation programs, from business cases to technical implementation, including security operations capabilities and processes.
• Ability to prioritize, work under pressure, and manage customer and organizational expectations.
• Experience working with cross-functional teams such as IT, engineering, maintenance, and suppliers.
• Knowledge of implementing tools and technologies in OT environments, including firewalls, IDS, vulnerability management, and asset discovery.
• Excellent communication and interpersonal skills.
• Analytical skills with attention to detail; typically 5–15 years in IT/OT cybersecurity.
• Certifications such as GICSP or 62443.

• Basic understanding of OT control frameworks.
• Experience applying control frameworks in OT, such as NIST SP 800-53/82, ISO/IEC 62443, CAF, ISO/IEC 27001, NIST Cybersecurity Framework.
• Understanding of differences between IT and OT environments.
• Experience identifying security risks.
• Knowledge of cybersecurity challenges faced by OT organizations like critical infrastructure operators.
• Ability to communicate security advice effectively to technical and non-technical stakeholders.

We work hard but value work-life balance. We encourage speaking up if you wish to rotate to new projects.

Competitive pension, employee share plan, flexible health and lifestyle benefits, private health plans, discounts, and potential annual incentives.

Make a difference in an inclusive culture that values diversity, integrity, and merit. We welcome candidates from all backgrounds, including underrepresented groups.

If you have a disability or health condition affecting your performance, discuss reasonable adjustments with your recruiter.

Many roles require security and export control clearances, including Baseline Personnel Security Standard and possibly higher vetting levels.

We embrace hybrid working, combining remote and onsite work to promote flexibility and well-being.

Diversity and inclusion are core to our success, fostering a culture of varied perspectives and skills.

We have decades of experience in cyber defense, especially for government and critical infrastructure networks, defending against devastating breaches.

As part of the Government business unit, you will help protect nations and ensure the security of connected systems.