Job Title : Logistics Specialist

Detail :

• Manage the lifecycle of OT field devices (e.g. HVAC, power meters, fire detection, telemetry equipment), planning for and managing of end-of-life replacement projects.
• Manage the security of OT field devices (e.g. HVAC, power meters, fire detection, telemetry equipment), ensuring devices are hardened and securely configured.
• Monitor and action alerts from OT cybersecurity platforms and maintain integrations with external threat feeds including CISA vulnerability and advisory notifications :
• Subscribe to and track CISA ICS Advisories, Known Exploited Vulnerabilities (KEV) Catalog, and Alerts (AA).
• Translate relevant CISA guidance into action plans for patching, network segmentation, or threat mitigation.
• Collaborate with security teams to assess organizational exposure to newly published threats.
• Maintain an accurate, regularly updated OT asset database with vulnerability metadata and firmware status mapped to threat advisories.
• Ensure secure communication protocols (BACnet / IP Secure, Modbus / TCP with authentication, MQTT with TLS, secure NTP) are correctly implemented and monitored.
• Validate firmware updates and patches against current CISA and OEM advisories before deployment; develop rollback plans as needed.
• Align OT operations with global cybersecurity standards (IEC 62443, ISO27001, NIST CSF) and maintain robust change control and documentation.
• Create, maintain, and share incident response documentation for OT-specific vulnerabilities, referencing external advisories like CISA's.

• At least 3 years of experience in OT device management, including managing firmware updates, patching vulnerabilities, and managing communication protocols such as BACnet, Modbus, MQTT, and NTP.
• Strong understanding of security best practices for OT devices, including ISO27001.
• Experience with threat detection and management tools such as "Microsoft Defender for IoT", "Claroty", and "Dragos".
• Knowledge of industry-recognized training in OT device management.
• Ability to work collaboratively with cross-functional teams, including BMS engineers, IT security teams, and vendors.
• Excellent communication and problem-solving skills.
• Strong project management skills and the ability to manage multiple projects simultaneously.
• Experience in configuring devices on industry-recognized software such as Schneider EBO and PME, as well as on internally developed software and web applications.
• Knowledge of encryption standards such as TLS / SSL.
• Implement corrective actions promptly to mitigate the negative effects of system changes.
• Packet inspection, CVE analysis, asset management
• Understanding of CISA alert classifications, vulnerability severity scoring (e.g., CVSS), and mitigation practices.
• Ability to coordinate with internal cybersecurity teams and external vendors to assess and implement technical controls.

• Matric / Grade 12 (essential)
• 3-year IT-related degree (preferred)
• Cybersecurity / Networking certification(s) preferred :
• CompTIA Security+, GICSP, CCNA / CCNP Security
• Certified OT Security Practitioner (ISA / IEC 62443)
• Threat intelligence or ICS-CERT awareness training
• Familiarity with CISA’s cybersecurity advisories, threat bulletins, and mitigation techniques.
• Strong understanding of secure networking principles and OT network zoning.

• Employees to demonstrate commitment to the requirements of the Integrated Management System by :
• Taking reasonable care for the health and safety of himself / herself, others and the workplace.
• Obeying all stipulated company rules, policies and procedures in compliance to the Occupational Health and Safety Act 85 of 1993, the Health & Safety Management Program, ISO 27001, ISO 9001, ISO 14001, ISO 50001 and ISO 45001 Standards.
• Report all unsafe or unhealthy conditions and threats that come to his / her attention that may affect persons or the business.
• Ensuring the preservation of confidentiality, integrity and accessibility of information for the company and our respective clients.
• Committing to the implementation and maintenance of our Quality Management System.
• All company employees are responsible for the quality of their work and the protection of company and client information.
• Committing to the implementation and maintenance of our Health, Safety and Environmental statutory and regulatory compliance and performance.
• Committing to the implementation and maintenance of our Energy Management System, energy related statutory and regulatory compliance and performance.
• Committed to the protection of personal information and POPIA or other relevant statutory and regulatory compliance and performance.

PLEASE NOTE THAT ONLY SHORTLISTED CANDIDATES WILL BE CONTACTED.