EY-Cyber Security-OT Cybersecurity-Manager

Location: Kochi Other locations: Anywhere in Country Salary: Competitive Date: May 30, 2026 **Job description** ------------------- Requisition ID: 1713280 At EY, we’re all in to shape your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. **EY \- Manager – Cyber Security – OT Cybersecurity** **Business Area: Technology Consulting – Cyber Security** **Core Skills: OT Security, ICS/SCADA, Dragos, Nozomi, OT Risk Assessment, Industrial Cyber Resilience** **Job Listing Detail** At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. We’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. **The Opportunity** As part of our Cyber Technology Consulting practice, you will lead and deliver Operational Technology (OT) cybersecurity engagements across clients in the MENA region, particularly within Energy, Oil \& Gas, Utilities, and Smart City ecosystems. You will work with some of the region’s most critical infrastructure operators to assess, design, and enhance their OT security posture, ensuring resilience against evolving cyber threats targeting industrial environments. The role provides the opportunity to operate at the intersection of industrial operations, cybersecurity, and digital transformation, while contributing to the growth of our OT Security competency **Your Key Responsibilities** **Client Delivery And Engagement Management** * Lead and deliver **OT cybersecurity engagements**, including: * + OT risk assessments and maturity assessments + Architecture and network segmentation reviews + Security posture evaluations across **SCADA, DCS, PLC, HMI, and ICS environments** * Perform **OT\-focused vulnerability assessments** and exposure analysis in coordination with engineering and operations teams. * Implement and operationalize OT monitoring solutions including: * + **Dragos Platform** + **Nozomi Networks Guardian / Vantage** * Design and validate **OT detection and response capabilities**, leveraging network traffic analysis, anomaly detection, and threat intelligence. * Conduct **industrial threat modeling and risk quantification** aligned to operational impact, safety, and business continuity considerations. * Develop **OT cybersecurity roadmaps and transformation programs**, aligned with frameworks such as: * + **IEC 62443** + **NIST SP 800\-82** + **NCA (KSA) / regional regulatory frameworks** * Support implementation of: * + **OT network segmentation (zones \& conduits)** + Secure remote access for vendors and operators + OT\-specific incident response and crisis management playbooks **Sector\-Specific Advisory** * Apply deep understanding of **industrial processes and control systems** across: * + **Energy and Power Generation** + **Oil \& Gas (Upstream, Midstream, Downstream)** + **Utilities (Water, Electricity Distribution, Smart Grids)** + **Smart Cities and Critical Infrastructure ecosystems** * Align OT security recommendations with **operational priorities such as safety, availability, reliability, and regulatory compliance**. * Bridge the gap between **engineering, operations, and IT/security teams**, ensuring practical and implementable solutions. **Stakeholder Engagement And Advisory** * Act as a trusted advisor to **CISOs, Plant Managers, OT Engineers, and Executive Leadership**. * Translate complex technical issues into **business, safety, and operational risk impacts**. * Deliver **executive\-level briefings and technical deep\-dives**, tailored to diverse stakeholder groups. * Facilitate workshops, tabletop exercises, and scenario\-based discussions for **OT cyber resilience**. **Practice And Capability Development** * Contribute to the growth of the **OT Cybersecurity practice**, including: * + Development of **methodologies, playbooks, and accelerators** + Standardization of OT assessment frameworks and delivery artifacts * Support **business development activities**, including: * + RFP/RFI responses + Client presentations and solution articulation + Thought leadership in OT cybersecurity and industrial resilience * Stay current with: * + Emerging **OT threats and attack campaigns** + ICS vulnerabilities and adversary tactics + Evolving regulatory requirements across the MENA region **People Leadership And Team Development** * Lead, mentor, and develop a team of **OT security consultants and specialists**. * Build **cross\-functional capability** across OT, IT, and cyber domains. * Drive a culture of **technical excellence, safety awareness, and delivery quality**. * Provide structured feedback, coaching, and career development aligned to firm objectives. **Skills and Attributes for Success** * Strong understanding of **OT/ICS cybersecurity principles**, including security challenges unique to industrial environments. * Hands\-on experience with **OT security platforms**, especially: * + **Dragos** + **Nozomi Networks** * Deep knowledge of: * + Industrial communication protocols (**Modbus, DNP3, OPC\-UA, PROFINET, IEC 61850**) + OT asset visibility, anomaly detection, and network monitoring + Experience in installation, commissioning, FAT, and SAT of ICS systems like DCS, PLC, SCADA, and Network Devices in ICS Security related Projects. * Proven capability in conducting **OT risk assessments**, including: * + Threat modeling + Risk quantification + Control gap analysis * Strong understanding of **industrial processes and operational workflows** across Energy, Oil \& Gas, Utilities, or Smart City environments. * Familiarity with **IT/OT convergence risks**, segmentation strategies, and secure architecture design. * Ability to communicate complex technical findings in a **clear, business\-impact context**. * Strong analytical, problem\-solving, and stakeholder management skills. * Experience in managing **large, multi\-stream client engagements**. **To Qualify for the Role, You Must Have:** * Bachelor’s or Master’s degree in **Cyber Security, Engineering (Electrical/Instrumentation/Industrial), Information Technology**, or related discipline. * **10–15 years of experience**, with at least **5–7 years in OT/ICS cybersecurity**. * Proven hands\-on experience with: + OT security assessments and architecture reviews + Deployment or use of **Dragos and/or Nozomi** platforms + OT risk and maturity assessments * Experience working with clients in **Energy, Oil \& Gas, Utilities, or Smart Infrastructure sectors**. * Strong consulting, stakeholder management, and communication skills. * Ability to manage multiple engagements and deliver high\-quality outcomes. * Willingness to travel across the **MENA region**, as required. **Ideally, You’ll Also Have** * Certifications such as: * + **GICSP (Global Industrial Cyber Security Professional)** + **ISA/IEC 62443 certifications** + **SANS ICS (GRID, ICS410, ICS515\)** + **CISSP / CISM (added advantage)** * Experience in: * + OT incident response and forensic investigations + Industrial SOC / OT SOC design and implementation + Smart City cybersecurity architecture +…