Job Description

Overview

We are building a team of OT cybersecurity professionals to support the delivery of the OT-ACE (Automated Controls Environment) program for a leading multinational company. This is a hands-on, execution-focused role embedded within a cross-functional team of Product Owners, Deployment Coordinators, and central engineering teams.

The OT-ACE Delivery Engineer will be responsible for translating approved architectural patterns into deployable solutions, supporting day-to-day operational execution, and ensuring that OT environments meet the highest standards of safety, availability, and cybersecurity. Resources will work directly within OT/PCN production environments and are expected to contribute from day one.

Key Responsibilities

Solution Engineering

• Translate approved OT architectural patterns and standards into deployable, production-ready solutions.
• Support engineering design decisions while balancing OT safety, availability, and cybersecurity constraints.
• Collaborate with central engineering teams to ensure solutions align with enterprise OT security standards.

OT Admin Zone Architecture

• Implement and maintain OT Admin Zone (OTAZ) architectural patterns in production environments.
• Work with EAZ, DAZ, PAZ, DMZ, and PCN integrations across deployment scenarios.
• Ensure all implementations comply with enterprise OT segmentation and access control standards.

Operational Readiness & Documentation

• Author and maintain Standard Operating Procedures (SOPs), runbooks, and work instructions.
• Produce as-built documentation and supporting evidence required for audit and compliance purposes.
• Ensure documentation standards are met across all deployment phases.

Transition to Operations (TTO)

• Execute structured Transition to Operations activities following deployments.
• Lead or support knowledge transfer sessions to operations and sustainment teams.
• Provide stabilization support and hypercare coverage post-deployment.

Day-to-Day Delivery Execution

• Respond to and resolve support requests during deployment and hypercare phases.
• Work operational tickets within defined SLAs during hypercare windows.
• Contribute to backlog execution in coordination with product and operations teams.

Qualifications

Required

• 3+ years of hands-on experience in OT/ICS cybersecurity or OT network engineering in production environments.
• Practical experience working within PCN (Process Control Network) or equivalent industrial network environments.
• Demonstrated ability to write technical documentation: SOPs, runbooks, as-built records, and compliance evidence.
• Experience supporting or executing structured deployment and transition-to-operations processes.
• Advanced English proficiency (written and spoken) — the role requires daily interaction with international teams.

Technology Experience

Candidates must have hands-on experience with one or more of the following enterprise-approved technologies:

Preferred

• Prior experience deploying or operating OT cybersecurity tools in Oil & Gas, Energy, or other critical infrastructure environments.
• Working knowledge of OT Admin Zone (OTAZ) architecture patterns (EAZ, DAZ, PAZ, DMZ).
• Familiarity with OT/ICS security frameworks: IEC 62443, NIST SP 800-82, or NERC CIP.
• Experience with Purdue Model or equivalent OT network segmentation models.
• Relevant certifications: GICSP, ISA/IEC 62443, CISSP, or equivalent.