Posted On Nov 14

Senior Consultant - Operational Technology, Cyber Security


Location : London SE1

Headquarters : London

Hiring Mode : Full Time

Hiring Role : Consultant

Experience : Senior Level

  • Cybersecurity and its related challenges are a rapidly growing field. As such, the opportunities for careers in cybersecurity are also growing. Physically and electronically securing an organisation infrastructure is one of the steps to creating a secure environment. EY is rapidly growing and investing its Cybersecurity consulting practice
  • At EY, you’ll have the chance to build a meaningful and fulfilling career, with global scale, support, inclusive culture and technology, to become the best version of you.
  • The team you join - EY’s UK & Ireland Cyber Practice is part of a global cyber team of over 5,000 professionals focused on developing and delivering cutting edge security transformation programmes, cyber threat management, identity and access management, security architecture, data protection and privacy, and resilience services. We are part of a wider advisory organisation that collectively comprises a $4B, and growing, global consulting practice with 18,000 professionals. At EY, we have large scale plans to expand our already market leading Cyber Security practice and anticipate continued growth throughout the next five years. We need excellent people to join us and be part of our exciting growth strategy.
  • Join us and build an exceptional experience for yourself, and a better working world for all.
The opportunity
EY is looking for team members who can create, assess, advise and implement security associated with Operational Technology (OT) / Industrial Control Systems (ICS) environments. This role will see you take a key position in developing EY’s OT/ICS security capabilities. You will also be expected to take a supporting role enhancing EYs OT/ICS security practice, working with alliance partners and advise clients on the current market trends.
The role will see you providing specialist advice as part of large multi-discipline EY engagement teams working on the likes of OT/ICS security specific - risk assessments, transformation projects and programmes, leading security advisory engagements on the adoption of secure architecture, secure engineering practices, and/or optimising security defence operations.
You will work with colleagues in the UK and globally to develop new and innovative OT/ICS security solutions and specific industry propositions that solve client problems/issues and integrates with their overall IT/OT/ICS delivery and support strategy.
In addition to the above, you will have an opportunity work across all aspects of Cyber, Technology and business solutions.
Your key responsibilities
Your responsibilities will include but are not limited to:
  • Actively participate in the engagements, conducting, participating and leading meetings with clients in the capacity of a cybersecurity subject matter resource, develop concepts, solutions, methods required to fulfil projects objectives
  • Lead consultants and security analysts appropriately in projects
  • Support for business development activities OT/ICS security engagements, including creating approaches and methodology, proposal writing, and direct support in presenting to potential clients
  • Support with delivery of OT/ICS security engagements, with taking on responsibility for day to day running of the engagement deliverables including meeting quality and time targets
Skills and attributes for success
  • Be professional, quickly establish personal credibility and demonstrate expertise in OT/ICS security topics
  • Be a good communicator with the ability to contribute assuredly to technical security discussions with peers and management
  • Be a team player who is not only looking to enhance their own career but recognises the value of teamwork, facilitating and encouraging collaboration amongst team members, and is capable of motivating teams to maximise performance
  • Take a practical approach to solving issues and gaining client agreement
  • Be able to analyse complex problems and to deliver insightful, practical and sustainable solutions.
  • Be confident and effective in recognising and managing potential issues during client engagements
  • Support with structuring and managing projects to meet client expectations and help mitigate any risks or issues
  • Bring in previous experience and lessons learned from OT security projects, innovative problem-solving methods.
To qualify for the role you must have
  • Experience in gathering requirements from customers
  • Professional experience of about 4+ years operating as a skilled resource in a technical capacity in the design, implementation, maintenance, or support of security solutions within OT/ICS environments
  • A detailed understanding of one or more OT/ICS Security standards and frameworks such as: ISA/IEC 62443, NIST 800-82, og-086.
  • Produced well documented deliverables in the form risk assessments, reports, analysis, SOPs, etc.
  • Good understanding of networking and firewalls
  • Knowledge or experience with at least 1 or more of OT security vendor tool capabilities such as CyberX, Nozomi, Nessus OT, Claroty, etc.
Ideally, you’ll also have
  • Experience with supporting and drafting security architectures for OT/ICS environment
  • Understanding of technologies (assets, communication protocols, technical architectures, segmentation requirements) utilised by OT/ICS systems (SCADA/DCS/PLC/RTU) and networks
  • Knowledge of the security concepts typical to the OT/ICS environments especially in two or more areas such as vulnerability management, security operations access management, network architecture & segmentation, asset management, defense in depth, etc.
  • Knowledge of the technical security concepts/solutions utilised within IOT/ICS systems and networks
  • Automation/scripting experience with PowerShell, Python, bash, etc. (would be a plus)
What we look for
  • Core consulting skills- Advanced data and evidence management, client management on remediation programmes, driving innovation and continuous improvement
  • Technical skills- Strong technical insight, practical knowledge and specialist capability
  • Market/Sector knowledge- Demonstrable market/sector expertise in your field
  • Versatility- Proven ability to adapt and learn in an innovative environment
What working at EY offers
  • We offer a competitive remuneration package. Our comprehensive Total Rewards package includes support for flexible working and career development, and with FlexEY you can select benefits that suit your needs, covering holidays, health and well-being, insurance, savings and a wide range of discounts, offers and promotions. Plus, we offer:
  • Support, coaching and feedback from some of the most engaging colleagues around
  • Opportunities to develop new skills and progress your career
  • The freedom and flexibility to handle your role in a way that’s right for you
  • EY is committed to be an inclusive employer and we are happy to consider flexible working arrangements. We strive to achieve the right balance for our people, enabling us to deliver excellent client service whilst allowing you to build your career without sacrificing your personal priorities. While our client-facing professionals can be required to travel regularly, and at times be based at client sites, our flexible working arrangements can help you to achieve a lifestyle balance.
About EY
  • As a global leader in assurance, consulting, tax, and strategy and transaction services, we’re using the finance products, expertise and systems we’ve developed to build a better working world. That starts with a culture that believes in giving you the training, opportunities and creative freedom to make things better. Whenever you join, however long you stay, the exceptional EY experience lasts a lifetime.
  • If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible.
Build your legacy with us.
Apply now.
Please note: Prior to finalising your application, you will be asked to provide personal information across several dimensions of diversity and inclusiveness. The information you provide is kept entirely confidential and will not be used to evaluate your candidacy. We collect this data to help us analyse our recruitment process holistically and implement actions that promote diversity and inclusiveness. While optional, we encourage you to provide this information to hold us accountable towards our goal of building a better working world. We ask because it matters!