Job Summary
You’ll support and drive OT/IoT security initiatives across the APAC region, focusing on vulnerability remediation, policy enforcement, and secure infrastructure implementation. Key to this role is coordinating site-level security gap closure, stakeholder alignment, and aligning with international standards like NIST 800-82 and ISO27002.
Duties & Responsibilities
Core Responsibilities
- Define security methodology and conduct OT/IoT assessments across segmented infrastructure
- Coordinate vulnerability scanning, analyze results, and drive remediation with site owners
- Track and monitor remediation gaps, SLA timelines, and closure with reporting dashboards
- Identify and mitigate legacy security issues in OT environments
- Support penetration testing efforts and coordinate follow-up action plans
- Champion security policies across OT/IoT teams; educate and influence secure practices
- Provide incident response support and post-incident mitigation planning
- Support deployment of Group-wide OT security programs within APAC
Required
- Solid knowledge of IoT/OT environments, industrial control systems, and segmented infra
- Familiarity with NIST 800-82, ISO/IEC 27002, or similar frameworks
- Strong understanding of vulnerability management tools (Qualys, Tenable, Defender)
- Hands-on experience coordinating remediation, working with infra/OT teams
- Good analytical skills to translate findings into actionable risk mitigation
- Experience with penetration testing coordination and tracking closure
- Strong communication skills; able to engage plant owners, vendors, and regional stakeholders
📌 Nice to Have:
- Certifications like GICSP, GRID, GCIP, or equivalent
- Experience in cloud OT environments (Azure, AWS, Kubernetes, containers)
- Familiarity with ITIL processes and security operations (COBIT a bonus)
