Senior OT Cyber Security Consultant

We are now looking for you who would like to help us build a safer digital society, together in our team of experts within OT Security. We drive the development of security forward and continuously working innovative to be better at what we do - would you like to join us?

What you’ll do:

In this role, you will work as a consultant within OT security at various customer industries. Therefore, we are looking for people that have curiosity and a security mindset, as well as understand how systems work. You will be involved in several customer projects and have a lot of opportunities to study.

- We work in teams with a diverse skillset to solve problems and figure out new solutions together.
- We question old security strategies to build practical and better ways of securing OT/ICS/SCADA environments.
- We value time for development and information sharing within the group to better evolve our skills.
- We do not only see the IT or the Industrial/Infrastructure part but also look at securing the whole of the environment and everything that could affect production, a delivery of the service or a function.




Who are you?

We are looking for you who have a genuine interest within OT and cybersecurity and wants to learn even more. You love finding solutions and are not afraid to ask when there is something you don’t understand. In situations you do understand you are eager to take initiative and you have a proactive mindset in what you do.

We believe you know the industrial cybersecurity well and can make other people understand the importance of working in a secure way. Most importantly, we think you have an interest of sharing knowledge with your team and believe it is more fun working together!

Required knowledge and skills:

- Knowledge of how to do OT and ICS systems function.
- Knowledge in OT/ICS security
- Knowledge of NIST for ICS (e.g. 800-82), IEC62443, or NERC CIP.
- Knowledge in network communications and network security.
- Knowledge of risk management.
- Verbal and written communication skills. Ability to translate complex low-level concepts to easily communicate with stakeholders from different fields.


Good to have (any):

- Experience in OT and ICS systems: Operation systems, network architecture, controller hardware, SCADA systems, knowledge of PLC programming types (not necessarily the skills in PLC programming).
- Knowledge in physical security.
- Knowledge in IIoT and relevant communication protocols (e.g., private 5G, Wi-Fi, ZigBee, BLE).
- Certification in IEC62443, GICSP, or alternative.
- Deep knowledge and extensive experience in cybersecurity. Understanding of the threats, vulnerabilities, and exploits in ICS environment and appropriate mitigation techniques.


- Optionally, certifications or a degree in cybersecurity.
- Optionally, experience in ethical hacking.




- Experience with red/blue/purple team exercises or alternative.
- Deep knowledge in IT architecture & Purdue Model, network communication, network security.
- Experience with organizational management, both around IT and production environments. Has knowledge of best practices on how to organize processes, distribute responsibilities.


Who you are:

- Proactive in reaching people from all over the organization to act. Have an ability to make things happen in a very slow environment if needed. Flexibility and great interpersonal skills.
- Evangelizing industrial cybersecurity across the organization. Lead and motivate people.
- You should know industrial cybersecurity very well and believes in its importance that much that he/she is able to make other people act and do change. Being able to articulate security concepts to OT, IT and management people. Lead by example and lead by inspiration.




Why us?

- You will together with the team drive the development of security forward - we have got a passion in what we do and together we share knowledge with each other to be innovative in what we do
- Here you got the opportunity to work preventive and strategic, and not only when the incidents occur
- Opportunity to work with market leading technology in combination with some of the industry’s most talented experts
- Flexible work environment
- We will provide you with opportunities of development, both within your professional role but also the opportunity to develop within the organization where only your ambitions set the limit!
- A challenger culture that encourages you to be self-driven and curious


The story of Orange Cyberdefense

Orange Cyberdefense is Sweden’s leading company in cyber security. Our vision is to contribute to a safer digital society by fighting different kind of cybercrime. We have about 2500 employees worldwide and 350 in Sweden. We offer our customers services within Anticipate, Identity, Protect, Detect and Respond.

At Orange Cyberdefense, we are all different but with the same passion- and that is our greatest strength. We are proud of our individual differences, experiences and histories and are convinced that we must include everyone to offer solutions that protect everyone. That is why we always make sure to treat all applications equally.



How to join us?

Join us by sending your application through our application form. The selection is on going and the position can be filled before the last application date. If you have any questions, please contact responsible recruiter Fanny Westergren (fanny.westergren@orangecyberdefense)