Operational Technology Risk Consultant in London

Role Purpose

To identify, quantify, and translate Operational Technology (OT) cyber risk into operational, financial, and insurability outcomes across industrial, manufacturing, energy, infrastructure, and other OT-dependent sectors. This role sits at the intersection of plant operations, executive risk governance, and insurance placement, enabling clients to understand "Operational Disruption × Financial Impact × Policy Response". The consultant applies pattern-based OT governance and architecture assessment (CORA-OT), improved BI severity modelling, and underwriting-aligned analysis to support improved placement outcomes and targeted resilience improvements.

Core Responsibilities

• Lead and deliver OT governance and architecture baseline assessments
• OT accountability models
• Segmentation & connectivity patterns
• Vendor and remote access pathways
• Multi-site aggregation and dependency exposures
• Identify "insurance-sensitive" control gaps that materially influence: downtime severity, loss aggregation, underwriting defensibility
• Produce standardised OT diagnostic outputs that can be embedded into client placement, risk engineering reviews, and BI modelling.

Exposure Quantification & Severity Modelling

• Work closely with financial modelling teams to integrate OT-specific: business interruption (BI) pathways, contingency dependencies, multi-site escalation patterns, cyber-triggered property damage / PD-BI interactions.
• Support improved CIA-based modelling of OT-driven operational loss, enabling clearer limit adequacy discussions.

Client Advisory & Resilience Development

• Support clients in integrating OT into: incident response, crisis governance, business continuity plans.
• Run OT-specific disruption tabletop exercises (aligned to CRR-OT).
• Provide practical, operations-sensitive recommendations that strengthen clients' defensibility without over-engineering.

Integration With Broking, Property, and Risk Engineering

• Partner with property risk engineers to: reflect cyber-physical pathways in risk engineering outputs, incorporate OT failure modes into resilience roadmaps, reinforce the distinction between cyber and physical damage mechanisms.
• Support pre-placement, renewal, and strategic client conversations with clear OT-risk framing.

Thought Leadership & Practice Development

• Contribute to the refinement of CORA-OT and CRR-OT methodologies.
• Develop internal "OT Red Flag" materials for brokers and account teams.
• Participate in sector-specific campaigns (e.g., supervised manufacturing, F&B, pharma).
• Produce market insights, white papers, and insurer-facing perspectives on OT risk trends.

Required Skills & Experience

• Practical OT / IC understanding, including: SCADA, PLC, DCS, BMS, historian systems, plant-floor segmentation patterns, safety vs. security architectural trade-offs.
• Familiarity with: IEC 62443 principles (governance & architecture focus), NIST 800-82, industrial vendor ecosystems and support models.
• Experience evaluating architecture patterns—not deep configuration testing.

• Ideally we are looking for familiarity with: data-center build principles, redundancy models (N+1, 2N, etc.), uptime tiering concepts.
• Ability to converse credibly with: engineers, facilities teams, operations leaders.

• Ability to translate OT technical patterns into: downtime duration, BI exposure aggregation, risk underwriting impact.
• Strong client communication and storytelling: concise, board-ready articulation of OT exposure, clear linkage to financial outcomes.
• Comfortable working across engineering, operations, cyber, and risk domains.

• OT cyber consultant within industrial/ICS sectors.
• Cyber or operations engineer within manufacturing, energy, utilities, or sophisticated infrastructure.
• Risk consultant with exposure to OT-dependent operational environments.
• Prior experience working alongside non-IT engineers or plant operations teams.

• CISSP, CISM, CRISC
• IEC 62443 foundation-level training
• ISO 27001 or NIST experience in operational contexts
• Safety or reliability engineering exposure (effective)

Measures of Success

• CORA-OT diagnostic adopted systematically across client engagements.
• Stronger insurer confidence in client OT control maturity and segmentation.
• Clearer exposure articulation leading to improved placement outcomes.
• OT risk narratives embedded in BI limit adequacy and PD/BI discussions.
• Increased pull-through of resilience, modelling, and advisory work.
• Strong cross-team collaboration with broking, risk engineering, and modelling.

Commercial Value of the Role

This role directly advances the "Find, Flatten, Finance Operational Technology Cyber Risk" strategy by:

• Finding: identifying the governance and architecture patterns driving severity.
• Flattening: clarifying and reducing operational and financial exposure.
• Financing: enabling better placement outcomes and more defensible underwriting narratives.

It uniquely differentiates the firm from:

• engineering-led OT security firms (too technical)
• cyber-only consultancies (too abstract)

The result: a scalable, pattern-based OT advisory capability that elevates placement, improves client decisions, and embeds OT into enterprise risk governance.