Cyber Security Specialist – IT & OT

We are seeking an experienced Cyber Security Specialist – IT & OT to lead and manage cybersecurity across both Information Technology (IT) and Operational Technology (OT) environments. This role is critical in ensuring the security, resilience, and compliance of systems supporting manufacturing and industrial operations, while aligning local activities with global cybersecurity strategy. You will act as the primary local cybersecurity authority, working closely with Global Security Operations, Infrastructure teams, and local Engineering and Maintenance teams to protect critical assets while maintaining operational safety and uptime.

Key Responsibilities

• Plan, implement, manage, monitor, and continuously improve security measures protecting the organisation’s data, systems, and networks.
• Implement and manage security controls across local IT infrastructure, including firewalls, XDR, drive encryption, DLP, web proxy, CASB, and endpoint security tools across multiple operating systems.
• Design, implement, and maintain secure IT/OT network architectures, including Industrial DMZs (IDMZ) and robust network segmentation aligned to the Purdue Model.
• Administer and maintain OT‑specific security solutions such as asset inventory, network monitoring, and anomaly detection tools (e.g., Claroty).
• Work directly with Engineering and Maintenance teams to ensure OT systems (SCADA, DCS, PLCs) comply with security standards, secure configuration, and access control requirements.
• Oversee the secure lifecycle management of OT assets, including patching and configuration changes, balancing cybersecurity risk with safety and operational continuity.
• Manage local vulnerability remediation activities, coordinating patching and fixes with operations and planned downtime.
• Act as the on‑site technical lead for security incidents affecting IT or OT systems.
• Coordinate incident response, vulnerability management, and compliance activities with Global Security Operations (SecOps).
• Troubleshoot security and network issues and participate in change management processes.
• Ensure continuous compliance with industry standards and regulations, including ISO 27001, ISA/IEC 62443, NIST, and GDPR, as well as internal corporate policies.
• Translate global cybersecurity policies into practical local procedures tailored to OT constraints such as safety and uptime.
• Prepare and maintain technical documentation, including solution architecture diagrams and standard operating procedures.
• Provide regular status reporting on asset inventory, security posture, vulnerabilities, incidents, and compliance metrics.
• Support internal and external audits, including evidence preparation and remediation tracking.
• Develop and deliver cybersecurity awareness training for IT and OT personnel, with a focus on operational environments and emerging threats.
• Maintain strong awareness of cybersecurity trends, threat actors, and hacking techniques.
• Research emerging IT and OT security technologies and recommend improvements.
• Develop and enhance security standards and best practices across the organisation.

Skills & Experience

Essential

• Minimum 5+ years’ experience in a Cyber Security role.
• At least 2 years’ hands‑on experience working in an OT / ICS environment (e.g. manufacturing, utilities, energy).
• Strong understanding of IT/OT network architecture, segmentation, and industrial security frameworks.
• Experience managing vulnerability remediation, patch management, DLP, and endpoint/network security tools.
• Proven ability to manage security incidents and work within structured change management processes.
• Excellent documentation, communication, and stakeholder management skills.

Desirable

• Experience with OT security platforms such as Claroty or similar.
• Knowledge of global cybersecurity operating models and coordination with central SecOps team.
• Relevant certifications (e.g. CISSP, CISM, GICSP, IEC 62443) are advantageous.

Rewards of working for Norton

• Competitive salary package that recognises your skills and experience.
• 33 days holiday (inc. Bank Hols) to relax and recharge.
• Generous pension scheme that sets you up for the future, with access to personalised advice.
• Private Medical Insurance and a Cash Back Programme to keep you feeling your best.
• Life insurance (4× salary).
• Free fruit, get to have your five‑a‑day.
• WeCare Employee Assistance Programme, which includes access to online GP services, dietary advice, mental health support, bereavement counselling, and a fitness programme.
• Experience the thrill of an entrepreneurial environment within a larger, well‑funded company with ambitious long‑term goals.
• Elevate your career with our Ideas for Excellence scheme, where every brilliant idea is not just valued, but also rewarded.
• A diverse and international team that brings together different perspectives, backgrounds, and experiences.
• Join the fun with our twice‑yearly employee events, payday socials, and loads of exciting activities in between.
• Want to go green? You can enjoy free electric bicycle hire.
• Plus, no need to stress about finding a parking spot – we've got on‑site free parking covered and free electric charge points.