At a Glance
- Tasks: Lead the design and delivery of OT security strategies in a dynamic environment.
- Company: Join a leading UK organisation in advanced engineering and research.
- Benefits: Competitive day rate, hybrid work model, and opportunities for professional growth.
- Other info: Mentor junior team members and collaborate with top industry professionals.
- Why this job: Shape the future of OT security and make a real impact in critical infrastructure.
- Qualifications: Experience in OT security and strong communication skills required.
Location: Hybrid – 3 days onsite (Oxfordshire), remainder remote
Day Rate: £400-£450 per day (Outside IR35)
Start Date: ASAP
Clearance: SC required
Hours: 37.5 per week (typically 9:00am–5:30pm)
Overview
We are supporting a leading UK organisation within the advanced engineering and research sector, seeking an OT Cyber Security Specialist to play a key role in building and maturing their Operational Technology (OT) security capability. This is a greenfield opportunity to shape and implement OT security strategy, frameworks, and governance across complex industrial environments.
Key Responsibilities
- Lead the design and delivery of the OT Security Strategy, including policies and standards
- Establish governance processes aligned to enterprise security frameworks
- Conduct OT risk assessments and gap analyses against recognised standards (e.g. IEC 62443, NIST CSF, CAF)
- Identify and oversee implementation of security controls across OT environments
- Provide technical oversight when working with managed service providers and third-party vendors
- Collaborate with enterprise security teams to align OT and IT security initiatives
- Support OT incident response, including coordination with SOC teams where applicable
- Mentor junior team members and contribute to capability development
- Track and report on OT security maturity and roadmap progress
Essential Experience
- Proven experience developing and maturing OT security within ICS or critical infrastructure environments
- Strong background in defining and implementing OT security strategies, policies, and standards
- Deep understanding of OT security frameworks (IEC 62443, NIST CSF, CAF, ISO 27001)
- Experience conducting OT risk assessments, gap analysis, and remediation planning
- Knowledge of OT networks, segmentation, and industrial protocols
- Experience working closely with engineering and operational teams
- Ability to oversee third-party vendors and managed security services
- Strong documentation and stakeholder communication skills
Desirable Experience
- Experience in solution architecture
- Familiarity with SIEM/SOC integration in OT environments
- Experience with OT asset discovery and monitoring tools
- Knowledge of regulatory frameworks within critical infrastructure (e.g. NIS)
- Experience contributing to working groups or acting as a subject matter expert.
Please apply with an up to date version of your CV for immediate consideration.
Cyber Security Specialist in Derby employer: Profectus Recruitment
Join a leading UK organisation in the advanced engineering and research sector, where you will have the unique opportunity to shape and implement cutting-edge OT security strategies. With a hybrid working model that promotes work-life balance and a culture of collaboration, you will benefit from mentoring opportunities and the chance to work alongside industry experts in a dynamic environment. This role not only offers competitive day rates but also positions you at the forefront of innovation in operational technology security.
StudySmarter Expert Advice🤫
We think this is how you could land Cyber Security Specialist in Derby
✨Get Active on Cybersecurity Forums
Join platforms like Stack Exchange and Reddit’s r/cybersecurity to hang out with industry pros, learn the latest, and share your insights. This will not only boost your visibility but also help you connect with potential clients who might need your freelance services.
✨Show Off Your Skills with Public Projects
Create a few open-source projects or contribute to existing ones that showcase your cybersecurity skills. Use GitHub to display your work, as this is an excellent way to attract clients looking for freelancers with a proven track record.
✨Attend Local Conferences and Meetups
Make sure to hit up cybersecurity meetups, workshops, and conferences in your area. These events are goldmines for networking, and you’ll often find people looking for freelancers after a chat over a coffee – so come prepared with your business cards and a killer elevator pitch!
✨Market Yourself Smartly
Set up a professional website that showcases your portfolio, expertise, and client testimonials. Optimise it for SEO with relevant keywords so potential clients searching for cybersecurity freelancers can easily find you. Don’t forget to link to your site on all your social media and profiles!
We think you need these skills to ace Cyber Security Specialist in Derby
Some tips for your application 🫡
Show Your Skills Through a Strong Portfolio:Since you're applying for a freelance role in cybersecurity, it's crucial to showcase your technical skills through a detailed portfolio. Include case studies of projects you've worked on, any security tools you've developed or assessed, and specifics on the methodologies you’ve used. This will help Profectus Recruitment understand what you're capable of.
Certifications Matter!:Make sure to list any relevant certifications you hold, such as CISSP, CEH, or CompTIA Security+. Freelance clients often value these credentials as they reflect your expertise and commitment to the field. If you’re actively pursuing more certifications, don’t hesitate to mention that too!
Rates, Availability, and Your Work Style:In your application, it’s essential to be clear about your freelance rates and availability. Clients appreciate transparency. Mention how many hours a week you can dedicate and your preferred working hours, as this sets expectations from the start and shows you're organised and professional.
Tailor Your CV to Highlight Cybersecurity Experience:When crafting your CV, make sure to tailor it specifically to cybersecurity. Highlight projects, tasks, and achievements related to security assessments, vulnerabilities you've mitigated, or compliance work you've undertaken. Keywords relevant to the job can grab attention and increase your chances of landing a spot at Profectus Recruitment.
How to prepare for a job interview at Profectus Recruitment
✨Showcase Your Cybersecurity Skills
As a freelancer in cybersecurity, it’s crucial we demonstrate not just our knowledge but our practical skills too. Be ready to discuss specific tools you’ve used, like Wireshark or Metasploit, and share relevant experiences where you identified vulnerabilities or mitigated risks in past projects.
✨Prepare Your Portfolio
Unlike traditional roles, freelancing relies heavily on your portfolio. Let’s curate a selection of past work that showcases our best projects. If we’ve handled penetration tests, audits, or incident responses, be sure to highlight these in your portfolio, and share any client testimonials if we have them.
✨Stay Updated on Trends and Tools
Cybersecurity is an ever-evolving field, so we should be prepared to chat about recent developments and how they impact our work. Familiarise ourselves with the latest threats, tools, and frameworks, like MITRE ATT&CK, that are pertinent to the projects we’re pitching.
✨Pitching Your Value as a Freelancer
When freelancing, we often need to negotiate our rates and value propositions. Be ready to explain how our skills can help Profectus Recruitment protect their assets and manage risks. It can help to outline some potential strategies or improvements we could implement for them based on their current setup.
