AddressManager – OT ICS Security role is pivotal to the sustainable growth of KPMG UK’s Cyber Security Services, providing technical and advisory expertise to help our clients securely craft and deploy industrial control systems and operation technology.
Description of the role
Manager – OT ICS Security role will involve the following core activities:
- Lead KPMG’s OT ICS Vulnerability Assessment and Remediation Services – which encompasses a set of practices and strategies to help our clients identify, assess, prioritise and mitigate potentially exposed network components.
- Work collaboratively with KPMG’s OT Security Leads and wider KPMG Cyber Security teams to develop appropriate solution, delivery models and marketing campaigns to further enhance KPMG’s Vulnerability Assessment and Remediation Services- focusing on the four essential components of Vulnerability Assessment: Asset services Discovery; Risk Assessment & Classification; Change Management; and, Continuous Monitoring.
- Provide ad-hoc OT (ICS, SCADA and IIOT) Subject Matter Expertise, providing advice regarding design, build and implementation of pragmatic industrial control system security and solutions for our clients.
- Build internal relationships across KPMG’s UK Cyber and Technology Services and our global member firms to bring innovation to our clients.
As a Manager within KPMG’s OT ICS team, you will also be expected to support our UK Cyber Leadership team evolve our technology alliances and vendors as part of our investment into OT ICS and ambition to diversify our services to our clients.
Role dimensions
Manager – OT ICS Security is a delivery role and you will be responsible for managing teams across multiple clients.
The role requires a high level of stakeholder interaction and challenge, including:
- Internal stakeholders: business development teams, sales teams, delivery teams, technical development teams, Quality and Risk Management.
- External stakeholders: client stakeholders and decision makers for purchasing services related to the product, across a range of sectors and industries.
- External alliances and vendors: supporting KPMG’s alliance-based go-to-market strategy through the development of partnerships with relevant solution providers.
Experience
Specific to the role, the ICS OT Security Manager should be able to demonstrate proficiency across the following skills and experience:
- Fundamental understanding of network fundamentals and network security design, including ability to develop network illustrations for industrial automation and control systems.
- Experience working with SCADA/modern SCADA, DCS, PLC, EMS- including connected technologies. Experience should cover communication protocols, such as TCP/IP, Modbus, IEC 61850, OPC, OPC UA and PROFINET.
- Application of leading Security Standards and Best Practice Guidelines (e.g., National Institution of Standards Technology Cyber Security Framework/NIST CSF, ISO27001:2013/2022, (ISA)/IEC 62443 series of standards, NIS regulations).
- Leading awareness of IT/OT security trends and common vulnerabilities. Experience should cover how to develop pragmatic remediation solutions and/or fixes against an organisation’s threat landscape and cyber risk profile.
More generally, we expect that you will have:
- A Higher Degree (Bachelor or Master) in Automation, Robotics, Mechatronics, Electronics, Cyber Security, Computer Science or similar.
- A minimum of 3 years of working experience in cyber security or industrial automation.
- Ability to author technical and non-technical documentation for varying audiences.
- Excellent written and verbal communication skills and ability to temper communication style to accommodate both technical and non-technical audiences.
- Proven experience leading work at sustained levels of high quality, including inspiring drive and resilience in others.
- An ability to develop excellent relationships both internally and with clients at a senior level.
