Security OT Risk & Compliance Specialist

OT Risk & Compliance Specialist
95% if the work is from home (with occasional travel to Glasgow or Yorkshire)

We’re partnering with a leading organisation in the energy sector that is looking to build and mature its OT Security Compliance capability. They are seeking an OT Risk & Compliance Specialist to play a pivotal role in shaping and guiding their compliance journey - particularly aligning with IEC 62443 standards.

This is a fantastic opportunity to join at a critical stage of development, where you can genuinely make an impact. With 95% remote working, you’ll enjoy both flexibility and autonomy, while contributing to the security of essential infrastructure.

Role Overview:

You will lead on OT security risk and compliance activities, helping the business navigate complex regulatory and standards requirements. While the organisation is already aligned to ISO 27001, the next step is aligning with IEC 62443 - and you will be instrumental in that transition.

Key Responsibilities:

• Deliver security risk assessments in line with agreed schedules, collaborating with other risk practitioners and maintaining accurate risk records and reports.
• Provide expert guidance on implementing the Group Security Framework, Policies, and Standards across the organisation.
• Work closely with stakeholders across business units to assess their systems and determine regulatory scope (e.g., NIS Regulations 2018, NERC-CIP).
• Represent the security function in audits, Technical Design Authority (TDA), and Change Advisory Board (CAB) meetings where required.

Key Experience Required:

• Proven experience working with Operational Technology (OT) and Industrial Control Systems (ICS).
• Practical knowledge of IEC 62443.
• Strong communication skills, with the ability to clearly articulate security risks and compliance requirements to both technical and non-technical stakeholders.

Why Join?

• Comprehensive training and development support, including external certifications.
• Operate in a secure and stable industry with long-term growth prospects.
• Be part of a cyber function that is actively expanding and genuinely valued across the organisation.
• Work in an innovative, collaborative, and forward-thinking culture.
• Flat management structure that encourages contribution and cross-functional collaboration.
• Autonomy to take ownership of your role and make meaningful change.
• Opportunity to explore different areas within the cyber security team as the function evolves.