JD_Cybersecurity Architecture and OT Architect Specialist

Liaise/Cooperate With: IT/OT/Engineering/Operation, etc

To support secure design, architecture review, and implementation of cybersecurity controls across IT and OT environments, ensuring alignment with regulatory, business, and technical requirements.

The Cybersecurity Architecture and OT Architect specialist is responsible for designing secure IT and OT infrastructure, ensuring all architecture artifacts meet security and regulatory requirements. The role focuses on providing expert advice on secure configurations and technology solutions for industrial and enterprise systems.

The Cybersecurity Architecture and OT Architect Specialist operates at a tactical and technical level, responsible for designing, reviewing, and implementing secure architecture for both enterprise IT systems and OT/ICS environments. The role is focused on evaluating system designs for cyber risks, ensuring compliance with applicable cybersecurity frameworks, and supporting the secure integration of industrial systems with IT infrastructure. It provides subject matter expertise and hands-on design guidance in architecture development efforts.

• Review configurations of PLCs, HMIs, RTUs, and field devices.
• Conduct threat modeling and architecture risk assessments
• Design and evaluate secure architecture for IT/OT integration
• Support secure design documentation, diagrams, and reviews
• Conduct threat modeling and risk assessments on new and existing solutions.
• Map architecture designs against IEC 62443, NIST 800-82, and TOGAF standards.
• Advise on secure integration of legacy ICS systems with modern IT networks.
• Provide consultation on secure network segmentation, DMZs, and zoning for OT.
• Develop secure architecture designs and documentation for IT and OT systems.
• Collaborate with project teams, vendors, and system integrators.
• Ensure secure network zoning and segmentation for ICS/SCADA
• Advise project and engineering teams on cybersecurity best practices
• Participate in vulnerability assessments and remediation planning.
• Collaborate with vendors and integrators on technical security solutions.
• Align architecture with relevant standards (IEC 62443, TOGAF, SABSA)
• Develop detailed design documents, configuration templates, and security diagrams.

MINIMUM YEARSEXPERIENCE IN SIMILAR JOB ROLE

• MS Proficiency: Visio, Excel, PowerPoint, Word.
• Self-initiator with strong technical advisory capabilities.
• Knowledge and applied experience in secure architecture for ICS/SCADA and enterprise systems.
• Flexibility to work across different sites, including field/plant environments.
• Bachelor’s degree in Cybersecurity, Engineering, or Computer Science.
• Well-organized in maintaining documentation and secure design templates.
• Certifications: IEC 62443, SABSA/TOGAF, GICSP, or CISSP.
• 5+ years of experience in architecture or OT cybersecurity.