OT Security Specialist
- Brentford, England (GBR)
- £500 - £560 Per Day
- 6 Months
- Start date: ASAP
- Ref: GSK0JP00075925
- cyber security
- risk management
- Project Management - generalist
- General Data Protection Regulation
- pharmaceutical
Vacancy: OT Security Consultant
Location: GSK House
Initial Contract Duration: 6 months
Info Protect work stream 7 Operational Technology (OT) Security Consultant
This OT Security Consultancy role will sit within the Global GSK InfoProtect programme as part of the OT workstream with a dotted line into the Information Protection Programme Lead. Working closely with the business, the candidate will ensure that security requirements are embedded into projects and standards for ongoing inclusion of security are defined. This role will require a candidate with experience in performing a business facing role within OT Security. The ability to articulate the security risks in a manner that will allow operational leaders to make an informed decision in line with their risk appetite is crucial.
The role is performed globally for all GSK locations and businesses within a distributed team based in multiple locations.
Key Responsibilities
The OT Security Consultant for in-flight and planned projects will:
• Ensure that all strategic IOT projects are assessed to ensure security requirements are included into scope and, if required, agreed remediation actions are completed by the project teams
• Build security standards and checklists for the OT environment that align to the global security risk and standards framework
• Establish and gain agreement for framework for ensuring ICS security requirements are embedded into the ongoing project lifecycle; working closely with the OT Governance Work Stream to ensure alignment with governance processes.
• Ensure that proposed security solutions are consistent with GSK’s values and business goals, approved solutions, architectures and current threat models.
• Where required, negotiate risk management assessments and proposals with Project Directors, suppliers and operational Directors & VPs, and escalate any risks exceeding agreed limits.
• Ensure that security requirements and engagement outcomes are properly documented, agreed and reported into all necessary GSK risk and compliance processes and registers. Providing reporting on trends.
• Conduct risk & security assessments as required by the work programme leveraging the existing GSK Risk Management Framework.
Skills
• Significant experiencing in engaging with business leaders and operational teams with engineering, technical and operational services.
• Skilled security expert in Automation / OT systems across multiple environments including factories, R&D facilities, datacentres, etc
• Information Security knowledge around multiple domains e.g. Identity and Access Management, Network and Communications, Host and Application, and Monitoring
• Risk Assessment and Risk Analysis leveraging industry standard framework NIST, CESG, IRAM, IREC etc with Automation.
• Additional preferred qualifications: Certification - CIISP, CISSM, IISP.
• Pharmaceutical experienced preferred but not essential.
Successful candidates will show a willingness to take on additional responsibilities as required.
This role will be based at GSK House, Brentford, for initial 6 month duration on a five day per week basis, reporting into the OT Security Work Stream Lead.
All profiles will be reviewed against the required skills and experience. Due to the high number of applications we will only be able to respond to successful applicants in the first instance. We thank you for your interest and the time taken to apply!
