OT Security Consultant - Middle East

About Bureau Veritas Cybersecurity

Bureau Veritas Cybersecurity is a global leader in testing, inspection, and certification services, delivering trusted cybersecurity solutions to safeguard critical operations, assets, and data. In the Middle East, we partner with large-scale enterprises and critical infrastructure operators across industries such as energy, oil & gas, manufacturing, and technology — helping them build sustainable, long-term resilience against evolving cyber threats.

Key Responsibilities

• Advisory Services – Perform advisory services on our client's SCADA/ICS/OT infrastructure for small to large-sized projects. This will include security risk assessments based on IEC 62443 methodology, gap assessments, security maturity reviews, trainings and consultancy support.
• Security Design & Architecture – Provide support in security design and security architecture of industrial networks and provide recommendations to improve the design.
• Security Program Development – Assist customers in establishing or extending their SCADA/ICS/OT security program by building joined roadmaps.
• Digital Transformation Support – Assist customers with secure digital transformation and Industry 4.0 initiatives.
• Risk & Vulnerability Interpretation – Interpret security vulnerabilities, risks, policies, and procedures concerning the operational business impact.
• Assessment Management – Manage and execute assessments based on internationally recognized frameworks or specific frameworks developed by Bureau Veritas Cybersecurity and support in certification journey.
• Sales Support – Support our sales with your technical expertise.
• Specialized Services – You will work on gap assessments or risk assessments based on IEC62443, IT/OT site assessments, Threat Modeling, compliance checks and Security Maturity Assessments. All these services are designed to support our customers to identify risks and improve their security resilience, no matter their current security maturity state. On top of these services, you will also provide specific OT security training, offer a comprehensive IT/OT security awareness behavior program, and perform OT security research.

Required Skills & Experience

• Bachelor's or Master's degree (Engineering) in a relevant field.
• Practical security experience within industrial networks and industrial devices like PLCs, DCS, Safety systems, and SCADA.
• Experience with industrial communication protocols, like Modbus, IEC104, and vendor-specific protocols.
• Experience with conducting risk assessments and threat modelings.
• Strong ability to communicate technical concepts and assessment results verbally and in written reports in simple terms.
• Knowledge of IEC 62443, MITRE ATT&CK for ICS, NIST CSF, NIST SP 800-82 and relevant regulations in the region.
• Interest and ability to write exciting whitepapers and publications.
• A supportive and a proactive personality, you know how to attract and engage both customers and colleagues.