Job Description

EY - Manager – Cyber Security – OT Cybersecurity

Business Area: Technology Consulting – Cyber Security

Core Skills: OT Security, ICS/SCADA, Dragos, Nozomi, OT Risk Assessment, Industrial Cyber Resilience

Job Listing Detail

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. We’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all.

The Opportunity

As part of our Cyber Technology Consulting practice, you will lead and deliver Operational Technology (OT) cybersecurity engagements across clients in the MENA region, particularly within Energy, Oil & Gas, Utilities, and Smart City ecosystems.

You will work with some of the region’s most critical infrastructure operators to assess, design, and enhance their OT security posture, ensuring resilience against evolving cyber threats targeting industrial environments. The role provides the opportunity to operate at the intersection of industrial operations, cybersecurity, and digital transformation, while contributing to the growth of our OT Security competency

Your Key Responsibilities

Client Delivery And Engagement Management

• Lead and deliver OT cybersecurity engagements, including:

• OT risk assessments and maturity assessments
• Architecture and network segmentation reviews
• Security posture evaluations across SCADA, DCS, PLC, HMI, and ICS environments

• Perform OT-focused vulnerability assessments and exposure analysis in coordination with engineering and operations teams.
• Implement and operationalize OT monitoring solutions including:

• Dragos Platform
• Nozomi Networks Guardian / Vantage

• Design and validate OT detection and response capabilities, leveraging network traffic analysis, anomaly detection, and threat intelligence.
• Conduct industrial threat modeling and risk quantification aligned to operational impact, safety, and business continuity considerations.
• Develop OT cybersecurity roadmaps and transformation programs, aligned with frameworks such as:

• IEC 62443
• NIST SP 800-82
• NCA (KSA) / regional regulatory frameworks

• Support implementation of:

• OT network segmentation (zones & conduits)
• Secure remote access for vendors and operators
• OT-specific incident response and crisis management playbooks

Sector-Specific Advisory

• Apply deep understanding of industrial processes and control systems across:
• Energy and Power Generation
• Oil & Gas (Upstream, Midstream, Downstream)
• Utilities (Water, Electricity Distribution, Smart Grids)
• Smart Cities and Critical Infrastructure ecosystems
• Align OT security recommendations with operational priorities such as safety, availability, reliability, and regulatory compliance
• Bridge the gap between engineering, operations, and IT/security teams, ensuring practical and implementable solutions.

Stakeholder Engagement And Advisory

• Act as a trusted advisor to CISOs, Plant Managers, OT Engineers, and Executive Leadership
• Translate complex technical issues into business, safety, and operational risk impacts
• Deliver executive-level briefings and technical deep-dives, tailored to diverse stakeholder groups.
• Facilitate workshops, tabletop exercises, and scenario-based discussions for OT cyber resilience

Practice And Capability Development

• Contribute to the growth of the OT Cybersecurity practice, including:
• Development of methodologies, playbooks, and accelerators
• Standardization of OT assessment frameworks and delivery artifacts
• Support business development activities, including:
• RFP/RFI responses
• Client presentations and solution articulation
• Thought leadership in OT cybersecurity and industrial resilience
• Stay current with:
• Emerging OT threats and attack campaigns
• ICS vulnerabilities and adversary tactics
• Evolving regulatory requirements across the MENA region

People Leadership And Team Development

• Lead, mentor, and develop a team of OT security consultants and specialists
• Build cross-functional capability across OT, IT, and cyber domains.
• Drive a culture of technical excellence, safety awareness, and delivery quality
• Provide structured feedback, coaching, and career development aligned to firm objectives.

Skills and Attributes for Success

• Strong understanding of OT/ICS cybersecurity principles, including security challenges unique to industrial environments.
• Hands-on experience with OT security platforms, especially:
• Dragos
• Nozomi Networks
• Deep knowledge of:
• Industrial communication protocols ( Modbus, DNP3, OPC-UA, PROFINET, IEC 61850)
• OT asset visibility, anomaly detection, and network monitoring
• Experience in installation, commissioning, FAT, and SAT of ICS systems like DCS, PLC, SCADA, and Network Devices in ICS Security related Projects.
• Proven capability in conducting OT risk assessments, including:
• Threat modeling
• Risk quantification
• Control gap analysis
• Strong understanding of industrial processes and operational workflows across Energy, Oil & Gas, Utilities, or Smart City environments.
• Familiarity with IT/OT convergence risks, segmentation strategies, and secure architecture design.
• Ability to communicate complex technical findings in a clear, business-impact context
• Strong analytical, problem-solving, and stakeholder management skills.
• Experience in managing large, multi-stream client engagements

To Qualify for the Role, You Must Have:

• Bachelor’s or Master’s degree in Cyber Security, Engineering (Electrical/Instrumentation/Industrial), Information Technology, or related discipline.
• 10–15 years of experience, with at least 5–7 years in OT/ICS cybersecurity
• Proven hands-on experience with:
  • OT security assessments and architecture reviews
  • Deployment or use of Dragos and/or Nozomi platforms
  • OT risk and maturity assessments
• Experience working with clients in Energy, Oil & Gas, Utilities, or Smart Infrastructure sectors
• Strong consulting, stakeholder management, and communication skills.
• Ability to manage multiple engagements and deliver high-quality outcomes.
• Willingness to travel across the MENA region, as required.

Ideally, You’ll Also Have

• Certifications such as:
• GICSP (Global Industrial Cyber Security Professional)
• ISA/IEC 62443 certifications
• SANS ICS (GRID, ICS410, ICS515)
• CISSP / CISM (added advantage)
• Experience in:
• OT incident response and forensic investigations
• Industrial SOC / OT SOC design and implementation
• Smart City cybersecurity architecture
• Integration of OT with enterprise security tools (SIEM, SOAR, XDR)
• Exposure to leading OT vendors such as:
• Claroty, Dragos, Nozomi, Tenable.ot, Forescout etc.

What We Look For

We seek individuals who:

• Have a growth mindset and bring a strong blend of OT domain knowledge and cybersecurity expertise
• Can operate effectively across engineering, operations, and cybersecurity stakeholders
• Demonstrate client-centricity, problem-solving, and solution-driven thinking
• Are passionate about securing critical infrastructure and industrial ecosystems
• Contribute to practice growth, innovation, and team development
• The ability to balance deep technical expertise with business acumen
• A collaborative approach to problem-solving and innovation
• A commitment to quality, integrity, and continuous improvement