Belgium - Hoboken
Information Systems
Information Technology

Posted on 04-03-2024

Global OT / ICS Cyber Security Manager

About Umicore

Reducing harmful vehicle emissions. Giving new life to used metals. Powering the cars of the future. As a global materials and technology group, we apply our specialist knowledge to offer materials and solutions that are essential to everyday life. We aim to be a clear world leader in materials for clean mobility and recycling and have turned our sustainability approach into an even greater competitive advantage. With ambitions like this, imagine what you could do?

About Information Systems

A global organisation. It’s not just those in our industrial sites and technical centres that are vital to Umicore’s growth. Across our support functions we ensure that we continue to grow and evolve – whether it’s by making sure our decisions are commercially viable, enhancing our reputation, building new customer relationships or finding the right people who can build on what we’ve already achieved. The variety of our work means we cannot stand still. We need to find new ways to do things, discover new solutions and develop new ideas. Which is where you come in.

What you will be doing

As Global OT (operational technology) / ICS (industrial control systems) Cyber Security Manager you will provide a steering and advisory role to help the Umicore Business Units securely design and deploy industrial control systems and operational technology. You will define the Umicore Group OT security standards and guidelines and guide the BUs to implement relevant OT security controls in order to adopt these guidelines. You will define the global governance and monitoring model wrt OT & ICS Cyber Security and you are the bridge between corporate Cyber Security teams (IS) and Automation Engineering / Process IT teams within the BU’s. You have a wide knowledge and expertise of OT cyber security architectures and processes.

Your main responsibilities:

• Lead OT security assessments together with (internal / external) OT security experts and BU automation engineering teams (process IT teams). 
• Define OT security standards & guidelines for the Group and advise the BU teams (BIT, PIT and automation engineering) on defining and implementing OT security roadmaps to adopt the defined OT security guidelines.
• Define the tooling and processes to increase cyber resilience in OT environments to an acceptable level for the Group.
• Define the governance & monitoring model for the group (Corporate security, IT security and BU operations) to maintain OT security standards to the required level.
• Act as a solution architect to fulfil new OT business needs in a secure-by-design approach. This includes defining architectural integration of new applications, (Cloud) providers, networks, firewalls and systems with a specific focus on the impact on preventive, detective and responsive security controls
• Research and select new IT & OT technologies. This includes partner and technology selection through RFP, Proof of Concept studies, integration into the existing technology and governance landscape and transfer to respective stakeholders

Who we are looking for

• Higher Degree (Master or equivalent) in Automation, Electronics or Computer Science (IT) or equal through experience
• At least 7 years of experience in IT security – network security, network monitoring & defence, secure configuration of assets, incident response, vulnerability management
• At least 3 years of experience in securing ICS & OT environments, including DCS, PCS, SCADA systems, PLCs, etc
• Knowledge of security standards (e.g. IEC 62443, NIST SP800-82, ISO2700x)
• At least 5 years of experience in international and global organizations
• Supplier management (incl. provider and technology sourcing)
• Understands the threat landscape of network-connected OT/ICS technology.
• Ability to lead and manage projects
• Professional writing and presenting skills
• Ability to clearly communicate ideas and explain technical knowledge in business language to management and other stakeholders
• A passion for cybersecurity topics together with willingness for self-development.
• Very knowledgeable in IT & OT technological trends
• Expert in various IT security domains (certifications like GICSP, CISSP, CISM are a plus)
• Knowledge of Microsoft Azure and Microsoft365 security solutions
• Fluent writing and speaking in English

What we offer

We aim to lead the way. Not just for our customers, but for our employees too. That is why we strive to create a collaborative environment in which we can all succeed, and a culture through which we can all share ideas, develop our expertise and advance our careers. We engage in building an inclusive work culture that offers equal opportunities for all employees irrespective of their diverse backgrounds. As you would expect from a world-leading organisation, we will also reward your contribution with a competitive salary and benefits. With all this and more, imagine what you could do?

If our technologies can tackle some of the world’s most pressing challenges IMAGINE WHAT YOU COULD DO