Senior Managing Consultant - OT Cybersecurity

Introduction

The OT Security Specialist will be responsible for conceptualizing, architecting, and leading the implementation of advanced Operational Technology (OT) security services for our clients in KSA and across broader MEA. This critical role demands demonstrating profound thought leadership, exceptional delivery expertise, and a comprehensive, nuanced understanding of OT Security Controls, including deep knowledge of Industrial Control Systems (ICS) and SCADA-specific vulnerabilities and countermeasures. This role is pivotal in guiding IBM's clients through complex transformations in their OT Security posture, addressing the unique challenges of securing converged IT/OT environments within various industrial sectors. These engagements will span a wide spectrum of strategic consulting and highly technical implementation projects.

You will act as a primary interface with clients, understanding their core business objectives, operational imperatives, and specific OT environments. You will operate across multiple levels of abstraction, applying deep industry-specific knowledge and leveraging appropriate business frameworks and cutting-edge operational technologies to architect and deliver robust security solutions. Furthermore, you will be instrumental in advising clients on defining their future-state OT Security landscape, collaborating closely with them to forge a strategic roadmap to realize this vision, thereby establishing IBM as an indispensable and trusted security advisor.

Your Role And Responsibilities

• Oversee and direct all facets of OT security engagements, from inception to completion, ensuring excellence in the protection of critical operational technologies.
• Consulting: Expertly facilitate high-stakes workshops, deliver compelling executive-level presentations, produce project deliverables, and direct large-scale, multi-faceted delivery engagements.
• Leadership: Provide authoritative guidance on all solution components, mentor and direct colleagues and technical teams, manage complex client requirements, and ensure seamless alignment between client needs and IBM’s comprehensive solutions.
• Serve as a subject matter expert in OT security, possessing a granular understanding of industrial control systems (ICS), SCADA, Distributed Control Systems (DCS), Programmable Logic Controllers (PLCs), Safety Instrumented Systems (SIS), and their unique security challenges.
• Spearhead the development and articulation of the solution elements for OT Security proposals, encompassing administrative, operational, and deeply technical aspects.
• Champion the definition and creation of innovative and resilient solutions that precisely meet and anticipate client OT security requirements.
• Analyze and interpret client OT Security requirements, including critical drivers such as operational safety, process reliability, production uptime, regulatory compliance (e.g., NCA OTCC), risk tolerance, and legal obligations.
• Ensure comprehensive visibility and articulate understanding of both functional and non-functional requirements for proposed OT security solutions.
• Provide expert support to client-facing teams in responding effectively to complex requests for proposals (RFPs).
• Demonstrate master-level knowledge in architecting, designing, and delivering resilient OT security solutions, including secure network architectures (e.g., ISA/IEC 62443-driven), and robust deployment models for ICS, SCADA, IIoT, and other operational systems across diverse industrial environments.
• Possess and apply a strong, practical understanding of leading OT Security frameworks (e.g., ISA/IEC 62443 suite, NIST Cybersecurity Framework Profile for OT, MITRE ATT&CK for ICS, SANS ICS Maturity Model) and develop adaptive Cybersecurity governance models tailored for operational technology ecosystems.
• Exhibit expertise in preparing detailed Use Case Documents, comprehensive High-Level and Low-Level Architecture and Design documentation specifically for OT security solutions.
• Lead the development and integration of sophisticated security solutions within OT environments, including advanced industrial firewalls, OT-specific Intrusion Detection/Prevention Systems (IDS/IPS), Security Information and Event Management (SIEM) / Security Orchestration, Automation and Response (SOAR) for OT, secure remote access methodologies, and data diodes.
  
  

Practice & People Development

• Actively contribute thought leadership, innovative content, and strategic advice to the continuous development and refinement of OT security offerings.
• Play a key role in establishing and evolving capability and skills models for the core OT security domain, partnering with the wider global team to cultivate and disseminate deep expertise.
  
  

Preferred Education

Bachelor's Degree

Required Technical And Professional Expertise

• OT Security Architecture & Solution Design: Proven experience and deep knowledge in the Design, Architecture, and implementation of a wide array of OT-specific security solutions including:
• Network Segmentation and Segregation (Zones, Conduits, Micro-segmentation).
• Industrial Firewalls, Next-Generation Firewalls (NGFWs) with OT protocol awareness.
• OT-specific IDS/IPS, Network Security Monitoring (NSM) and anomaly detection.
• Security Information and Event Management (SIEM) & Security Orchestration, Automation and Response (SOAR) tailored for OT.
• Secure Remote Access solutions (e.g., Bastion Hosts, Privileged Access Management for OT).
• Endpoint Detection and Response (EDR) and application whitelisting for industrial endpoints.
• Vulnerability Management and Patch Management strategies for OT environments.
• Data Diodes and unidirectional gateways.
• Identity & Access Management (IAM) for OT systems.
• Security of Industrial IoT (IIoT) devices and platforms.
• Knowledge of Encryption, Key Management, HSM, Certificate, PKI & Secret management solutions and their applicability in OT context.
• Ability to develop exceptionally high-quality OT security project design documentation, including detailed network diagrams, data flow diagrams, security policies, and operational procedures.
• Substantial working experience in securing OT across various service and deployment models (e.g., on-premise, air-gapped, segmented, cloud-connected OT) and understanding the security implications of IT/OT convergence and digital transformation initiatives (e.g., IIoT, AI/ML in manufacturing).
• An extensive and verifiable track record in successfully delivering large-scale, highly complex, and multi-year OT security transformation programs and projects in diverse capacities (e.g., Lead OT Security Architect, Principal OT Security Consultant, Senior Technical Program Manager for OT Security).
• Proven experience working collaboratively and effectively across diverse, multi-disciplinary teams to facilitate complex solutions.
• Willingness and ability to travel extensively, potentially 50%-70%, to meet client engagement needs.
• At least 5 years of intensive experience in dedicated international deployment roles, managing complex client relationships and delivering hybrid/multi-cloud security engagements with a strong focus on OT.
• At least 8 years of dedicated experience in OT security consulting, architecture, and implementation roles.
• At least 10-12 years of overall experience within Cyber Security, with a clear and significant progression into specialized OT security leadership.
• English: Fluent (written and spoken). Arabic proficiency is a significant advantage.