DTICI_Solution Architect_Security Assessor_T6 (Jr No.4370)

Company Overview

Company details are not specified.

Job Summary

We are seeking experienced and motivated Cyber Security Assessors to join our global cybersecurity team. The ideal candidates will be responsible for conducting comprehensive assessments across Information Security Management Systems (ISMS), Operational Technology (OT) environments, and Financial Services domains. This role involves evaluating security controls, identifying risks, and ensuring compliance with internal policies and international standards.

Responsibilities

• Conduct internal cybersecurity assessments in alignment with ISO/IEC 27001, ISA/IEC 62443, and other related industry standards.
• Perform comprehensive security evaluations of both IT and OT environments across enterprise, manufacturing, and industrial settings.
• Assess the effectiveness of existing information security controls, risk management frameworks, and compliance policies.
• Develop and deliver detailed assessment reports including observations, risk ratings, and actionable remediation plans.
• Present assessment findings and risk insights to stakeholders, including senior leadership, technical teams, and business units.
• Provide expert guidance on risk mitigation strategies, security best practices, and compliance improvements.
• Stay current with emerging threats, technological advancements, and regulatory changes impacting the cybersecurity posture of the organization.
• Mentor and support junior assessors, contributing to team development and internal knowledge sharing initiatives.
• Willingness to travel up to 60% of the time to various company locations globally.

Qualifications

• Education:

  • Bachelor’s degree in Information Security, Cyber Security, Computer Science, Information Science, or a related field.
  • Advanced degrees (e.g., Master’s) or certifications (e.g., CISSP, CRISC, CISM, CEH) are a plus.

• Experience:

  • 12+ years of experience with cybersecurity audits, OT security audits, and risk management.

• Technical Skills:

  • Deep understanding of cybersecurity frameworks such as ISO/IEC 27001, NIST CSF, ISA/IEC 62443, COBIT, and PCI-DSS.
  • Strong knowledge of IT and OT security architectures, including SCADA, PLCs, DCS, and industrial network protocols.
  • Proficiency in risk assessment methodologies, threat modeling, and vulnerability management.
  • Familiarity with financial systems security and regulatory compliance (e.g., SOX, GDPR).

• Analytical & Problem-Solving:

  • Strong analytical mindset with the ability to identify complex security issues and propose effective solutions.
  • Skilled in evaluating control effectiveness and identifying gaps in enterprise and industrial environments.
  • Capable of translating technical findings into business-relevant insights and risk narratives.
  • Ability to interpret and apply data protection laws and standards across geographies.

• Communication & Stakeholder Management:

  • Excellent written and verbal communication skills for reporting and presenting to technical and non-technical audiences.
  • Proven ability to engage with senior leadership, technical teams, and external partners.
  • Demonstrated ability to lead audit engagements, manage cross-functional teams, and mentor junior assessors.
  • Resourceful and decisive under high-pressure situations.

Preferred Skills

• Certifications such as CISA, CISSP, CRISC, GICSP, ISO 27001 Lead Auditor, or equivalent certifications are preferred.
• Proficiency in German is highly valued and considered an asset for this role, but it is not mandatory. Fluency in English is essential.

Experience

• A minimum of 12+ years of experience in cybersecurity audits, including OT security audits and risk management.

Environment

Typical work setting, location, and physical conditions are not specified.

Salary

Salary details are not specified.

Growth Opportunities

Potential career advancement opportunities within the company are not specified.

Benefits

Offered benefits such as insurance, paid leave, and work policies are not specified.