Deloitte Cyber Operational Technology / Industrial Control Systems (OT/ICS) Senior Consultant

Position Summary

Deloitte Cyber Operational Technology / Industrial Control Systems (OT/ICS) Senior Consultant

Position Summary

As an OT/ICS Cybersecurity Architect at Deloitte, you will play a pivotal role in designing, implementing, and optimizing cybersecurity solutions for industrial environments. You will work with clients in energy, manufacturing, utilities, and other critical infrastructure sectors to secure operational technology (OT) and industrial control systems (ICS), ensuring the safety, reliability, and resilience of their operations. You will leverage your deep technical expertise, industry knowledge, and hands-on experience with leading OT/ICS security tools to deliver innovative solutions, lead project teams, and provide strategic guidance to clients.

Key Responsibilities

OT/ICS Security Architecture & Design

• Lead the design and implementation of OT/ICS cybersecurity architectures, including network segmentation, secure remote access, and integration with IT security controls.
• Develop and document security reference architectures, blueprints, and roadmaps tailored to client environments and industry standards (e.g., NIST 800-82, IEC 62443).
• Evaluate, select, and deploy OT/ICS cybersecurity technologies, with hands-on experience in:
• Claroty for OT asset discovery and vulnerability management
• Palo Alto and Cradlepoint for firewall configuration, segmentation, and secure connectivity
• CrowdStrike for OT monitoring and threat detection
• BeyondTrust for privileged secure remote access management
• Familiarity with other vendor tools such as Cisco (network security), ServiceNow (ticketing and workflow integration), Splunk (SIEM/log analytics), Crowdstrike (Falcon Discover for IoT) and TxOne (OT endpoint protection)
• Conduct security acceptance testing and validation of new or updated OT systems to ensure compliance with security requirements and industry best practices.

• Perform consequence-based risk assessments for OT environments, utilizing methodologies such as Cyber Process Hazards Analysis (Cyber PHA) to identify, analyze, and prioritize cyber risks.
• Lead vulnerability management efforts for OT/ICS assets, including the use of Claroty for vulnerability identification, risk scoring, and remediation planning.
• Support clients in achieving regulatory compliance and readiness for audits related to OT/ICS cybersecurity.

• Design and implement OT/ICS security monitoring solutions, leveraging tools such as CrowdStrike for endpoint and network monitoring, and Splunk for log aggregation and analytics.
• Collaborate with IT and OT teams to develop and test incident response plans specific to industrial environments.
• Integrate monitoring and alerting workflows with ServiceNow for streamlined incident management.

• Develop and update OT/ICS cybersecurity policies, standards, procedures, and job aids.
• Deliver training and awareness programs for client personnel, including plant operators, engineers, and third-party vendors.
• Advise clients on governance frameworks and best practices for OT/ICS cybersecurity program development and maturity assessments.

• Serve as a subject matter expert in client meetings, workshops, and presentations, especially regarding the deployment, integration, and optimization of OT/ICS security tools.
• Lead project teams, mentor junior staff, and contribute to business development activities such as proposal writing and solution development.
• Stay current on emerging OT/ICS threats, vulnerabilities, and technologies, and share insights with clients and internal teams.

• Bachelor's degree in Engineering, Computer Science, Information Security, or related field.
• 7+ years of experience in OT/ICS cybersecurity, including hands-on experience with industrial control systems (e.g., SCADA, DCS, PLCs) in sectors such as oil & gas, energy, utilities, or manufacturing.
• 4+ years of demonstrated experience designing and implementing OT/ICS security architectures and controls using tools such as Claroty, Palo Alto, Cradlepoint, CrowdStrike, BeyondTrust PRA, and familiarity with Cisco, ServiceNow, Splunk, and TxOne.

• Limited visa sponsorship may be available

• Ability to travel up to 50%, on average, based on the work you do and the clients and industries/sectors you serve, primarily within the Houston region.

• Advanced degree preferred.
• Professional certifications such as GICSP, CISSP, CISM, ISA/IEC 62443, or equivalent.
• Strong knowledge of OT/ICS protocols (e.g., Modbus, DNP3, OPC, Profibus), network architectures, and common vulnerabilities.
• Experience with cloud-based OT/ICS security solutions and IT/OT convergence initiatives.
• Experience with OT/ICS cybersecurity technologies for asset discovery, vulnerability management, network monitoring, endpoint protection, and privileged access management.
• Familiarity with industry standards and frameworks (e.g., NIST 800-82, IEC 62443, NERC CIP).
• Experience conducting risk assessments, vulnerability management, and incident response in OT environments.
• Strong communication skills, with the ability to present complex technical concepts to both technical and non-technical audiences.
• Demonstrated leadership in project delivery and client engagement.
• Prior consulting experience with a focus on critical infrastructure or industrial sectors.
• Experience developing and delivering OT/ICS cybersecurity training programs.