TCMS OT Security Consultant

This role is for one of the Weekday's clients

Salary range: Rs 500000 - Rs 1000000 (ie INR 5-10 LPA)

Min Experience: 5 years

Location: Remote (India)

JobType: full-time

We are seeking a highly skilled TCMS OT Security Consultant with 5+ years of experience in industrial cybersecurity, including a minimum of 3 years in Operational Technology (OT) security consulting within the transportation or railway domain. This is a fully remote role for candidates who possess deep technical knowledge of Train Control and Monitoring Systems (TCMS) and are capable of implementing, auditing, and enhancing cybersecurity practices within OT environments.

Requirements

Key Responsibilities:

• Lead OT Security Consulting Engagements: Serve as the subject matter expert for OT security within railway and transportation systems, especially focusing on TCMS components.
• Design and Review OT Architectures: Develop secure OT architecture frameworks for TCMS deployments and perform in-depth reviews of existing system designs to identify and address security vulnerabilities.
• Secure ICS/SCADA Systems: Implement best-in-class cybersecurity controls across Industrial Control Systems (ICS) and Supervisory Control and Data Acquisition (SCADA) networks to ensure operational resilience.
• Configure and Secure PLCs: Enforce security policies at the Programmable Logic Controller (PLC) level by configuring secure communications, access controls, and firmware validations.
• Implement Network Zoning and Segmentation: Design and implement network zoning, demilitarized zones (DMZs), and secure communication paths between TCMS components, enterprise networks, and third-party systems.
• OT Firewall Policy Management: Define, implement, and monitor robust OT firewall policies aligned with industry standards (e.g., IEC 62443), ensuring defense-in-depth across all layers of OT.
• Support Compliance and Risk Management: Assist in compliance initiatives and risk assessments, ensuring alignment with regulatory frameworks and internal security policies specific to the railway sector.
• Collaborate Across Teams: Work closely with cross-functional teams including cybersecurity, engineering, infrastructure, and system integrators to translate security strategy into actionable OT deployments.

Required Skills and Experience:

• 5–9 years of overall experience in OT cybersecurity or industrial automation, with at least 3 years of direct consulting experience in railway or transportation domains.
• In-depth knowledge of TCMS (Train Control and Monitoring Systems), including architecture, protocols, and integration with safety-critical systems.
• Proven experience in securing ICS/SCADA environments in operational field settings.
• Strong understanding and hands-on experience with PLC security, including asset hardening, firmware verification, and access management.
• Expertise in designing and enforcing OT firewall rules, including allow/deny lists, deep packet inspection (DPI), and protocol-aware filtering.
• Solid knowledge of network security architecture, including zoning, segmentation, and intrusion detection/prevention within OT environments.
• Familiarity with industry standards such as IEC 62443, NIST 800-82, and ISO/IEC 27019 is preferred.

Preferred Qualifications:

• Bachelor’s or Master’s degree in Engineering, Computer Science, Cybersecurity, or related field.
• Certifications such as GICSP, ISA/IEC 62443, CISSP, or equivalent are a plus.
• Previous experience working with railway OEMs, signaling companies, or infrastructure operators is highly desirable.