Operational Technology - SME

Location: Bengaluru,Karnataka,India

About ColorTokens

ColorTokens specializes in advanced security solutions designed to safeguard organizations' assets and critical systems from cyber threats. Our flagship product, Xshield Enterprise Microsegmentation platform, empowers organizations to prevent initial compromises from escalating into damaging crises. By emphasizing proactive security measures, ColorTokens ensures comprehensive protection for critical workloads and data, enabling organizations to stay "breach ready."

With a clientele spanning some of the world's largest organizations, including prominent cancer research centers, cities, and national defense departments, ColorTokens serves industries handling sensitive information and subject to stringent regulatory requirements.

ColorTokens' cloud-delivered platform streamlines onboarding efforts and reduces maintenance costs for organizations. Providing pervasive protection, their platform covers data center servers, legacy systems, cloud workloads, containers, and operational technology (OT) and Internet of Things (IoT) devices.

The company's recognition as a Strong Performer in the Forrester New Wave™: Microsegmentation report solidifies ColorTokens' reputation as a trusted provider of microsegmentation solutions for organizations seeking to enhance their security posture.

Our culture

We foster an environment that values customer focus, innovation, collaboration, mutual respect, and informed decision-making. We believe in alignment and empowerment so you can own and drive initiatives autonomously.

Self-starters and high-motivated individuals will enjoy the rewarding experience of solving complex challenges that protect some of world’s impactful organizations – be it a children’s hospital, or a city, or the defense department of an entire country.

Position Overview

Colortokens is seeking a highly skilled OT (Operational Technology) Security Expert with extensive experience in managing incident response and security operations within OT environments. The ideal candidate will have deep knowledge of OT/IoT technologies and significant exposure to industrial automation and manufacturing verticals, including in-depth working knowledge of SCADA systems. This role involves proactively securing industrial environments, mitigating risks, and responding to security incidents in complex OT landscapes.

Key Responsibilities

1. Incident Response and Security Operations
• Develop and implement OT-specific incident response plans and playbooks.
• Lead security incident investigations in OT/SCADA environments, identifying root causes and providing remediation strategies.
• Conduct post-incident reviews and contribute to continuous improvement of the incident response process.
• Monitor OT systems and networks to detect and respond to security events using advanced tools and threat intelligence.
2. OT/IoT Security Management
• Design and implement robust security frameworks for OT environments, aligning with standards like ISA/IEC 62443, NIST CSF, and ISO 27001.
• Assess and harden OT/IoT devices against vulnerabilities, ensuring compliance with security policies.
• Evaluate and deploy specialized OT/IoT security solutions, including intrusion detection systems (IDS) and firewalls.
• Develop network segmentation strategies for industrial control systems (ICS) and ensure secure communication between IT and OT layers.
3. Industrial Automation and SCADA Systems
• Manage the security of SCADA systems, distributed control systems (DCS), and programmable logic controllers (PLCs).
• Work closely with engineers and operators to secure industrial automation processes without impacting operations.
• Lead initiatives to modernize legacy systems while mitigating security risks.
• Provide expertise in managing vendors and third-party solutions in manufacturing and industrial automation settings.
4. Threat Intelligence and Risk Management
• Analyze emerging threats specific to OT/IoT environments and implement proactive mitigation measures.
• Conduct risk assessments and vulnerability analyses across OT landscapes, including physical and cyber threats.
• Collaborate with IT security teams to integrate OT security strategies into enterprise-wide risk management.
5. Training and Awareness
• Deliver training programs for engineering teams, operators, and other stakeholders to enhance cybersecurity awareness in OT environments.
• Foster a culture of security within manufacturing and industrial teams, emphasizing the importance of securing critical infrastructure.

Qualifications

1. Education
• Bachelor’s degree in Computer Science, Cybersecurity, Industrial Engineering, or a related field.
• Advanced certifications are a plus (e.g., CISSP, GICSP, CISM, or similar).
2. Experience
• Minimum 8–10 years of experience in OT/IoT security operations and incident response.
• Proven experience working in industrial automation or manufacturing verticals, including SCADA, DCS, and PLC systems.
3. Technical Skills
• Expertise in OT-specific technologies and protocols (e.g., Modbus, OPC, PROFINET, Ethernet/IP).
• Experience with tools like SIEM, IDS/IPS, and network monitoring solutions in OT settings.
• Familiarity with OT security frameworks (e.g., ISA/IEC 62443, NIST 800-82).
4. Soft Skills
• Strong leadership and communication skills to work effectively with diverse stakeholders.
• Ability to balance security priorities with operational requirements in a high-pressure environment.

   

   

  Preferred Certifications

  • GICSP (Global Industrial Cyber Security Professional)
  • CISSP-ISSAP (Information Systems Security Architecture Professional)
  • ISA/IEC 62443 Cybersecurity Certificate
  • Certified Incident Handler (GCIH)