Senior Security Engineer OT - APAC

About the role

• Barry Callebaut Digital (BC Digital) is on a mission to lead the digital revolution in the chocolate industry, and we're looking for an Senior Security Engineer OT (Operations Technology), dedicated to protecting Barry Callebaut's industrial environment, while focusing on maintaining robust defenses against cyber threats through network and endpoint security measures. Reporting to the Director of OT Security in the CISO team, you will monitor operational technology security and patch management for consistent performance, preventing vulnerabilities of software across Barry Callebaut. In addition, you will act as an expert and communicate with our factories and operations teams in a very effective and easy-to-understand manner and incorporate strategic goals, (regulatory) requirements, external trends, and threats and risks that must be addressed into our controls and associated working processes, technologies, skills, and procedures.

Key responsibilities include

• Develop, implement, and maintain a robust OT security architecture aligned with industry best practices and regulatory requirements.
• Conduct regular risk assessments, identify vulnerabilities, and implement mitigation strategies to protect critical OT infrastructure.
• Implement and manage network security controls (firewalls, intrusion detection/prevention systems) and endpoint security measures (antivirus, anti-malware) for OT systems.
• Oversee and optimize patch management processes to ensure timely application of security updates across OT environments.
• Collaborate with SecOps and relevant teams during security breaches.
• Ensure adherence to security standards (e.g., NIST, IEC 62443), and support internal and external audits.
• Assist in development of documentation and delivering security awareness training programs for OT personnel (Plant, Maintenance and Engineering Managers, factory workers, OT Systems engineers and OT Champions) to foster a security-conscious culture.
• Work closely with operations teams, IT security, and other stakeholders to ensure effective collaboration and knowledge sharing.
• Research and evaluate emerging OT security technologies and solutions to enhance the security posture.
• Support the implementation of policies and systems to protect our OT environment
• Collaborate effectively with a globally operating team across multiple time zones to achieve shared goals and drive project success
• Accountable for the OT Security initiatives of his/her region – (Approx. 10-15 factories) from our global 65 factory footprint.
• Key stakeholders are global digital and security teams, plant and maintenance/engineering managers at our factories worldwide.
• Might require up to 50% travel to factories in the respective region depending on the priorities and ongoing projects.

About you

• Degree in Engineering/IT/technology/Automation, infrastructure security or a comparable field
• Minimum of 7 years of relevant working experience (working in an industrial automation (OT) environment).
• Advanced knowledge of industrial networks security, design and configuration of technologies such as Siemens and/or Rockwell automation  is required.
• Knowledge of international standards for industrial cyber security (ISO27001, NIST, IEC62443) are highly appreciated.
• Proficient in English
• Deep knowledge of industrial control systems, SCADA, PLC, DCS, and related technologies.
• Proficiency in network security concepts, protocols, and tools (firewalls, VPNs, intrusion detection/prevention systems).
• Experience with endpoint protection technologies (antivirus, anti-malware, EDR).
• Familiarity with industry standards and frameworks (NIST, IEC 62443, ISO 27001).
• Ability to conduct thorough risk assessments and develop effective mitigation strategies.
• Excellent communication and presentation skills to effectively engage with both technical and non-technical audiences.
• Strong analytical and problem-solving abilities to identify and address security challenges.
• Ability to collaborate on multiple projects simultaneously
• Commitment to staying up-to-date with the latest OT security trends and threats.
• Exhibits a passion for digital technology and innovation, constantly seeking new and creative solutions to enhance processes, decision-making and user experiences
• Collaborates well across diverse and globally distributed teams, with the ability to build and maintain positive relationships across different levels and functions of the organization
• Is a true team player, supporting their colleagues by sharing knowledge and experience and commits the teams’ joint success
• Possesses good problem-solving skills and analytical thinking
• Capable of effecting communication, conveying complex problems in a clear and persuasive manner to internal and external stakeholders
• Interested in continuous learning and improving his/her skills