Marsh McLennan

OT Cybersecurity Consulting Director

Marsh McLennan

full-time

Posted on:

Location Type: Hybrid

Location: LimaMexico

Visit company website

Explore more

AI Apply
Apply

Job Level

Lead

Tech Stack

Cyber SecurityFirewalls

About the role

  • Work autonomously as an expert in the OT cyber risk and security space to support Marsh’s business in a department which is experiencing a double-digit annual growth rate
  • Be a part of Marsh’s cyber risk consulting practice offering multiple types of cyber risk assessments and cybersecurity transformation projects
  • Offer expertise to our extensive client base throughout Canada and in other regions as necessary
  • Client and team related travel to Canada and in the rest of the Americas for in-person meetings and/or site visits
  • Actively contribute to thought leadership and business development, internally and externally
  • Take the lead for one or more type of offerings such as for example “OT Security Services”, “OT Monitoring Solutions”, “Cyber Incident Response Planning”, “Cyber Risk Quantification”, etc.
  • Lead client engagements by conducting security program assessments, cybersecurity transformations, security architecture reviews, etc.
  • Remain up to date on the latest cyber-attack techniques and cybersecurity solutions
  • Build and maintain excellent relationships with prospects and client organizations, as well as our internal network of client facing colleagues who open doors to new project opportunities

Requirements

  • Excellent English speaking and writing capabilities (main language of work)
  • Completion of relevant certifications: GCIP, GICSP, ICSP, ISASecure, CISSP, CISM, etc.
  • Degree in Computer Science, OT Security, Information Security, or related field
  • Alternatively strong field / hands-on experience in OT and OT Security
  • 7-15 years of experience in OT Security
  • At least 5 years of experience in an advisory or external consulting capacity
  • A strong ability and experience of analyzing client needs in order to design, propose and manage consulting projects, including facilitation of workshops and production of deliverables
  • A strong degree of technical familiarity with site and enterprise security architecture (PCLs and HMI, Firewalls and other Network Security Devices, Virtualization, Storage, Backups Technology, OT Monitoring Solutions, SIEMs, EDRs, etc.), Network Protocols, Operating Systems, OT Specific Solutions
  • A strong knowledge and experience of using major cybersecurity frameworks in security assessment projects (IEC 62443, NIST 800-82, NIST CSF / 800-61, CIS 18, ISO 27001, etc.)
  • A strong understanding of security management domains such as: Vulnerability and Configuration Management, Network and Application Security Testing, Incident Response Planning & Table-Top Exercises, Disaster Recovery Planning, Email and Web Security, Security Awareness, Vendor Risk Management, Secure Software Development Practices, etc.
  • A strong knowledge with possible hands-on exposure to Cyber Incident Management, IT Forensics, Penetration Testing and/or Quantification of Cyber Risk Scenarios would be a plus
  • Experience working and managing projects in a fast-paced environment under tight timelines
  • Research and analytical skills with the ability to clearly and articulately identify and define problems and develop creative solutions to address client needs
  • Excellent communication skills (written and verbal), including ability to develop and deliver presentations, lead interviews, and facilitate client workshops
  • Proven relationship development and management skills with demonstrated ability to interact, establish credibility and engender trust with a wide range of professionals across all levels
Benefits
  • Professional development opportunities
  • Vibrant and inclusive culture
  • Flexible working arrangements
  • Talent collaboration with colleagues
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
OT SecurityCybersecuritySecurity Program AssessmentsCybersecurity TransformationsSecurity Architecture ReviewsNetwork Security DevicesCyber Incident ManagementPenetration TestingCyber Risk QuantificationVulnerability Management
Soft Skills
Analytical SkillsCommunication SkillsRelationship DevelopmentProject ManagementProblem SolvingFacilitationLeadershipClient EngagementBusiness DevelopmentThought Leadership
Certifications
GCIPGICSPICSPISASecureCISSPCISM