Job Title

Role: Principal Consultant - OT (Rail/Transport Industry) Location: Sydney, NSW We are on a mission to make society a safer and more secure place. Our people are the ones who make that possible; a global community of talented individuals working together towards a safer future. Summary NCC Group specialises in offering comprehensive Cyber Assurance and engineering services to help businesses fortify their cybersecurity posture. This encompasses defining security strategies, conducting risk assessments, developing policies, providing security awareness training, and offering ondemand cyber expertise. Our core services range from strategy and governance to incident response planning, 62443 assessments, bespoke services, managed services, security architecture review, SOC, monitoring, DFIR, penetration testing, safety reviews and cyber transformation programmes. Role Purpose / Responsibilities Provide Cyber Security Assurance and Engineering to businesses, safeguarding critical systems and information assets. Build and maintain trusted client relationships, manage teams, conduct assessments, and translate technical findings into actionable roadmaps. Ensure adherence to internal policies and procedures, support sales activities, and mentor junior consultants to drive knowledge sharing and growth. Collaborate with the Global OT Director to expand global engineering capabilities and support the development of the C&I capability globally, including travel where necessary. Required Skills Assess and develop cyber security engineering solutions for industrial control systems (ICS), SCADA, and other OT environments. Provide expert consulting in IT & OT convergence, ideally focused on the rail sector, specifically commissioning depots or manufacturing facilities. Perform risk assessments and gap analyses against NIST, IEC62443 and other industry standards. Lead workshops with suppliers and operators to facilitate 62443 Initial Risk Assessments, Detailed Risk Assessment processes and artifacts, and prepare security cases for regulatory submission. Design and implement security controls specific to industrial environments. Manage teams and projects that create and deliver technical reports and executive presentations for clients. Understand emerging threats, vulnerabilities and security solutions specific to OT environments and protocols. Support international teams remotely and travel to client sites where necessary. Excellent written and verbal communication, consulting and presentation skills. Recognised OT qualification such as GIACGICSP, 62443 or similar. Delivered OT projects within a critical national infrastructure client, ideally in the transport subsector. Combine MITRE Threat Modelling, OT & Enterprise, aligned to IEC/ISA62443. Experience with TS50701 (IEC63452) standard. Practical experience as a controls systems engineer or industrial engineer with SCADA, DCS or EMS. Experience in Transport or Rail preferred. Desired Skills and Qualifications Certifications such as CISM, CISSP, CRISC, ISO27001LI/LA, CISA advantageous. A degree in a sciencerelated topic (e.g. Mathematics, Computer Science, Engineering, Physics) or significant operational work experience. Proficiency in managing people and building teams, with the ability to lead and develop individuals effectively. Willingness and capability to prioritise safety of people, equipment and the environment when working in hazardous or operating environments. Behaviours Focusing on Clients and Customers. Working as One NCC. Being Inclusive and Respectful. Delivery Brilliantly. Enabling Performance. About NCC Group The NCC Group family has over 2,000 members worldwide, providing trusted advisory services to 15,000 customers. Born in the UK, we now have offices in North America, Canada, Europe, AsiaPacific and the United Arab Emirates. We are passionate about protecting our customers'' brand, value and reputation against the everevolving threat landscape. Our values and code of ethics are at the heart of how we operate we work together, are brilliantly creative and embrace difference. Everyone is treated with equal respect. We create an environment where all colleagues feel psychologically, emotionally and physically safe to be authentic, sharing personal experiences to represent the diversity of the world we live in. About Your Application We review every application and will contact you if your skills and experience match what were looking for. If you do not hear back within 10 days, we may keep your CV on our database for future vacancies. If you do not want us to retain your details, please email [email protected]. This role requires background clearance as mandatory due to the nature of the work. To apply, you must be willing to undergo the vetting process. #J-18808-Ljbffr