OT网络安全专家

Job Description

We are EDP, a global energy company present in around 29 markets with a particular emphasis on renewable energies. With more than 45 years of experience, we have been consolidating a relevant presence on the world energy scene based on the commitment to be all-green by 2030, leading the energy transition. With more than 13,000 employees around the world, we are committed to using our energy and heart to drive a better tomorrow.

The mission of this role is to support the security, resilience, and compliance of RGA's WS&S Operational Technology (OT) environments across different regions.

The OT Cybersecurity Specialist will contribute to the implementation and continuous improvement of cybersecurity standards, controls, and architectures aligned with EDP Group governance and applicable regulations. The role will support secure operations across the renewable energy portfolio while providing an excellent opportunity to grow in an international OT cybersecurity environment.

This professional will work closely with cross-functional teams, helping to strengthen cybersecurity practices, support projects, and contribute to the consistent application of OT cybersecurity requirements across the organization.

What you will do

Governance, Policy, and Compliance

• Support the development, maintenance, and communication of OT cybersecurity policies, standards, and procedures aligned with corporate governance and applicable regulations.
• Contribute to compliance activities related to OT cybersecurity frameworks and regulatory requirements, such as IEC 62443, NIS2, and other relevant standards.
• Participate in risk assessments, gap analyses, and audits, helping define mitigation and improvement actions.
• Support the integration of cybersecurity requirements into OT operations and projects.
• Collaborate with regional stakeholders to follow up on compliance roadmaps and action plans.

Projects and Architecture

• Support the design and review of secure OT architectures, including network segmentation, remote access, and data flow control.
• Contribute to the definition of functional and technical requirements for OT cybersecurity systems and solutions.
• Participate in the technical evaluation of suppliers and cybersecurity solutions for OT environments.
• Work with Engineering, IT, and Operations teams to help embed Security by Design in new assets, systems, and upgrades.
• Support the coordination and follow-up of OT cybersecurity projects, ensuring alignment with priorities, timelines, and expected deliverables.

Cybersecurity Operations and Incident Management

• Support the development, testing, and improvement of OT incident response plans in coordination with cybersecurity teams.
• Contribute to vulnerability management, monitoring, and incident analysis activities in OT environments.
• Assist in troubleshooting and root cause analysis of OT cybersecurity-related issues.
• Help ensure that lessons learned from incidents are reflected in standards, processes, and technical improvements.
• Collaborate with internal teams during incident response activities and escalation processes.

Training, Awareness, and Continuous Improvement

• Support cybersecurity awareness initiatives for OT operations and maintenance teams.
• Participate in drills, workshops, and tabletop exercises to strengthen OT incident response capabilities.
• Contribute to the evaluation of new technologies and approaches that can improve OT cybersecurity.

Strategic Initiatives

• Contribute to OT cybersecurity roadmap activities aligned with business priorities and regulatory needs.
• Participate in working groups related to compliance, risk management, and technology standardization.
• Support the rollout of global cybersecurity initiatives, such as monitoring, privileged access, and other security improvement programs.

What are we looking for

• University degree in Electrical, Electronic, Automation, Energy or Telecommunications Engineering, or another relevant technical field.
• Additional education in Cybersecurity or Technology Risk Management is a plus.
• English: fluent (mandatory); Portuguese: fluent (mandatory) and Spanish: highly valued.
• 5 years of experience in OT, industrial, or critical infrastructure environments.
• Familiarity with systems such as SCADA, PLCs, industrial networks, or similar technologies.
• Exposure to OT cybersecurity topics such as network segmentation, secure remote access, vulnerability management, or compliance activities.
• Experience in industrial infrastructure, energy, utilities, or related sectors is valued.
• Experience working in international or multi-stakeholder environments is a plus.
• Good understanding of OT/ICS cybersecurity concepts and industrial environments.
• Familiarity with industrial communication protocols.
• Understanding of industrial networking concepts such as firewalls, VLANs, VPNs, routing, DMZs, and remote access.
• Awareness of OT cybersecurity frameworks and standards such as IEC 62443, NIST, ISO 27001, NIS2, or similar.
• Exposure to areas such as incident response, asset inventory, monitoring, or vulnerability management is valued.
• Familiarity with SOC, SIEM, or OT monitoring concepts is a plus.
• Good communication and collaboration skills in multicultural environments.
• Analytical mindset and structured problem-solving approach.
• Ability to work across technical and non-technical teams.
• Proactive attitude, accountability, and willingness to learn.
• Ability to manage multiple topics with good organization and follow-up.
• Interest in continuous improvement and development in OT cybersecurity.

More than academic knowledge and technical skills, we are looking for ambitious people who are enthusiastic about the future and who bring human skills aligned with our purpose.

Equal opportunities for all

Our vision is that each person combines their unique characteristics and experiences to fulfill our mission of creating new energy for the planet. We are an inclusive employer, ensuring all candidates are treated fairly throughout the recruitment process. We welcome and value all people, and we are committed to fostering a sense of belonging for each person who is part of the EDP group.

Need more reasons to apply?

As a top employer we:

• Empower our employees through a positive and innovative work environment that promotes collaboration and agile decision-making;
• Respect and value each person, providing a flexible, healthy, and inclusive workplace with a range of attractive benefits;
• Provide a meaningful work experience and prepare our people for future challenges through different opportunities for development and internal mobility;

Our efforts have resulted in several distinctions over time, highlighting the EDP group's strong positioning and its dedication and commitment to attracting and retaining the best talent:

• Top employer certification by Top Employers Institute
• Part of the Bloomberg Gender-Equality Index
• Global certification as a family-responsible company by Fundación Másfamilia
• Top 100 Workplaces by Houston Chronicle

Discover our tips to enhance your performance during the recruitment process and apply until 27/04/2026 if you think you are the right fit for this opportunity.