OT/ICS Security Engineer – FortiSIEM Specialist Location: UK (Hybrid/Remote options depending on candidate) Contract length: 12 months Start: Immediate / ASAP

We are partnering with a leading organisation undergoing a major uplift of their OT/ICS security capability. They are seeking an experienced OT/ICS Security Engineer with strong FortiSIEM expertise to enhance monitoring, compliance, and incident response across critical industrial environments.

Key Responsibilities

Strengthen OT/ICS security across SCADA, DCS, EMS, and field‑level systems. Lead FortiSIEM administration and content engineering, including log onboarding, rule creation, parsing, correlation, and dashboard/report development. Support compliance programmes covering NIS CAF, IEC 62443, NERC CIP, ISO 27001, NIST, or similar frameworks. Drive OT incident detection and low‑impact containment, supporting response activities across industrial assets. Manage and optimise the wider Fortinet ecosystem (FortiGate, FortiAnalyzer, FortiManager). Work with ICS protocols and architectures including Purdue, IEC 61850, DNP3, Modbus, and IEC 60870‑5‑104. Oversee OT vulnerability and risk management activities, applying compensating controls where patching or modification is restricted. Build automation, parsers, and integrations using Python, APIs, and scripting. Develop monitoring and use cases for OT assets such as IEDs, HMIs, historians, PLCs, and field controllers. Engage cross‑functional stakeholders, manage change control, coordinate with vendors, and maintain a safety‑critical mindset. Essential Skills & Experience

Proven experience in OT/ICS security, industrial networks, or critical infrastructure. Hands‑on FortiSIEM engineering experience (administration, content, rules, and dashboards). Strong knowledge of Fortinet security technologies. Familiarity with ICS/OT protocols and architectures. Strong scripting/automation capability (Python preferred). Experience working within regulated environments or frameworks (NIS, NIST, IEC 62443, etc.). Confident working with stakeholders, engineers, vendors, and operational leads. Preferred Certifications

GICSP IEC 62443 (any track) ISO 27001 Lead Implementer/Auditor CISSP Fortinet NSE (any level beneficial)