Job Description

We are currently looking for an enthusiastic individual to join our Central Engineering team in the position of Operational Technology - Cybersecurity Lead.



The Purpose of the Operational Technology (OT) - Cybersecurity Lead is responsible for developing, implementing, and maintaining cybersecurity Goals, Strategies and Controls for all operational technology (OT) environments -- including industrial control systems (ICS), SCADA networks, and critical infrastructure.

A key interface between Operational and Engineering functions and the IT function, a key responsibility will be ensuring that systems and processes and specified, defined and implemented supporting not only technological advancement but business improvement and continuity.

This role ensures the confidentiality, integrity, and availability of OT systems while maintaining safe, reliable, and compliant operations.

Your duties would include but not limited to the following:

Act as the primary point of contact between cybersecurity, operations, engineering, IT and external partners/vendors. Provide guidance and training to site engineers and technicians on cybersecurity awareness and best practices. Represent OT cybersecurity in leadership meetings, audits, and customer engagements. Develop and execute the organization's OT cybersecurity strategy and roadmap aligned with business objectives and regulatory requirements. Define OT security standards, policies, and procedures consistent with NIST, IEC 62443, ISO 27019, and other relevant frameworks. Establish governance structures to manage OT security risks across plants, facilities, and critical systems that align to existing business risk methodologies. Alongside the IT Department, Identify, assess, and manage OT cybersecurity risks through risk assessments, threat modeling, and vulnerability management. Ensure compliance with industry regulations (e.g., NERC CIP, ISA/IEC 62443, NIS2, or local critical infrastructure laws). Lead audits, assessments, and incident investigations related to OT cybersecurity. Design secure network architectures for OT systems, including segmentation between IT and OT environments. Oversee the implementation of security controls such as firewalls, intrusion detection/prevention systems, and endpoint protection for OT assets. Collaborate with engineering teams to ensure cybersecurity is integrated into control systems lifecycle (design, build, operate, maintain). Stay current on emerging OT threats, vulnerabilities, and technologies. Lead maturity assessments and continuous improvement initiatives to strengthen the OT security posture. Drive innovation in areas such as anomaly detection, zero-trust architecture, and secure remote access Provide technical expertise in process control and automation technologies - PLCs, SCADA, DCS, Control (or a subset) Working alongside the Process Improvement Team support communications protocols; OPC classic, OPC UA, field and level 2 protocols (profinet, modbus etc) Develop the and maintain the business standards maintaining compliance with IEC 62443 (mainly -3-3) and the guidance that the HSE publishes (OG-86) Develop Real-Time Intelligence and Analytics Systems utilising a good understanding of the ISA95 framework for OT networks Work alongside the IT Department on the Information Security Management System (ISMS) ISO27001 Demonstration of a risk-based approach to solution architecture design, working with the Process Improvement team on safety to build a holistic cybersecurity & OT/IT concept Develop OT networking, firewall, security appliance configuration, network monitoring, IDS/IPS, and bringing good practice into OT/IT convergence points Apply a risk-based approach to managing existing assets and designing new architectures - performing risk analyses (e.g working with process engineers and influencing machine safety) and designing architectures based on identified mitigations Manage incident response experience, such as critical CVE that needs urgent patching - how this was managed and how they would work with other teams to remediate this - again, risk-based approach Supporting requirements engineering when writing technical specifications, URS (User Requirement Specifications) RFQs etc for installation/upgrade projects Manage and develop the Change Management Process for OT/Cybersecurity Develop Business Case and Capital Applications where required and support project implementation.

About You:

Project Engineering Experience desirable Experience with Siemens TIA, Industrial Edge, Networking and Hardware systems highly desirable. Deep understanding of industrial control systems (ICS), SCADA, DCS, PLCs, and related technologies. Knowledge of OT security frameworks and standards: IEC 62443, NIST SP 800-82, ISO 27001, NERC CIP, etc. Expertise in network security, threat management, and incident response in OT environments. Strong risk management, governance, and policy development skills. Ability to collaborate across multidisciplinary teams -- engineering, operations, IT, and leadership. Excellent communication and leadership abilities, with the capability to translate complex technical risks into business impact. Bachelor's degree in Cybersecurity, Engineering, Computer Science, or suitable, demonstratable experience and industry qualification/full apprenticeship/training (e.g Cisco IMINS2) 8+ years of experience in cybersecurity, with at least 3-5 years in OT/ICS environments. Certifications such as GICSP, CISSP, CISM, ISA/IEC 62443 Expert, CCSP, or CompTIA Security+ preferred. Holder of a full driving licence

What We Can Offer You:

Competitive Salary and Benefits package Life Assurance and Company Pension Scheme up to 10% employer contribution Generous holiday allowance Gym benefit and Cycle 2 Work Scheme Access to Employee Assistance Programme for self and family members Employee Referral Scheme Service Awards Sharesave Scheme eligibility Holiday Exchange Scheme Financial Wellbeing Program Personal development and opportunities for progression Company Annual Bonus Scheme

We are a leading manufacturer of a diverse and trusted range of concrete and clay building products used extensively within the construction sector, with instantly recognisable brands including Thermalite block, Bison Precast and the iconic London Brick.



Our complete product range comprises of clay bricks, aircrete blocks, aggregate blocks, precast concrete, flooring products, permeable paving and chimney, roofing, and flue systems.



Forterra's purpose is to build lasting legacies, manufacturing a range of products from the ground up to support customers with their construction projects.



We are proud to be at the forefront of the industries' safety standards and are committed to achieving zero harm in our workplaces.