Specialist - Cybersecurity (OT & Cyber Physical)

Internal Communication

Purpose

Provide updates on OT security program progress, incidents, and compliance status.
Coordinate OT assessments, remediation efforts, and incident response activities.
Collaborate on vessel IT/OT system integration, troubleshooting, remediation, and technical support.
Embed OT security into system lifecycles and new cyber-physical projects.
Align OT monitoring, vulnerability management, and incident handling with enterprise security operations.

Occupational Health and Safety & Environment
Accountability
Are accountable for their acts and omissions.

Responsibility

To follow agreed safe systems of work; to follow training and instructions; and to report accidents, incidents and near misses.

Authority
To stop work if they think the work is unsafe.

Education & Professional Qualification

Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, Electrical/Control Engineering, or related field.
Professional certifications preferred: GICSP, ISA/IEC 62443, CISSP, CISM, or equivalent OT/ICS security credentials.

Professional Experience

6-8 years of experience in cybersecurity, with at least 3–5 years focused on OT/ICS or cyber-physical systems security, including experience with vessel OT systems or shipboard cyber audits.
Proven experience leading OT security assessments, remediation, and incident response activities.
Familiarity with maritime or industrial environments (e.g., shipping, logistics, energy) is highly desirable

Technical Expertise

Strong knowledge of OT/ICS protocols, architectures, and vulnerabilities.
Hands-on experience with OT system monitoring, incident response, and threat detection.
Understanding of international standards and regulations: IMO 2021 Guidelines, IACS E26/E27, NIST CSF, ISA/IEC 62443.
Knowledge of IT/OT integration, vessel IT systems, and supporting technologies

Soft Skills

Strong analytical and problem-solving skills, with ability to prioritize remediation activities in complex environments.
Effective communicator, able to collaborate with fleet operations, IT, vendors, and regulators.
High integrity and resilience under pressure, with a proactive and hands-on approach.
Ability to train and influence both technical and non-technical stakeholders (e.g., vessel crews, fleet IT support, BU leaders, operations manager).

OT Security Program

Lead Milaha’s Vessel OT Cybersecurity Program (assessment and remediation workstreams) as the primary focus, ensuring alignment with IMO and IACS standards.
Maintain OT/ICS security baselines, risk register, and remediation roadmap, extending practices to cyber-physical systems in innovation projects.
Ensure continuous improvement of OT security posture through assessments, gap closure, and stakeholder engagement.

OT Security Operations

Manage OT security monitoring, vulnerability management, and anomaly detection across vessel systems.
Coordinate OT incident response activities, develop OT-specific playbooks, and integrate maritime threat intelligence into OT operations and response planning.
Work with SOC/MSSP partners and fleet operations teams to triage, contain, and recover from OT-related incidents.
Ensure enterprise-wide visibility and alignment with Milaha’s overall incident management framework

Compliance & Regulatory Alignment

Ensure ongoing compliance with IMO 2021 Guidelines, IACS Unified Requirements (E26/E27), and other maritime cybersecurity obligations.
Support regulatory inspections, classification society reviews, and client cybersecurity audits with OT-specific evidence.
Monitor evolving OT regulatory and industry standards, embedding them into Milaha’s OT security framework.

Resilience & Continuity

Integrate vessel OT and other operational systems into Milaha’s Business Continuity and Disaster Recovery Plans (BCP/DRP).
Conduct OT-focused resilience drills and simulations to validate readiness and recovery capabilities.
Align OT recovery strategies with enterprise-wide continuity and disaster recovery requirements.

Stakeholder & Vendor Engagement

Collaborate with Milaha Ship Management, engineering, and innovation project teams to embed OT security in daily operations and new system lifecycles
Provide OT cybersecurity awareness and training to vessel crews and technical staff.
Act as the security liaison with OT vendors, shipyards, and classification societies to ensure secure integration and lifecycle governance.
Provide OT cybersecurity assurance and audit support for fleet OT systems, shipboard inspections, and classification reviews.

Assignments

Undertake additional cybersecurity tasks or projects as assigned within the department.
Support other cybersecurity initiatives or assignments as required, contributing expertise to cross-pillar to strengthen Milaha’s overall cybersecurity posture

Education & Professional Qualification

Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, Electrical/Control Engineering, or related field.
Professional certifications preferred: GICSP, ISA/IEC 62443, CISSP, CISM, or equivalent OT/ICS security credentials.

Professional Experience

6-8 years of experience in cybersecurity, with at least 3–5 years focused on OT/ICS or cyber-physical systems security, including experience with vessel OT systems or shipboard cyber audits.
Proven experience leading OT security assessments, remediation, and incident response activities.
Familiarity with maritime or industrial environments (e.g., shipping, logistics, energy) is highly desirable

Technical Expertise

Strong knowledge of OT/ICS protocols, architectures, and vulnerabilities.
Hands-on experience with OT system monitoring, incident response, and threat detection.
Understanding of international standards and regulations: IMO 2021 Guidelines, IACS E26/E27, NIST CSF, ISA/IEC 62443.
Knowledge of IT/OT integration, vessel IT systems, and supporting technologies

Soft Skills

Strong analytical and problem-solving skills, with ability to prioritize remediation activities in complex environments.
Effective communicator, able to collaborate with fleet operations, IT, vendors, and regulators.
High integrity and resilience under pressure, with a proactive and hands-on approach.
Ability to train and influence both technical and non-technical stakeholders (e.g., vessel crews, fleet IT support, BU leaders, operations manager).

Similar jobs