The Planet Group have recently been engaged by a global manufacturing organisation who service the Industrial, Aerospace, Defence and Transportation markets. We are looking for an experienced OT Security Manager (Operational Technology) to join the team remotely on a permanent basis.  

Position Overview:

The OT Security Manager is responsible for establishing and managing the organisation’s OT security operating model across manufacturing and engineering environments where downtime, safety, and regulatory compliance are critical risks. The role focuses on governance, security controls, remediation initiatives, and integrating OT monitoring and incident response with central security operations, while also supporting assurance and evidence for regulated requirements.

The position covers OT/ICS security across manufacturing networks and related systems (e.g., OT endpoints, PLC/SCADA/MES interfaces) and provides risk-based oversight, security architecture guidance, and governance, without replacing site engineering ownership or acting as a general IT operations role.

Duties & Responsibilities:

• OT Security Governance: Define and implement the OT security operating model, including standards, RACI, and escalation paths, in partnership with Engineering and Operations.
• Strategy & Design: Develop and manage OT security policies, procedures, and strategies aligned with organisational goals, industrial standards, and regulatory requirements.
• OT Risk Management: Maintain an OT risk register and site-level risk documentation, ensuring risks are tracked, owned, and escalated appropriately.
• Asset Management: Build and maintain OT asset inventories, classification, and criticality mapping, with defined ownership and maintenance responsibilities.
• Vulnerability Management: Apply OT-specific vulnerability management practices, including safe patching, compensating controls, and change validation.
• Segmentation & Boundary Controls: Implement and assure IT/OT network segmentation, access controls, and remote access policies in collaboration with site teams.
• Secure Architecture & Change Governance: Provide security input to architecture and change processes to ensure plant-impacting changes are safely assessed, scheduled, and executed.
• Monitoring & Incident Readiness: Integrate OT monitoring with the SOC, define detections and incident runbooks, conduct tabletop exercises, and track follow-up actions.
• Recovery & Resilience: Establish expectations for OT backup and recovery, supporting resilience planning for critical systems.
• Compliance Support: Assist with Defence and corporate compliance for OT (e.g., DEFCON, CSM, CE+, CMMC), focusing on control implementation and evidence.
• Limited IT Assurance: Perform OT-relevant control checks and evidence validation, coordinating with IT GRC/PMO on agreed controls.
• Mentoring & Team Development: Guide and mentor team members to achieve individual and team objectives.
• Documentation & Communication: Produce OT security standards, procedures, and site guidance in practical, stakeholder-friendly language

• Proven experience in Cyber Security management, specifically within an OT environment.
• Strong understanding of relevant security frameworks and standards, and ability to translate them into practical OT controls and evidence.
• Strong stakeholder management across Engineering/Operations and IT; ability to drive adoption without disrupting production.
• Excellent analytical, problem-solving, and decision-making skills.
• Vendor management and delivery oversight experience.
• Strong written and verbal communication skills, including producing clear technical and process documentation.
• Degree qualified in a relevant discipline.

• Knowledge of OT-focused standards (e.g., IEC 62443, NIST 800-82) and experience supporting regulated Defence environments.
• Experience integrating OT telemetry into SIEM/SOC and developing OT detections and playbooks.
• Experience with assurance/control testing approaches and evidence pack preparation.