×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer

Principal Consultant

Job in Cheltenham, Gloucestershire, GL50, England, UK
Listing for: NCC Group
Full Time position
Listed on 2025-12-21
Job specializations:
  • Engineering
    Cybersecurity, Systems Engineer
  • IT/Tech
    Cybersecurity, Systems Engineer
Job Description & How to Apply Below

Position Title:
Principal Consultant - OT

Location:
Manchester

Please note: Applications will close on Sunday, 4 January 2026
. Our review process will commence on Friday, 2 January 2026
. We appreciate your interest and look forward to connecting with you soon. Wishing you an enjoyable festive season.

Role Purpose

As a Principal OT Consultant in NCC Group's Global OT Consulting and Implementation (C&I) division, you ll be at the forefront of protecting critical infrastructure
. Your role is pivotal in providing advanced Cyber Security Assurance and Engineering to suppliers, owners, and operators, helping them safeguard essential processes and equipment.

You will lead project teams, build and maintain trusted client relationships, and spearhead assessments. You ll translate complex technical findings into clear, actionable roadmaps and ensure adherence to internal policies. Moreover, you ll play a key role in supporting sales activities and mentoring junior consultants, contributing to our collective growth. You will also work closely with the OT Practice Director to expand our global engineering capabilities, which includes remote and on-site work in industrial environments like manufacturing, energy generation, oil & gas, and transportation systems.

Summary

NCC Group specializes in offering comprehensive, engineering-focused cyber assurance services. Our goal is to assist organizations in understanding their operating environment and technology risks, then implementing robust safeguards.

Our services encompass a wide range of disciplines, including:

  • Strategic & Architectural Services: Roadmaps, Architecture design and review, IT/OT convergence assessments, and digital transformation programs.
  • Risk & Assessment: Threat modeling, risk assessments, gap analyses against standards like IEC 62443
    , and pre/post-merger & acquisition due diligence.
  • Operational Security: Testing on equipment and production facilities, developing processes and guidelines for reliable and safe operations, security awareness training, and incident response planning.
  • Advanced Capabilities: Managed services, DFIR (Digital Forensics and Incident Response), Penetration Testing, and Safety reviews.

This role offers a unique opportunity for experienced cyber security professionals to leverage their skills to deliver high-quality, impactful solutions and foster enduring client relationships.

What we are looking for in you

Technical Expertise:

  • Successfully apply cyber security engineering patterns to constrained operating environments, including industrial control systems (ICS), distributed control systems (DCS), and their integration with enterprise systems.
  • Design and implement security controls specific to industrial environments (e.g., manufacturing, energy (DER), water, and/or transportation).
  • Provide expert consulting services for IT/OT convergence challenges and solutions.

Project Leadership & Execution:

  • Lead engagements and workshops with suppliers and operators to facilitate IEC 62443 Initial Risk Assessments and prepare security cases for regulatory submission.
  • Deliver projects that result in high-fidelity, fact-based technical reports and impactful, executive-level presentations.
  • Perform comprehensive gap analyses against industrial and critical infrastructure standards and frameworks.

Analytical Abilities:

  • Understand and interpret Data Flow Diagrams (DFDs), Functional Design Specifications (FDS), Bills of Materials (BOM/SBOM), High/Low-Level Design (HLD/LLD), and network architecture diagrams.
  • Combine threat modeling methodologies like MITRE with frameworks such as IEC 62443
    .

Operational & Communication

Skills:

  • Excellent communication, consulting, and presentation skills, with exceptional written reporting abilities.
  • Possess practical experience as a controls systems engineer or in industrial engineering, with a strong prioritization of the safety of people, equipment, and the environment
    .
  • Willingness to travel to client industrial sites as necessary and support international teams remotely.
Desired

Skills and Qualifications
  • Relevant

    Certifications:

     Industry-recognized certifications such as CISSP, CISM, CRISC, CISA
    , or a recognized OT…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search