Cyber Defense Consultant - SME
- Design and maintain enterprise security architecture aligned with business, technology, and compliance requirements.
- Define security standards, reference architectures, patterns, and guardrails for cloud, network, applications, identity, data, and infrastructure.
- Review solution designs and ensure security requirements are embedded from the early design stage.
- Conduct security architecture assessments for new systems, platforms, integrations, and transformation programs.
- Identify security risks, recommend controls, and support risk treatment plans.
- Work with infrastructure, cloud, application, network, IAM, SOC, GRC, and OT teams to ensure secure-by-design implementation.
- Translate business and technical requirements into practical security controls.
- Support implementation of Zero Trust, defense-in-depth, segmentation, least privilege, secure access, and secure monitoring models.
- Define security requirements for third-party integrations, APIs, remote access, cloud workloads, and critical systems.
- Support security governance by reviewing exceptions, deviations, and architecture waivers.
- Provide technical guidance to project teams during design, build, testing, and deployment phases.
- Ensure solutions comply with internal policies, regulatory requirements, and relevant standards such as ISO 27001, NIST, CIS, IEC 62443, and other applicable frameworks.
- Collaborate with SOC and operations teams to ensure security logging, monitoring, detection, and response requirements are included in solution designs.
- Maintain security architecture documentation, diagrams, decision records, and control mappings.
- Stay updated on emerging threats, security technologies, and architecture best practices.
- 8+ years of experience
- Experience with Operational Technology environments, including industrial control systems, SCADA, PLCs, HMIs, engineering workstations, historians, and industrial networks.
- Understanding of OT network architecture, Purdue Model, industrial zones and conduits, and IT/OT segmentation.
- Experience designing secure remote access solutions for OT vendors, engineers, and support teams.
- Knowledge of OT security standards and frameworks, especially IEC 62443, NIST SP 800-82, and relevant critical infrastructure security practices.
- Ability to assess OT risks while considering safety, availability, production continuity, and operational constraints.
- Experience with OT asset discovery, visibility tools, network monitoring, and passive detection technologies.
- Familiarity with industrial protocols such as Modbus, DNP3, OPC, Profinet, EtherNet/IP, BACnet, or similar.
- Experience supporting OT vulnerability management, compensating controls, and risk-based remediation.
- Ability to design secure OT network segmentation, firewall rules, jump servers, DMZ architecture, and controlled data flows between IT and OT.
- Knowledge of secure backup, disaster recovery, patching constraints, and lifecycle management for OT systems.
- Experience working with plant operations, engineering teams, automation vendors, SOC, and cybersecurity teams.
- Ability to balance cybersecurity requirements with operational safety, uptime, and site-specific limitations.
- Experience supporting OT incident response planning, tabletop exercises, and security monitoring use cases.
- Understanding of physical security, safety systems, and their relationship with cybersecurity in industrial environments.
- Experience preparing OT security documentation, architecture diagrams, risk assessments, and remediation roadmaps.
Riyadh
Oportunidades Iguais de Emprego
Todas as decisões de recrutamento e contratação devem ser tomadas sem levar em consideração idade, raça, credo, cor, religião, sexo, nacionalidade, ascendência, status de invalidez, condição de veterano, orientação sexual, identidade ou expressão de gênero, informação genética, estado civil, status de cidadania ou qualquer outra base protegida por leis federais, estaduais ou locais.
Os candidatos às vagas não serão obrigados a divulgar registros de condenações ou detenções, selados ou eliminados, como parte do processo de contratação. A Accenture está empenhada em fornecer oportunidades voltadas para os veteranos, nossos homens e mulheres de serviço.
Buscamos perfis que estejam alinhados aos valores da empresa, entusiastas em trabalhar em um ambiente colaborativo e dinâmico, com excelência na entrega e inovação presentes em seu dia a dia. Valorizamos competências independentemente de raça, idade, gênero, orientação sexual, credo, deficiência e convicção política. A diversidade das nossas pessoas é o que nos permite cumprir a promessa da tecnologia e da criatividade humana. Reconhecemos as características únicas dos indivíduos, respeitamos as diferenças e investimos em um ambiente cada vez mais inclusivo.
We work with one shared purpose: to deliver on the promise of technology and human ingenuity. Every day, more than 775,000 of us help our stakeholders continuously reinvent. Together, we drive positive change and deliver value to our clients, partners, shareholders, communities, and each other.
We believe that delivering value requires innovation, and innovation thrives in an inclusive and diverse environment. We actively foster a workplace free from bias, where everyone feels a sense of belonging and is respected and empowered to do their best work.
At Accenture, we see well-being holistically, supporting our people’s physical, mental, and financial health. We also provide opportunities to keep skills relevant through certifications, learning, and diverse work experiences. We’re proud to be consistently recognized as one of the World’s Best Workplaces™.
Join Accenture to work at the heart of change. Visit us at www.accenture.com.