It/ot Cybersecurity Specialist

We operate through four regional hubs: Milan for EMEA, Houston for the Americas, Perth for Australia Pacific, Taipei for Asia.

Our western power electronics secures performance, guarantees absolute cybersecurity and enables optimized system sizing, while our preferential Asian access offers a reliable, competitive, quality-assured battery supply.

World-class engineering and grid integration and forming expertise, coupled with local construction and commissioning capabilities, make for a bankable turnkey delivery platform.

NHOA Energy’s service platform combines global best practice with client proximity, enabling a tailored offering. We are committed to exceptional user experience, leveraging cutting-edge pre-emptive maintenance technology and immediate response capabilities to guarantee unparalleled availability.

Innovation, human capital, organization, financial strength and a flawless reputation of excellence, integrity and sustainability are the basis of our competitive advantage.

**Posizione**:

- The IT/OT Cybersecurity Specialist plays a key role in designing, implementing, and maintaining robust security measures to protect our organization's OT environments. The OT Cybersecurity specialist can:_
- 1._Follow execution projects, addressing technical specifications shared by the project engineering team;_
- 2._Work with R&D teams in new products security management and testing;_
- 3._Support the proposal team in the production of documentation on control systems cybersecurity measures that may be required during the bidding phase._
- The IT/OT Cybersecurity Specialist will have to deal directly with standardization processes, seeking always for new features and producing suitable instructions for the commissioning teams._

**Tasks**
- Provide technical support and cooperate with the Project Execution, Project Development, R&D and Commissioning teams.
- Design and implement security architectures for OT environments, ensuring the confidentiality, integrity, and availability of critical systems.
- Prepare documentation in accordance with project and product Engineering Plans (e.g. cybersecurity technical specifications, HW architecture diagrams).
- Conduct risk assessments and provide guidelines for enhancing the security posture of OT systems.
- Systems updates and patching: managing security updates on plant IT/OT devices.
- Vulnerability management: analyzing and updating plant IT/OT systems to ensure that known vulnerabilities are identified and promptly addressed.
- Backup management: implementation and maintenance of secure backup processes for IT/OT plant systems.
- Network security: implementing and reviewing firewall rules, network segmentation, creating secure VPNs, and introducing IDS or IPS where applicable to enhance the security of IT/OT networks and limit the spread of potential attacks.
- Threat detection: implementing tools to monitor IT/OT plant networks and detect threats, intrusions, or abnormal behaviors.
- Access control: verifying access permissions to IT/OT plant systems and networks, ensuring that only authorized personnel can access them.
- Develop and implement incident response plans for OT incidents.
- Lead and participate in the investigation and resolution of security incidents, providing timely and effective responses.
- Perform regular audits of OT infrastructure to identify and remediate vulnerabilities.
- Implement and manage security monitoring tools to detect and respond to potential threats in real-time.
- Work closely with the IT security team to ensure a holistic and integrated approach to cybersecurity.
- Collaborate with commissioning and service teams to integrate security best practices into system development and maintenance processes.
- Take responsibility for your health and safety and that of others by following HSE and office procedures, completing required training, reporting hazards or incidents.

**Requisiti**:

- Experience in OT cybersecurity, with a focus on securing critical infrastructure.
- Knowledge of OT protocols (e.g., Modbus, DNP3, OPC) and communication systems.
- Proficiency in programming languages (Phyton, C, C++ or C#).
- Experience with security tools such as IDS, firewalls, and antivirus solutions.
- Good knowledge of English.

**Altre informazioni**:
**Other information**:
Location: Cosio Valtellino (SO) OR Milan with availability to be in Cosio Valtellino 2/3 days a week.

**What we offer**:

- A permanent full time contract;
- An ambitious employer; we only want the best for you;
- Professional experience in an international environment with frequent contact with other colleagues and partner around the world;
- Strengthen cross-functional communication skills;
- Be part of the young (35 on avg.) and international (+26 nationalities) group and work in a dynamic and fast-moving environment;
- A fast career track like only few other companies can match;
- Always room for new ideas
- This announcement is addressed to both sexes,