OT Security Architect

Job Description

Choosing Capgemini means choosing a company where you will be empowered to shape your career in the way you’d like, where you’ll be supported and inspired by a collaborative community of colleagues around the world, and where you’ll be able to reimagine what’s possible.

Join us and help the world’s leading organizations unlock the value of technology and build a more sustainable, more inclusive world.

Capgemini is currently seeking an experienced OT Security Architect to join our cybersecurity team. In this role, you will design and lead the implementation of industrial cybersecurity solutions for our clients, ensuring the protection and resilience of their Operational Technology (OT) and Industrial Control Systems (ICS/SCADA) environments. You will be responsible for defining the security strategy, framework, and architectures to mitigate risks, safeguard operational continuity, and secure critical infrastructure. Your work will involve designing secure OT architectures, ensuring solutions meet compliance standards (IEC 62443, NIST 800-82, ISO 27019, etc.), architecting network segmentation strategies (Purdue, Zero Trust), and providing expert oversight for incident response and security best practices.

Responsibilities

• Design and architect secure industrial environments (ICS/SCADA, DCS, PLCs, IIoT), defining controls to mitigate vulnerabilities
• Define and implement OT security architecture frameworks, ensuring solutions meet standards like IEC 62443, NIST 800-82, ISO 27019, NIS2, and sector-specific regulations.
• Design and govern IT/OT network segmentation strategies, applying principles like Zero Trust, industrial DMZs, and Purdue model segmentation.
• Architect the integration of OT security monitoring tools (e.g., Nozomi Networks, Claroty...) into the broader security ecosystem.
• Develop and maintain OT security roadmaps, reference architectures, and security patterns.
• Stay up to date with emerging OT threats and translate their impact into architectural design requirements.

Qualifications

• Degree in Telecommunications Engineering, Computer Science, Industrial Engineering, Electronics, Automation, or a related field.
• 5+ years of experience in OT cybersecurity, with proven experience in an architectural or design role.
• Proven experience designing secure OT solutions compliant with standards (IEC 62443, NIST 800-82).
• Experience architecting solutions with security tools for ICS environments (Nozomi, Claroty, Armis...).
• Ability to design resilient architectures to defend against cyber threats targeting critical infrastructure.
• Minimum B2 English level (projects may have an international scope).

Holding at least one of the following certifications is a plus:

• CISM, CISSP, GIAC (GRID, GICSP, GCIP), CompTIA Security+
• OT/ICS-specific cybersecurity certifications such as ISA/IEC 62443 Cybersecurity Specialist or Expert

Job Description - Grade Specific

Capgemini is a global business and technology transformation partner, helping organizations to accelerate their dual transition to a digital and sustainable world, while creating tangible impact for enterprises and society. It is a responsible and diverse group of 340,000 team members in more than 50 countries. With its strong over 55-year heritage.

Capgemini is trusted by its clients to unlock the value of technology to address the entire breadth of their business needs. It delivers end-to-end services and solutions leveraging strengths from strategy and design to engineering, all fueled by its market leading capabilities in AI, generative AI, cloud and data, combined with its deep industry expertise and partner ecosystem.