Talent.com
OT Cybersecurity Senior GRC Analyst

OT Cybersecurity Senior GRC Analyst

JacobsKraków, Województwo małopolskie, Polska
19 days ago
Job description

Overview

At Jacobs, we're challenging today to reinvent tomorrow by solving the world's most critical problems for thriving cities, resilient environments, mission-critical outcomes, operational advancement, scientific discovery and cutting-edge manufacturing, turning abstract ideas into realities that transform the world for good.

Your impact

At Jacobs, we’re redefining how critical infrastructure is secured and governed in an increasingly connected world. We’re looking for a Senior OT Cybersecurity Governance, Risk, and Compliance (GRC) Analyst with deep experience in industrial environments such as SCADA, DCS, and PLC systems. This is a strategic and client-facing role, shaping our broader OT cybersecurity initiatives and strengthening how risk and compliance are managed across global programs.

You’ll lead and mature OT risk management and compliance initiatives aligned with frameworks such as NIST 800-82, ISA / IEC 62443, NIST CSF, ISO 27001, NERC CIP, and NIS 2. You’ll drive governance models, compliance frameworks, and cross-program integration that connect Jacobs’ technical excellence with operational security outcomes.

As a senior member of our cyber team, you’ll bring demonstrated success in leading audit readiness, control maturity assessments, and risk-based governance for industrial systems. You’ll bridge the gap between IT and OT, translating compliance strategy into actionable safeguards that protect critical operations and infrastructure. With strong executive presence and the ability to align stakeholders across engineering, IT, and leadership, you’ll play a central role in Jacobs’ mission to define the industry standard in OT cybersecurity and lead the market in resilience and trust.

Core Competencies

  • OT / ICS Security Governance & Risk Management
  • Compliance Frameworks NIST 800-82, ISA / IEC 62443, NIST CSF, ISO 27001, NERC CIP, NIS 2
  • Risk Assessment & Control Validation (IT and OT)
  • Audit Readiness & Evidence Management
  • Vendor and Supply Chain Risk Oversight
  • OT Vulnerability and Configuration Management
  • Cybersecurity Awareness & Training Leadership

Job Responsibilities

  • Lead and mature the OT cybersecurity risk management program, ensuring compliance with NIST 800-82, ISA / IEC 62443, and corporate governance policies
  • Perform control design and effectiveness reviews for industrial environments (SCADA, DCS, PLC systems), identifying compliance gaps and risk mitigation strategies
  • Coordinate internal and external audits, ensuring evidence collection, control mapping, and timely remediation of findings
  • Develop and maintain cybersecurity policies, standards, and control frameworks tailored to OT operations
  • Serve as a liaison between engineering, IT, and compliance teams, ensuring security controls align with operational safety and availability goals
  • Manage vendor security assessments for OT asset owners, integrators, and managed service providers
  • Monitor and report cybersecurity compliance metrics and risk dashboards to leadership, supporting continuous improvement initiatives
  • Conduct enterprise-wide risk and control assessments for IT and OT environments, using frameworks such as NIST CSF, ISO 27001, and NERC CIP
  • Author and maintain information security policies, risk registers, and control matrices

    • Experience & Education

  • 5+ years of experience in cybersecurity GRC practice area
  • Bachelors Degree in cybersecurity, engineering, or related field preferred (sufficient years of experience may be used in lieu of degree)
  • Global Industrial Cyber Security Professional (GICSP) – GIAC
  • Certified Information Systems Security Professional (CISSP) – (ISC)²
  • Certified Information Security Manager (CISM) – ISACA
  • Certified Information Systems Auditor (CISA) – ISACA
  • ISO 27001 Lead Implementer or Auditor
  • CompTIA Security+ or CySA+ (as foundational credentials)
  • Frameworks NIST CSF, NIST 800-53, NIST 800-82, ISA / IEC 62443, ISO 27001, NERC CIP, NIS 2
  • Tools Tenable.ot, Nessus, Splunk, Wireshark, Tripwire, Archer GRC, ServiceNow GRC, Power BI (for reporting)
  • Security Processes Risk Assessments, Vulnerability Management, Control Testing, Audit Coordination
  • Networking & Protocols Modbus, DNP3, OPC UA, VLANs, Firewalls, VPNs

    • We offer

  • Rewarding employment Full-time employment with a salary that matches your qualifications.
  • Hybrid work model Enjoy the flexibility of working from home, with just several office days per month.
  • Flexible hours Start your day anytime between 730 and 1000 AM.
  • Comprehensive benefits Including Lux Med medical care, psychological support, life insurance, My Benefit cafeteria system, Multisport card co-financing, and a car / bike park sharing system.
  • Global projects Engage in exciting international projects.
  • Inclusive networks Join our diverse employee networks like Women's Network, OneWorld, PRISM, Careers Network, Green Team, SpeakUp, Collectively, and more.
  • Continuous learning Participate in our Graduate Development Program, Learners’ Community, and self-learning platforms.
  • Language courses Enhance your skills with courses in English, German, and Polish.

    • We know that if we are inclusive, we’re more connected, and if we are diverse, we’re more creative. We accept people for who they are, regardless of age, disabilities, gender identity, gender expression, marital status, mental health, race, faith or belief, sexual orientation, socioeconomic background, and whether you’re pregnant or on family leave. Find out more about life at Jacobs. As a Disability Confident employer, we will interview all disabled applicants who meet the criteria for a vacancy. If you require further support or reasonable adjustments with regards to the recruitment process (for example, you require the application form in a different format), please contact the team

    Your application experience is important to us, and we’re keen to adapt to make every interaction even better. If you require further support or reasonable adjustments with regards to the recruitment process (for example, you require the application form in a different format), please contact the team via Careers Support.

    Seniority level

  • Not Applicable

    • Employment type

  • Full-time

    • Job function

  • Information Technology

    • Industries

  • Civil Engineering, Design Services, and IT Services and IT Consulting

    • Referrals increase your chances of interviewing at Jacobs by 2x

    #J-18808-Ljbffr

    Create a job alert for this search

    Cybersecurity Analyst • Kraków, Województwo małopolskie, Polska

    Related jobs
    • Promoted
    Network Security Cyber Requirements Analyst @ HSBC Technology Poland

    Network Security Cyber Requirements Analyst @ HSBC Technology Poland

    HSBC Technology PolandKraków, Poland
    Some careers shine brighter than others.If you’re looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, o...Show moreLast updated: 30+ days ago
    • Promoted
    Treasury Risk Senior Analyst, AVP

    Treasury Risk Senior Analyst, AVP

    State StreetKraków, Województwo małopolskie, Polska
    Global Treasury Risk Management (GTRM), a team within State Street's Enterprise Risk Management (ERM) department, is looking for an experienced treasury risk professional.The primary focus for the ...Show moreLast updated: 30+ days ago
    • Promoted
    Specjalista Analityk ds. AI

    Specjalista Analityk ds. AI

    MAN Trucks Sp. z o.o.Niepołomice, małopolskie, Polska
    Twoją codzienną pracą będzie tworzenie kwerend, narzędzi i baz danych.Będziesz identyfikować i oceniać przyczyny błędów technicznych wraz z działami fachowymi. Twoje wyniki pracy będą stanowiły pods...Show moreLast updated: 30+ days ago
    • Promoted
    Brygadzista Mistrz / lider ds. infrastruktury budynków

    Brygadzista Mistrz / lider ds. infrastruktury budynków

    Apleona Polska sp. z o.o.Niepołomice, małopolskie, Polska
    Zapewnianie konserwacji wszystkich elementów wyposażenia związanych z infrastrukturą techniczną budynków (m.Dbanie o odpowiednie działanie wszystkich instalacji w budynku w celu zapewnienia ciągłoś...Show moreLast updated: 30+ days ago
    • Promoted
    Cybersecurity Engineer

    Cybersecurity Engineer

    Danaher CorporationKraków, Województwo małopolskie, Polska
    At Danaher, our work saves lives.Fueled by our culture of continuous improvement, we turn ideas into impact – innovating at the speed of life. Our 63,000+ associates work across the globe at more th...Show moreLast updated: 30+ days ago
    • Promoted
    Cybersecurity Risk

    Cybersecurity Risk

    EuroclearKraków, Województwo małopolskie, Polska
    As part of Euroclear's Cybersecurity Risk and Governance team within the CISO division, you will play a key role in securing the development and maintenance of our critical infrastructure.Your miss...Show moreLast updated: 7 days ago
    • Promoted
    Senior Technology Auditor

    Senior Technology Auditor

    CiscoKraków, Województwo małopolskie, Polska
    The Governance, Risk, and Controls (GRC) team helps drive efficient, effective, and ethical business practices at Cisco.Our globally connected team partners across all regions and business groups, ...Show moreLast updated: 30+ days ago
    • Promoted
    Cybersecurity Model Governance Analyst @ Antal

    Cybersecurity Model Governance Analyst @ Antal

    AntalKraków, Poland
    Job Title : Model Governance Analyst – Cybersecurity & AI Risk.Financial Services / Cybersecurity / Data Science.We are looking for a highly motivated . Cybersecurity Science & Analytics (CS&...Show moreLast updated: 30+ days ago
    • Promoted
    Elasticsearch Engineer

    Elasticsearch Engineer

    HSBC Service Delivery (Polska) Sp. z o.o.Kraków, małopolskie, Polska
    Enterprise Technology brings together all areas of financial crime risk management at HSBC including anti- money laundering, transaction monitoring, screening, risk assessment etc.The Global Social...Show moreLast updated: 30+ days ago
    • Promoted
    Corporate / SME Credit Risk Analyst

    Corporate / SME Credit Risk Analyst

    Aion Bank (UniCredit Group)Dobra, Limanowski, Małopolskie, Polska
    Aion Bank is a fully regulated European bank and credit institution, combining Vodeno’s cutting-edge, private blockchain-based platform with its ECB banking license, strong balance sheet, and deep ...Show moreLast updated: 30+ days ago
    • Promoted
    Cybersecurity / IT Compliance Consultant (GRC)

    Cybersecurity / IT Compliance Consultant (GRC)

    GRC Advisory Sp. z o.o.Kraków, małopolskie, Polska
    Realizujemy szeroki zakres projektów wdrożeniowych, w różnych sektorach.Osoby, które poszukujemy w zależności od doświadczenia dołączą do zespołu jako analitycy, architekci, lub administratorzy tec...Show moreLast updated: 13 days ago
    • Promoted
    Cybersecurity Analyst @ HSBC Technology Poland

    Cybersecurity Analyst @ HSBC Technology Poland

    HSBC Technology PolandKraków, Poland
    Some careers shine brighter than others.If you’re looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, o...Show moreLast updated: 30+ days ago
    • Promoted
    Healthcare Cybersecurity Architect IRC249300

    Healthcare Cybersecurity Architect IRC249300

    GlobalLogicKraków, Województwo małopolskie, Polska
    Healthcare Cybersecurity Architect IRC.Designation : Senior Consultant.Skills : Cybersecurity Frameworks, Good knowledge of 'Computer Networking' and 'Information Security'.Certified in 'Information ...Show moreLast updated: 30+ days ago
    Cybersecurity Engineer (OT)

    Cybersecurity Engineer (OT)

    SoftetaKraków, Lesser Poland Voivodeship, PL
    Remote
    Quick Apply
    Softeta is an IT solutions provider based in Vilnius, Lithuania.With over 90 professionals located across Lithuania and Poland, we support companies in overcoming complex IT challenges through tail...Show moreLast updated: 30+ days ago
    • Promoted
    Cybersecurity Expert

    Cybersecurity Expert

    ALIOR BANKKraków, Województwo małopolskie, Polska
    CI / CD (umiejętność analizy kodu),.Multisport, ubezpieczenie, konkursy wewnętrzne, programy zniżkowe i lojalnościowe 16 godzin na wolontariat "Dzień na U",. Aliorowców – odpowiedzialność, otwartość, ...Show moreLast updated: 22 days ago
    • Promoted
    Cybersecurity Issue / Risk Service Manager

    Cybersecurity Issue / Risk Service Manager

    Hitachi EnergyKraków, Województwo małopolskie, Polska
    To Grow Cybersecurity Team We Are Lookinng For.Global Cybersecurity Risk Service Manager.Remote from Poland, remote from UK. Owns the services related to Cybersecurity Risk Management : .Iidentify cor...Show moreLast updated: 30+ days ago
    Senior GCP DevSecOps Engineer

    Senior GCP DevSecOps Engineer

    HSBC Service Delivery (Polska) Sp. z o.o.Kraków, małopolskie, Polska
    We have a unique opportunity for you to join our Global Cloud Services – Google Cloud Security & Compliance team and lead the Cloud Security Posture management initiatives using cutting edge techno...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Risk Systems Analyst

    Senior Risk Systems Analyst

    People MoreKraków, Województwo małopolskie, Polska
    We are called People More because we treat our employees with respect, but also because the projects we work on are for people and should be easy and pleasant to use. We are technological, but we lo...Show moreLast updated: 7 days ago