Global IT Security Expert - OT

Global IT Security Expert - OT

Position of broad specialization. with main area focusing on Operational Technology (OT). In this role employee will lead and advance the strategic security operations and engineering related to OT security initiatives across GGH related with , ensuring robust protection of digital assets, infrastructure, and operational continuity. The Security Expert will drive innovation, influence global security posture, and serve as a key advisor on risk mitigation and complianceensure continuous operating and management on IT Security across GGH global environment.
This role will closely cooperate with varius internal teams (OT, Infrastructure) and with business stakeholders. Also, role will be responsible for contact with external stakeholders (clients, vendors).
On daily basis will be also responsible globally for IT Security related work and support including security incidents response and handling, cooperation with MSSP team, work with Data Loss Prevention, Privilege Access Management, Vulnerability Management, Security Awareness and other IT Security systems.

Tasks:

- Lead and support the secure design, deployment, and lifecycle management of industrial control systems (ICS) and associated infrastructure across our global operations
- Hands-on understanding of SCADA, PLC, DCS, HMI, and other OT technologies, combined with in-depth knowledge of IT network security, asset protection, and compliance frameworks
- Hands-on experience with one or more OT-related security platforms such as Armis, Claroty, Dragos, Darktrace
- Understanding of concepts of Purdue Model and network segmentation between OT/IT zones (e.g., Level 0–5 Purdue Model)
- Design and govern enterprise-wide security architecture integrating cutting-edge technologies (e.g., zero trust, AI-driven threat detection) to proactively mitigate risks across hybrid environments.
- Lead global security transformation programs, aligning with executive leadership and regulatory bodies to ensure strategic resilience and compliance.
- Drive threat intelligence operations, including predictive analytics, adversary simulation, and coordination to anticipate and neutralize emerging threats.
- Establish and evolve governance frameworks for security and business continuity, embedding risk-based decision-making into enterprise processes.
- Oversee incident response orchestration, ensuring rapid containment, root cause analysis, and executive-level reporting for high-impact events.
- Mentor and develop security thinking across regional and global IT teams
- Continuously assess and optimize security tooling and platforms, including local and cloud-native controls, ensuring scalability and performance.
- Lead strategic vendor and partner engagements, driving innovation in third-party risk management and secure supply chain practices.
- Champion enterprise-wide security awareness and behavioral change programs, influencing culture through targeted campaigns and executive engagement.
- Represent the organization in external forums, including industry working groups, regulatory consultations, and cybersecurity alliances.
- Conduct advanced risk modeling and scenario planning, integrating geopolitical, technological, and operational factors into business continuity strategies.
- Serve as escalation point for complex or unresolved security issues, providing strategic guidance and technical oversight to resolution teams.
- Initiate and lead internal audits and maturity assessments, benchmarking against global standards (e.g., ISO 27001, NIST CSF, MITRE ATT&CK).
- Perform other strategic duties as assigned, contributing to enterprise resilience, innovation, and competitive advantage

Innovation in Operations: Proven ability to drive innovation in security operations by adopting disruptive technologies and evolving defense strategies.

Qualfications:

• Master’s degree in IT-related field or Security

• English level B2

• 5–10 years of relevant experience

• Possession of recognized IT Security certifications such as:
  CEH, CISSP, SCCP, CCSP, CompTIA Security+, OSCP, or equivalent

• Solid understanding of industry standards and frameworks, including: ISA/IEC 62443, NIST Cybersecurity Framework, and other relevant OT/IT security guidelines.

Other qualifications:

• Understanding of concepts and hands-on experience for Endpoint & Infrastructure security , Cloud security (Azure, MS365 stack), DLP, CASB, SIEM, PAM, VM, Security Awareness (KnowBe4)

Competencies required:

- Ability to strategically align global security programs with long-term enterprise risk and business growth objectives.
- Demonstrated success in leading and scaling international security teams, influencing executive and cross-functional stakeholders.
- Evaluating and mitigating multi-dimensional security risks, including geopolitical, supply chain, and emerging threat vectors.
- Deep expertise in designing resilient security architectures, integrating threat intelligence, adversary simulation, and automated incident response.E46
- Proven ability to drive innovation in security operations, adopting disruptive technologies and evolving defense strategies.
- Exceptional skill in translating complex security insights into actionable guidance for senior leadership and non-technical audiences.
- Comprehensive understanding of global regulatory ecosystems, embedding compliance into enterprise-wide governance and operations.
- Advanced capability to orchestrate cross-departmental and cross-border security implementations, ensuring consistency, scalability, and agility.

We offer:

• Being part of a fast-growing, dynamic company, recognized as one of the foremost global packaging manufacturers.

• Great professional growth opportunities.

• Comfortable working environment