Operational Technology Cybersecurity Analyst

About Barry-Wehmiller

Barry-Wehmiller is a diversified global supplier of engineering, consulting and manufacturing technology solutions for the packaging, corrugating and paper-converting industries. By combining a people-centric leadership style with operational strategies and sustainable growth, Barry-Wehmiller has grown into a $3 billion company with nearly 12,000 employees united by a common vision: Building a Better World through Business.

Job Description

The Operational Technology (OT) Cybersecurity Analyst serves as a key contributor and subject-matter expert within the Enterprise Information Security function. This role is responsible for independently evaluating, designing, and advising on OT cybersecurity controls, regulatory obligations, and risk mitigation strategies across Barry-Wehmiller’s equipment-producing business units. The analyst applies advanced knowledge of industrial control systems and cybersecurity frameworks to develop policies and standard operating procedures, lead assessments, drive incident response strategy, and guide engineering teams in implementing secure OT architectures.

This position is open to candidates based at any of our EU locations with an on-site engineering presence, offering flexibility in work location across the region.

Responsibilities

• OT Security Incident Response: Lead cross-functional incident investigations, determine root cause, identify gaps in security capabilities, take remediation actions, and develop prevention measures.
• Regulatory and security best practices reviews: Lead the evaluation of emerging OT cybersecurity regulations and determine organizational impacts and required compliance actions.
• Cybersecurity best practices implementation: Conduct OT cybersecurity assessments, architecture evaluations, and threat analyses, define security control requirements for OT/ICS designs and IIoT integrations, and develop recommendations for secure configurations and network segmentation. This will be carried out in close collaboration with BW’s in-house and external legal counsel, as well as the Global Data Protection Officer team, to ensure legal and data privacy aspects of this work comply with current regulations.
• Collaborate with Stakeholders: Provide expert advisory guidance to business units, engineering groups, and leadership.
• Documentation: Lead the development, maintenance, and implementation of OT cybersecurity policies, standards, procedures, and training material.
• Lead collaboration with the Digital Innovation (DI) team and IIoT/OT Cybersecurity Architect when conducting and documenting cybersecurity assessments, integrations, and enhancements of BW’s connected IIoT platform.

Job Specifications

• Conduct and document technical and/or compliance research on software development and OT cybersecurity topics.
• Lead multiple BW machine platform teams to resolve, report, and document any OT security issues or breaches caused by BW machines operating in customer environments.
• Determine and resolve issues related to OT security in customer environments.
• Define and assess the security and compliance status of BW hardware and software products.
• Exercise independent judgment and capitalize on specialized expertise when evaluating cybersecurity risks, interpreting regulations, and determining appropriate technical and strategic measures.
• Act as a trusted advisor to engineering teams, business unit leaders, and cross-functional partners.
• Lead initiatives and own deliverables related to policy development, OT risk assessments, and incident response strategy.

Education and Experience

REQUIRED

• Minimum of 5 years of experience in industrial control system design, implementation or cybersecurity engineering.
• Degree or certification in industrial controls engineering or OT cybersecurity.
• Advanced understanding of OT networks, ICS components, and associated security risks.
• Excellent problem-solving skills and attention to detail.
• Demonstrated ability to independently analyze complex technical problems and propose actionable solutions.
• Strong written and verbal communication skills for engaging technical and non-technical stakeholders.
• Ability to lead cross-functional initiatives with minimal supervision.
• Reading, writing, and speaking fluency in the English language.

PREFERRED

• Familiarity with DevSecOps and secure development methodologies.
• Familiarity with EU Cyber Resilience Act, EU Data Act, EU AI Act
• Working knowledge of OT security frameworks such as IEC-62443, NIST SP 800-82r3, or NERC-CIP.
• Familiarity with product security and software assurance standards (e.g., ISO 27001/27002, IEC-27034, NIST SP 800-218).
• Experience working with industrial automation hardware from multiple vendors.
• Fluency in additional language(s) of countries with BW locations
• Familiarity with DevSecOps and secure software development methodologies.

Work Environment

Primarily an office-based role involving strategic work, analysis, and collaboration. Occasional visits to manufacturing or production environments for assessment and advisory purposes (non-manual, non-routine tasks).

At Barry-Wehmiller, we recognize that people come with a wealth of experience and talent that go beyond technical qualifications. If your experience is close to what you see listed here, but not exactly the same, you are still encouraged to apply. We know that what makes us different can bring ingenuity and innovation to our teams and help us reach our goals. We encourage you to apply even if you don't meet every qualification. Please let us know if we can make any accommodations for you during the interview process.

Company

Bw Corporate Us

#J-18808-Ljbffr

Salary: EUR 60000 - 80000 per year