CYBER SECURITY EXPERT (OT) - MONTREAL

at  Equans

COUNTRY:

Canada
Equans is looking for a Cyber Security Expert (OT), based in Montreal (Quebec)!
The Equans group is a world leader in the energy and services industry. The Group operates in 20 countries, with 90,000 employees working on 5 continents. Equans is a Bouygues group company.
Equans designs, installs, and delivers customized solutions to improve its customers’ equipment, systems and technical processes and optimize their use in the context of their energy, industrial and digital transitions. Equans is a Bouygues group company.
Active in Canada and the United States for more than 30 years, Equans Services is the partner of businesses, industries and institutions that want to move towards more connected buildings, manage their facilities efficiently and reduce their carbon footprint.
We design, implement, and maintain custom solutions to improve our customers’ facilities, systems, and infrastructures.

Our core offerings are focused on the following areas:

• Integrated Asset and facilities management;
• Operation and maintenance of buildings and equipment (including district heating and cooling);
• Energy efficiency solutions and execution of decarbonization roadmaps;
• Building automation and systems;
• Solutions for transportation and mobility.

To learn more, visit www.equansservices.com/en

SUMMARY

Reporting to Americas Chief Information Security Officer (CISO) or Deputy CISO, we are seeking a highly skilled and motivated Cybersecurity Engineer to lead the development, implementation, and maintenance of security strategies focused on operational technology (OT) systems. This role is critical in safeguarding our enterprise’s digital and physical infrastructure from evolving cyber threats. The ideal candidate will possess a deep understanding of cybersecurity frameworks, OT security architecture, and the unique challenges of securing OT systems in industrial and critical infrastructure settings.

DESCRIPTION

• Operational Technology (OT) Network Security:
• Develop and implement security strategies tailored to OT environments, including PLCs, and ICS devices.
• Conduct risk assessments to identify and mitigate vulnerabilities in industrial networks.
• Deploy intrusion detection and prevention systems (IDS/IPS) for OT environments.
• Incident Response & Threat Intelligence:
• Develop and execute incident response plans for IT and OT networks.
• Investigate and analyze cybersecurity events, coordinating containment and recovery efforts.
• Maintain up-to-date threat intelligence related to IT and OT threats.
• Compliance & Risk Management:
• Ensure adherence to relevant regulatory standards (e.g., GDPR, ISO 27001, NIST CSF, NERC CIP, IEC 62443).
• Perform regular audits and vulnerability scans to identify security gaps and propose remediations.
• Manage third-party vendor risk related to cloud and OT operations.
• Team Collaboration & Leadership:
• Collaborate with IT, DevOps, and OT teams to integrate security into workflows and processes.
• Collaborate with business engineering teams to architect secure OT solutions.
• Provide cybersecurity training and awareness programs for employees and stakeholders.
• Act as a subject matter expert for OT security in cross-functional projects.

TECHNICAL SKILLS:

• Expertise in security OT Networks, including knowledge of industrial protocols (e.g., Modbus, OPC UA)
• Strong knowledge of smart building automation standards including ASHRAE Standard 180, ISO 14042, BACnet, etc.
• Proficiency in security tools such as SIEMs, firewalls, IDS/IDP, vulnerability scanners and EDR solutions.
• Hands-on experience with zero-trust architecture and identity management.

SOFT SKILLS:

• Excellent problem-solving and analytical skills
• Strong communications skills to convey technical concepts to both technical and non-technical stakeholders.
• Ability to mentor junior team members in cyber security practices.
• Self-driven and ability to accept personal responsibility and accountability.
• Detail oriented and well organized.

EDUCATION/EXPERIENCE

• Minimum of 5+ years in OT Security
• BS/BA (with an IT focus) required or 15+ years of progressive Information Technology and Cybersecurity work experience in lieu of degree.
• 10+ years of progressive Information Technology and Cybersecurity work experience
• CISSP or GICSP certification highly recommended.
• Additional preferred certifications: CCSP, CISA, CISM, PMP, GCIP.
• Highly proficiency with Microsoft O365 applications (MS Excel specifically)
• Good working knowledge of Power BI and SharePoint preferred.
• Experience with common information security management frameworks, such as NIST CSF, ISO 27001/27002, GDPR, CMMC, and CIS

OTHER ESSENTIAL ABILITIES

• Ability to meet the highest attendance requirements.
• Ability to communicate effectively, both written and verbally.
• Ability to use a personal computer.
• Ability to handle multiple assignments on a timely basis with a high degree of accuracy.
• Could involve some lifting.

Please refer the Job description for details