LOCATION:

Tatabánya, HU
Job Family: Information Technology
Country/Region: Hungary
The IT/OT Security Risk Analyst is a cross-functional role focused on governance, risk, and compliance between IT and OT environments and stakeholders. The role works with Global Information Security, Global Operations, and Security Operations teams to integrate OT risk management into a broader information security and business continuity strategy.
The role will be based in Tatabánya, Hungary but report to Information Security in HQ Denmark.

Help develop, operate, and maintain IT and OT security compliance based on ISO 27001, ISA/IEC 62443 series in alignment with relevant laws and regulations
Conduct risk assessments through a structured approach
Identify vulnerabilities and threats within the OT environment
Work with subject matter experts to identify mitigation measures
Prepare and deliver risk reporting to relevant stakeholders
Translate technical risks assessments into the existing Information Security Risk Management framework
Work with IT Service and Business Continuity to create business continuity planning based on risk landscape
Establish supplier security governance requirements for OT suppliers
Support OT security incident handling; analyze security incident trends with input from Security Operations
Provide security advice to OT engineering teams
Key objectives/deliverables
Perform technical and organizational risk assessments for OT
Mature security and governance requirements in the IT/OT environment
Conduct supplier due diligence and have a strong overview of OT supplier risks
Support audits from HQ or by authorities, when necessary
Stay informed on evolving OT cybersecurity trends, technologies, and vulnerabilities
Basic qualifications
Bachelor’s in cyber security, industrial systems, engineering, or a related field
Strong knowledge of industrial automation control system concepts and technology (Operational Technology)
Solid work experience conducting security risk assessments in an IT and OT environment
Familiarity with compliance and security standards in IT/OT environments (ISO 27001, ISA/IEC 62443)
Familiarity with EU NIS 2 Directive requirements as applicable to IT/OT environments
Ability to discuss technical matters in a non-technical way
Strong command of both Hungarian and English language – written and oral; all deliveries will be in English
Preferred qualifications
Industry certifications in IT or OT cybersecurity (ISO 27001, ISA/IEC 62443, etc.)
Required knowledge, skills & abilities
Independent, structured, motivated
Analytical and solution-oriented
Comfortable working with other cultures
Passionate about IT/OT cybersecurity
Physical or other job requirements
The position requires traveling for assessment activities; 10 - 20 days per fiscal year
Traveling will require flexibility towards defined office hours
Pursuing an ambitious growth agenda, Coloplast develops and markets products and services that make life easier for people with intimate healthcare needs. Employing about 16.000 people and with products available in more than 143 countries, we are one of the world´s leading medical device companies. We are constantly growing our business and always looking for new ways to move forward – we explore, learn and look for new ways of doing things.
Coloplast is committed to being an inclusive organization, where people bring their differences to work each day, fulfil their potential and have a strong sense of belonging because – and not despite – of their differences. We therefore encourage all qualified candidates to apply regardless of gender, age, race, nationality, ethnicity, sexual orientation, religious belief or physical ability.
Visit us on Coloplast.com.
57889

LI-C