Information Security Analyst

Tasks and responsibilities:

• Help develop, operate, and maintain IT and OT security compliance based on ISO 27001, ISA/IEC 62443 series in alignment with relevant laws and regulations
• Conduct risk assessments through a structured approach
  • Identify vulnerabilities and threats within the OT environment
  • Work with subject matter experts to identify mitigation measures
  • Prepare and deliver risk reporting to relevant stakeholders

• Translate technical risks assessments into the existing Information Security Risk Management framework
• Work with IT Service and Business Continuity to create business continuity planning based on risk landscape
• Establish supplier security governance requirements for OT suppliers
• Support OT security incident handling; analyze security incident trends with input from Security Operations
• Provide security advice to OT engineering teams

Key objectives/deliverables

• Perform technical and organizational risk assessments for OT
• Mature security and governance requirements in the IT/OT environment
• Conduct supplier due diligence and have a strong overview of OT supplier risks
• Support audits from HQ or by authorities, when necessary 
• Stay informed on evolving OT cybersecurity trends, technologies, and vulnerabilities

Basic qualifications

• Bachelor’s in cyber security, industrial systems, engineering, or a related field
• Strong knowledge of industrial automation control system concepts and technology (Operational Technology)
• Solid work experience conducting security risk assessments in an IT and OT environment
• Familiarity with compliance and security standards in IT/OT environments (ISO 27001, ISA/IEC 62443)
• Familiarity with EU NIS 2 Directive requirements as applicable to IT/OT environments
• Ability to discuss technical matters in a non-technical way
• Strong command of both Hungarian and English language – written and oral; all deliveries will be in English

Preferred qualifications

• Industry certifications in IT or OT cybersecurity (ISO 27001, ISA/IEC 62443, etc.)

Required knowledge, skills & abilities

• Independent, structured, motivated
• Analytical and solution-oriented
• Comfortable working with other cultures
• Passionate about IT/OT cybersecurity

Physical or other job requirements

• The position requires traveling for assessment activities; 10 - 20 days per fiscal year
• Traveling will require flexibility towards defined office hours

What we offer

• employee-oriented organizational culture
• competitive salary package
• professional trainings
• high safety standards and safe work environment
• travel contribution
• modern work environment in a continuously growing multinational company
• company phone and laptop

• Céges étkező
• Kávézó
• Orvosi felügyelet
• Céges rendezvények
• Sportolási lehetőség

The IT/OT Security Risk Analyst is a cross-functional role focused on governance, risk, and compliance between IT and OT environments and stakeholders. The role works with Global Information Security, Global Operations, and Security Operations teams to integrate OT risk management into a broader information security and business continuity strategy.
 
The role will be based in Tatabánya, Hungary but report to Information Security in HQ Denmark.