Cybersecurity Consultant - GRC

Join our Team - Your career journey starts here – not just a job, but a future. INTECH Automation Intelligence is seeking an experienced Cybersecurity Consultant with expertise in Governance, Risk, and Compliance (GRC), Vulnerability Management and Incident Management to join our OT Cybersecurity Product Team . This role is pivotal in delivering and implementing OT Cybersecurity Solutions to ensure the protection of critical industrial infrastructure across industries such as Oil & Gas, Petrochemicals, Utilities, and Manufacturing. The ideal candidate will work closely with portfolio manager, product managers, developers, and security engineers to ensure that security is embedded throughout the projects, product design, development, and testing lifecycle . The consultant will also be responsible for consulting for GRC application, customer focused GRC Consulting, automation, streamlining compliance workflows, and enhancing the security posture of the product. INTECH’s commitment to delivering cutting-edge OT cybersecurity services, including Resident, On-Call, and Remote services, ensures you will be part of transformative projects that safeguard critical infrastructure and enable secure, reliable operations. What You’ll Lead and Deliver 1. Security Governance, Risk, and Compliance (GRC)

• Design, implement, and maintain security risk management frameworks aligned with ISO 27001, NIST, ISA 62443, and other industry standards.
• Lead GRC automation efforts to streamline security risk, audit, and compliance processes within the product lifecycle .
• Work with internal and external stakeholders to align product security controls with industry and regulatory requirements.
• Develop policies, procedures, and security documentation for compliance with global security standards.
• Perform assessments and develop roadmaps for assigned clients and product-based work.

2. Product Security and Vulnerability Management

• Provide security guidance throughout the product lifecycle, from requirements gathering to deployment .
• Collaborate with development teams to ensure secure software design (SDLC) practices are followed.
• Support and manage automated vulnerability scanning and manual penetration testing of applications and infrastructure.
• Define risk-based security testing strategies to identify vulnerabilities before release.
• Lead incident response planning and threat modeling exercises for new and existing products.

3. GRC Automation & Security Testing Tools

• Implement and manage GRC platforms (e.g., Archer, OneTrust, LogicGate, ServiceNow GRC) to track risks, compliance gaps, and audit workflows.
• Configure security testing tools such as Nessus, Qualys, Burp Suite, OWASP ZAP, and others.
• Develop custom security dashboards and reporting mechanisms to provide real-time visibility into vulnerabilities and compliance status.
• Automate compliance and risk reporting to support audits, certifications, and regulatory assessments .

4. Collaboration with Development & Engineering Teams

• Work closely with product managers to integrate security requirements into product roadmaps.
• Provide security awareness training for developers and DevOps teams .
• Define secure coding practices and conduct code reviews to detect security flaws.
• Conduct security architecture reviews for new product features and integrations.
• Help teams respond to security incidents, customer security assessments, and compliance requests .

Requirements

To Be Successful in This Role, You Must Have: Experience:

• 10+ years of cybersecurity experience , with a strong background with industrial customers .
• Worked with multiple companies/clients in GRC consulting.
• Experience working in a product development or SaaS company is highly preferred.
• Proven ability to automate security processes and improve compliance workflows.

Education:

• Computer sciences, BS or MS in cybersecurity, etc.
• CISSP – Certified Information Systems Security Professional.
• CISM – Certified Information Security Manager.
• CRISC – Certified in Risk and Information Systems Control.
• CEH – Certified Ethical Hacker.

Technical Skills

• Strong knowledge of GRC frameworks (ISO 27001, NIST 800-53, NIST CSF, SOC 2, ISA 62443).
• Experience implementing and managing GRC platforms (e.g., Archer, OneTrust, ServiceNow GRC, LogicGate).
• Expertise in vulnerability management tools (e.g., Tenable Nessus, Qualys, Rapid7, OpenVAS).
• Deep understanding of application security testing (e.g., SAST, DAST, SCA).
• Hands-on experience with security automation .
• Strong documentation and policy-writing skills.

Soft Skills

• Strong problem-solving and analytical skills .
• Excellent communication and stakeholder management skills.
• Ability to train and mentor development teams in secure coding practices.
• Experience working in cross-functional teams (Engineering, Compliance, IT, Legal).

At INTECH, you will have the opportunity to work with a globally renowned industrial automation and digitalization technology company. For nearly 30 years, INTECH has partnered with major oil and gas global giants to deliver innovative solutions. As we continue to lead in the Industry 4.0 era, you will be at the forefront of transformative technologies that solve real-world challenges. What to Expect After Applying? Explore how INTECH’s Talent Acquisition team ensures a seamless hiring journey. From embracing talent with a passion for innovation to fostering a culture of continuous learning and growth, we’re dedicated to finding and supporting the best minds in the industry. Click Here to learn more about our hiring process and discover your path to success with us. Our hiring process is designed to assess your skills and potential in a fair and inclusive manner. After applying, you will be guided through a structured evaluation process to ensure mutual alignment. INTECH Automation Intelligence is proud to be an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. #J-18808-Ljbffr