OT Cyber Solution Architect
Job Description:
OT Cyber Solution Architect
- Location: Reading
- Contract Length: Initial 6 months
- Rate: (Inside IR35)
- Start Date: Immediate
About the Role
We are seeking a reliable, approachable, responsive, and hands-on OT Cyber Solution Architect to take complete technical ownership of a major Zero Trust architecture rollout. The successful contractor will be responsible for owning the design and implementation lifecycle across a complex, safety-critical Operational Technology (OT) environment
You will lead dedicated OT teams and Subject Matter Experts (SMEs), providing clear technical and design direction while ensuring that all solutions are practical, deployable, and heavily aligned with operational and plant-floor constraints.
Key Deliverables & Accountabilities
You will own the complete Zero Trust architecture and design lifecyclefrom initial requirements gathering and POCs to roll-out, deployment, and eventual BAU transition.
Your key outputs will include:
- High-Level Designs (HLD) and Low-Level Designs (LLD) for a secure, scalable, and resilient OT security fabric.
- Comprehensive Testing Plans and Strategies.
- Change Impact Assessments to ensure safe, non-disruptive deployment in safety-critical industrial environments.
Program Workstreams & Technical Scope
The deployment spans across a heavily federated estate and is broken down into three core technical workstreams:
1. Network Access Control (NAC)
- Technology Stack: FortiNAC.
- Objectives: Implement NAC (802.1X) across Layer 2 switches to achieve robust device authentication, posture checking, and dynamic access control/segmentation without disrupting active operations.
2. Endpoint Detection & Response (EDR)
- Technology Stack: SentinelOne (for air-gapped endpoints) & Microsoft Defender for Endpoint (MDE) (for internet-exposed endpoints).
- Objectives: Deploy behavior-based threat detection safely within highly constrained, legacy OT hardware environments.
3. Network Detection & Response (NDR) + OT Visibility
- Technology Stack: Claroty + FortiGate + FortiGuard + FortiNAC.
- Objectives: Establish comprehensive perimeter threat detection, continuous visibility, and native SOC integration.
Requirements & Experience Profile
- OT Security Expertise: Proven track record as a Cyber Security Architect working natively within safety critical industrial environments (e.g., Utilities, Water, Energy, Oil & Gas, or Rail).
- Lifecycle Ownership: Direct experience writing production-grade HLDs and LLDs, alongside conducting successful Proof of Concepts (POCs) for security tooling.
- Tooling Mastery: Deep architectural knowledge of at least two of the primary stack components: FortiNAC, Claroty, SentinelOne, or Microsoft Defender for Endpoint (MDE).
- Framework Alignment: Strong understanding of OT network security segmentation principles (Purdue Model) and industrial standards such as IEC 62443 or the NCSC CAF.
£600.00 - £680.00 / day
Talent International UK and it's subsidiaries, Digital Gurus, Infinite Talent and Rethink act as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this opportunity, you accept the T&C's, Privacy Policy and Disclaimers which can be found at talentinternational.co.uk





