Expert(e) en cybersécurité (OT) | Cyber Security Expert (OT) – Montréal

Equans is looking for a Cyber Security Expert (OT), based in Montreal (Quebec)!

What Equans offers you

• Group insurance from your first day of work;
• A group pension plan;
• A bonus program;
• Balance between work and personal life;
• Professional and personal development in a company experiencing strong growth;
• A positive working environment characterized by competence, responsibility and innovation;
• Competitive terms of employment and excellent benefit schemes;
• A diverse workplace regarding gender, age and cultural background. We believe in the importance of diversity and inclusion.

The Equans group is a world leader in the energy and services industry. The Group operates in 20 countries, with 90,000 employees working on 5 continents. Equans is a Bouygues group company.

Equans designs, installs, and delivers customized solutions to improve its customers’ equipment, systems and technical processes and optimize their use in the context of their energy, industrial and digital transitions. Equans is a Bouygues group company.

Active in Canada and the United States for more than 30 years, Equans Services is the partner of businesses, industries and institutions that want to move towards more connected buildings, manage their facilities efficiently and reduce their carbon footprint.

We design, implement, and maintain custom solutions to improve our customers’ facilities, systems, and infrastructures.

Our core offerings are focused on the following areas:

• Integrated Asset and facilities management;
• Operation and maintenance of buildings and equipment (including district heating and cooling);
• Energy efficiency solutions and execution of decarbonization roadmaps;
• Building automation and systems;
• Solutions for transportation and mobility.

To learn more, visit www.equansservices.com/en

Summary

Reporting to Americas Chief Information Security Officer (CISO) or Deputy CISO, we are seeking a highly skilled and motivated Cybersecurity Engineer to lead the development, implementation, and maintenance of security strategies focused on operational technology (OT) systems. This role is critical in safeguarding our enterprise’s digital and physical infrastructure from evolving cyber threats. The ideal candidate will possess a deep understanding of cybersecurity frameworks, OT security architecture, and the unique challenges of securing OT systems in industrial and critical infrastructure settings.

Description

1. Operational Technology (OT) Network Security:

• Design compliance and auditing process for implementation by operational teams tailored to OT environments, including PLCs, and ICS devices.
• Conduct risk assessments to identify and mitigate vulnerabilities in industrial networks.
• Support the implementation of intrusion detection and prevention systems (IDS/IPS) for OT environments.

2. Incident Response & Threat Intelligence:

• Develop and execute incident response plans for IT and OT networks.
• Investigate and analyze cybersecurity events, coordinating containment and recovery efforts.
• Maintain up-to-date threat intelligence related to IT and OT threats.

3. Compliance & Risk Management:

• Ensure adherence to relevant regulatory standards (e.g., GDPR, ISO 27001, NIST CSF, NERC CIP, IEC 62443, NIS and/or NIS2).
• Perform regular audits and vulnerability scans to identify security gaps and propose remediations.
• Manage third-party vendor risk related to cloud and OT operations.

4. Team Collaboration & Leadership:

• Collaborate with IT, DevOps, and OT teams to integrate security into workflows and processes.
• Collaborate with business engineering teams to architect secure OT solutions.
• Provide cybersecurity training and awareness programs for employees and stakeholders.
• Act as a subject matter expert for OT security in cross-functional projects.

Requirements

• Authorized to work in Canada.
• Able to pass a background check and the security level required.

Technical Skills:

• Expertise in security OT Networks, including knowledge of industrial protocols (e.g., Modbus, OPC UA)
• Strong knowledge of smart building automation standards including ASHRAE Standard 180, ISO 14042, BACnet, etc.
• Proficiency in security tools such as SIEMs, firewalls, IDS/IDP, vulnerability scanners and EDR solutions.
• Hands-on experience with zero-trust architecture and identity management.

Soft Skills:

• Excellent problem-solving and analytical skills
• Strong communications skills to convey technical concepts to both technical and non-technical stakeholders.
• Ability to mentor junior team members in cyber security practices.
• Self-driven and ability to accept personal responsibility and accountability.
• Detail oriented and well organized.

Education/Experience

• Minimum of 5+ years in OT Security
• BS/BA (with an IT focus) required or 15+ years of progressive Information Technology and Cybersecurity work experience in lieu of degree.
• 10+ years of progressive Information Technology and Cybersecurity work experience
• CISSP or GICSP certification highly recommended.
• Additional preferred certifications: CCSP, CISA, CISM, PMP, GCIP.
• Highly proficiency with Microsoft O365 applications (MS Excel specifically)
• Good working knowledge of Power BI and SharePoint preferred.
• Experience with common information security management frameworks, such as NIST CSF, ISO 27001/27002, GDPR, CMMC, and CIS

Languages

• Serving Canada and the United States, we must ensure the delivery of our services in the appropriate language, guaranteeing smooth and tailored communication to meet their needs. 

  Level of spoken and written French: Advanced

  Level of spoken and written English: Proficient

  Frequency of English usage : Daily

• Spanish fluency is a strong advantage

Key Attributes of an Ideal Candidate:

• Strategic thinker with the ability to balance security, usability and business needs.
• Passionate about staying ahead of evolving threats and continuously improving security posture.
• Skilled in managing and mitigating risks in highly dynamic environments.
• Proactive and collaborative, with the ability to bridge gaps between security, IT, and DevOps teams.
• Experience working in global, enterprise-scale organizations with complex infrastructure.

Other Essential Abilities

• Ability to meet the highest attendance requirements.
• Ability to communicate effectively, both written and verbally.
• Ability to use a workstation.
• Ability to handle multiple assignments on a timely basis with a high degree of accuracy.
• Could involve some lifting.

Working Environment

The working environment characteristics described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.  Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.   While performing the duties of this job, the employee is not exposed to weather conditions.  The noise level in the work environment is usually moderate.

Equal employment opportunity

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, or national origin.

Comment

Does this challenge interest you? We would like to get to know you and we thank everyone who applies.