GRC Analyst (OT Testing)

A leading global organisation is seeking an Operational Technology Cybersecurity Controls Analyst to play a pivotal role in safeguarding its operational technology landscape and enhancing cyber resilience across international sites.

This position offers you the opportunity to ensure that cybersecurity controls within OT environments are not only defined but also consistently tested, understood, and effectively applied—supporting safe, reliable, and compliant operations. You will thrive in a collaborative environment, working closely with OT site teams and internal stakeholders to bring clarity, structure, and confidence to control testing and assurance activities. As a trusted point of contact for OT cybersecurity controls, your expertise will help translate standards and regulatory expectations into practical, actionable outcomes. The organisation values transparency, continuous improvement, and empowering teams to meet security and regulatory requirements with confidence. With flexible working arrangements, generous wellbeing benefits, and a commitment to diversity and inclusion, this is an exceptional opportunity for you to advance your career while making a meaningful impact on global operations.

• • Join a globally recognised employer celebrated for its inclusive culture, flexible work schemes including hybrid models, and comprehensive wellbeing programmes designed to support your professional growth and personal life.
• • Play a crucial role in strengthening cyber resilience by ensuring robust cybersecurity controls are implemented and maintained across diverse operational technology environments worldwide.
• • Benefit from international development opportunities, gender-neutral parental leave policies, employee share plans with matching contributions, extensive healthcare coverage, and a supportive network that values every individual’s unique background.

What you'll do:

As an Operational Technology Cybersecurity Controls Analyst, you will be instrumental in executing comprehensive control testing strategies that underpin the safety and reliability of critical systems. Your day-to-day responsibilities will involve collaborating with cross-functional teams to ensure that all aspects of cybersecurity controls are rigorously evaluated against both internal benchmarks and external regulatory frameworks. By conducting thorough assessments of OT assets and infrastructure, you will uncover potential risks while supporting remediation efforts through detailed documentation and follow-up. Your ability to communicate complex technical concepts in accessible terms will empower site teams to adopt best practices confidently. Success in this role means not only protecting vital operations but also contributing to a culture of transparency, accountability, and continuous learning within the global cybersecurity community.

• Execute and continuously enhance cybersecurity control testing processes for operational technology environments to ensure ongoing protection against emerging threats.
• Ensure all OT cybersecurity controls are fully aligned with internal standards as well as applicable external regulations to maintain compliance across multiple jurisdictions.
• Conduct structured testing procedures across various OT assets, infrastructure components, and supporting processes to identify vulnerabilities and areas for improvement.
• Collaborate closely with OT site teams to facilitate consistent adoption of both OT and IT control requirements throughout the organisation’s operations.
• Strengthen overall operational cyber resilience by meticulously documenting findings, tracking remediation actions, and following up on outstanding issues until resolution.
• Serve as a knowledgeable resource for queries related to OT cybersecurity controls and testing methodologies, providing clear guidance to stakeholders at all levels.
• Promote transparency by maintaining accurate records of control testing activities and fostering open communication regarding governance practices.
• Drive continuous improvement initiatives within the OT cybersecurity governance framework by identifying process enhancements based on testing outcomes.
• Support the development of training materials or awareness campaigns aimed at increasing understanding of OT cybersecurity requirements among site personnel.

What you bring:

To excel as an Operational Technology Cybersecurity Controls Analyst, you will bring proven experience in information security or related disciplines alongside hands-on exposure to OT control testing within industrial settings. Your academic background equips you with technical acumen while your professional journey has honed your ability to navigate complex regulatory landscapes. You possess strong analytical skills that enable you to dissect intricate compliance requirements into actionable steps. Your interpersonal abilities foster effective collaboration with diverse stakeholders—from plant managers on-site to governance leaders at headquarters—ensuring alignment around shared objectives. A consultative approach allows you to offer empathetic guidance tailored specifically for each team’s needs. Your meticulousness shines through in every report or recommendation you produce; nothing escapes your notice when it comes to risk identification or mitigation planning. Above all else, your enthusiasm for continuous learning keeps you abreast of evolving industry standards so that your contributions remain relevant now and into the future.

• A degree in Information Security, Cybersecurity, Computer Science, IT, Engineering or a related field provides you with the foundational knowledge required for this specialised role.
• More than three years of relevant professional experience in OT Control Testing—particularly supporting plant managers—demonstrates your practical expertise in industrial environments.
• Advanced familiarity with ISO 27001 / NIST / IEC 62443 frameworks is highly desirable but not mandatory; your willingness to learn new standards is equally valued.
• Exceptional proficiency in English enables you to review, interpret, document complex security materials clearly and collaborate effectively with international colleagues.
• Proven stakeholder management skills allow you to build trust-based relationships across departments while influencing positive change through thoughtful recommendations.
• Project management capabilities equip you to coordinate multiple initiatives simultaneously without compromising quality or timelines.
• A consulting mindset ensures you approach challenges with empathy—providing practical solutions tailored to each site’s unique context rather than one-size-fits-all answers.
• Excellent documentation skills enable you to create precise reports that inform decision-making at all organisational levels; your attention to detail minimises risk exposure.
• A data-driven approach supports performance tracking and reporting so that improvements can be measured objectively over time.
• Amenability to work on a day-shift schedule (10:00 AM – 7:00 PM) under a hybrid set-up in Makati demonstrates your flexibility and commitment.

What sets this company apart:

This organisation stands out as one of the most respected employers globally—recognised among the Top 15 Best Workplaces in the Philippines by Great Place to Work® as well as being named Top GBS Employer by Everest Group for four consecutive years. Employees benefit from flexible work schemes including hybrid models that promote work-life balance along with options such as working from anywhere for up to 30 days per year. The company invests heavily in its people through diverse national and international growth opportunities supported by world-class training programmes. Comprehensive wellbeing standards include health initiatives focused on preventive care plus HMO healthcare coverage plans. Gender-neutral parental leave policies ensure inclusivity for all family structures while employee share plans—with voluntary investment options matched by the company—help secure long-term financial wellbeing. Additional perks such as provident funds, group life insurance, personal accident coverage further demonstrate their commitment to holistic employee support. Most importantly, this is an environment where everyone’s uniqueness is celebrated; applications are welcomed from individuals of all genders, backgrounds, cultures, religions, sexual orientations, abilities, and generations—making it truly inclusive.

What's next:

If you are ready to make a significant impact on global cyber resilience while advancing your career within an inclusive environment that values every individual’s contribution—this is your moment!

Apply today by clicking on the link provided.

Due to the high volume of applications we are experiencing, our team will only be in touch with you if your application is shortlisted.