Senior Manager - Operational Technology & Information Technology Penetration Testing

Working Location: Kai Tak, Kowloon

Employment Duration: Permanent

Responsibilities

• Lead pre‑engagement risk assessments, define safe rules of engagement, test plans, test windows, no‑touch assets, methodologies and rollback plans; integrate with change control/MoC and permit‑to‑work/LOTO processes. 
• Help scope and conduct penetration tests and vulnerability assessments on OT systems, including ICS, PLCs, SCADA, and related devices. 
• Help to scope and perform regular IT penetration testing including external/internal infrastructure, web application, API, and mobile penetration tests. 
• Identify, document, and report security weaknesses, vulnerabilities, misconfigurations, and potential threats within OT environments under controlled conditions. 
• Collaborate with control room, plant operations, IT and OT engineering, security teams and OEM vendors to ensure no disruption to operations during assessments. 
• Prepare clear and actionable reports for both technical and non-technical stakeholders. 
• Experience in testing across OT assets and protocols such as PLC/RTU, HMI/SCADA, historians, IEDs/relays, EWS, jump hosts/DMZ, and protocols such as Modbus/TCP, DNP3, IEC‑60870‑5‑104, IEC‑61850 (MMS/GOOSE), PROFINET, EtherNet/IP, OPC UA/DA, BACnet, Siemens S7comm, CODESYS. 
• Experience with security tools (e.g., Wireshark with ICS dissectors, Zeek on SPAN/TAP) and frameworks for OT environments (e.g., MITRE ATT&CK for ICS). 
• Understanding of relevant regulations and standards (e.g. HK protection of critical infrastructure, NIST, ISA/IEC 62443). 
• Stay current with emerging ICS security threats, vulnerabilities, attack techniques, security best practices and share knowledge with other security team members. 
• Provide regular reports and assist with creating technical presentations for senior leadership. 
• Work with relevant teams to help prioritise and have identified vulnerabilities remediated in a timely manner. 

Requirements

• Bachelor's degree in Computer Science, Information Technology, or a related field.
• At least 6 years of experience in cybersecurity, including security assessment and penetration testing.
• At least 4 years of experience in Operational Technology (OT) and IT penetration testing, vulnerability assessments across production or pre-production ICS systems and IT systems.
• Hold a relevant IT penetration testing certification such as OSCP, OSCE. 
• Hold a relevant OT certification (GICSP, GRID, SANS ICS410, SANS ICS515). 
• Independent management experience covering penetration testing projects, including project planning, scoping, and quality assurance. 
• Strong understanding of OT stack (e.g., ICS protocols, PLCs/RTUs, critical infrastructure protection expectations)
• Experience performing both manual and automated penetration testing, using tools such as: Read‑only/passive tooling (e.g., Wireshark with ICS dissectors, Zeek on SPAN/TAP),protocol interrogation, and safe enumeration of PLC/RTU functions.
• Scripting/automation with Python (e.g., scapy) and PowerShell for custom ICS checks and data handling. Ability to design and work in a lab environment/digital twin environments for proof‑of‑concept and security testing.
• Experience reviewing Windows Active Directory security and IT/OT hybrid environments.
• Knowledge of scripting languages such as Python, Ruby, or PowerShell.
• Experience mapping to MITRE ATT&CK for ICS, developing attack chains from IT to OT, and collaborating with SOC/defenders to validate detections.
• Knowledge of scripting languages such as Python, Ruby, or PowerShell.
• Excellent written and verbal communication skills, including the ability to gather and critically evaluate information and prepare written documents that clearly and concisely identify the issues presented and their proposed resolution.
• Ability to explain technical issues to non-technical stakeholders.
• Embrace new ideas and approaches and be willing to learn and adapt to evolving technologies. 
• Actively shares technical knowledge and insights with team members to foster a collaborative environment. 
• Good command of spoken and written English.