Job title OT Security Architect
Work location - Bedford
Is it Hybrid, onsite or remote position - Hybrid
Tentative Start date 13-Jul-2026
Contract duration 6 months
Vendor rate 80 USD/Hr
Mandatory skills - The role focuses on Rockwell PLC (ControlLogix/CompactLogix) systems, Ignition SCADA, and compliance with EU Cyber Resilience Act (CRA), IEC 62443/ISA99, ISA 95, GMP, and FDA 21 CFR Part 11.
Minimum years of experience needed in the required skills- 8-10 years
Minimum over all work experience required 10 years
Domain Cyber Security
Any certification required - Preferred Certifications
IEC 62443 Cybersecurity Expert
GICSP / CISSP
Rockwell Automation certifications
Complete job description
Define and maintain global OT reference architecture (Purdue model, zones & conduits, DMZ).
Lead CRA implementation and gap assessments for OT systems.
Secure and harden Rockwell PLCs and Ignition SCADA environments.
Perform OT cyber risk assessments and threat modelling.
Implement secure configuration baselines for servers and engineering workstations.
Ensure compliance with GMP & FDA 21 CFR Part 11 (audit trails, electronic records, RBAC).
Support Computer System Validation (CSV) documentation (URS/NFR/FS/DS/IQ/OQ/PQ).
Define patch management and vulnerability handling processes for validated OT systems.
Support audit readiness and regulatory inspections.
Interview mode - In person/Virtual - Virtual
How many rounds of interview 1 or 2
Project Code: OT security code for Merck