Position:
OT Penetration Tester
Location:
Abu Dhabi, United Arab Emirates
Company:
Ansen Ai
About Us
Ansen is a globally expanding cybersecurity company driven by AI innovation.
Headquartered in Abu Dhabi, we deliver cutting-edge security technologies and professional services to government bodies and enterprises across MENA, APAC, and North America.
Our mission is to build secure, resilient digital systems for the modern world.
Role Summary
We are seeking an OT Penetration Tester with hands-on experience in industrial control systems (ICS) security. This role involves performing safe and targeted assessments across OT environments, including SCADA, DCS, PLCs, and legacy infrastructure. Candidates must demonstrate a strong understanding of OT architecture, threat modeling, protocol exploitation, and stakeholder communication.
Key Responsibilities
Perform vulnerability assessments and penetration testing on OT/ICS environments, including PLCs, RTUs, DCS, and HMIs
Utilize OT-safe tools and adhere to strict safety standards (e.g., LOTO) to avoid operational disruption
Analyze OT network architectures (e.g., Purdue Model) and test segmentation between IT/OT zones
Identify and exploit vulnerabilities in OT protocols (Modbus, DNP3, S7comm, OPC UA) and embedded firmware
Collaborate with control system engineers to define secure test scopes and operational constraints
Translate technical findings into business and operational risks; provide mitigation recommendations
Align assessments with standards such as IEC 62443, NIST SP800-82, and ISO 27001 for OT
Document results with clear and actionable technical reports for both engineering and executive audiences
Qualifications
Bachelor's degree in Computer Science, Cybersecurity, Electrical Engineering, or related field
3+ years of experience in OT security assessment, ICS penetration testing, or critical infrastructure defense
Deep knowledge of ICS components (PLCs, RTUs, HMIs), architectures (Purdue Model), and network protocols
Proficiency with tools like Wireshark (OT dissectors), , Metasploit (with caution), GRFICS
Familiarity with LOTO, MOC, and safety processes for industrial environments
Excellent communication skills and ability to work with plant operators and cybersecurity teams
High sense of responsibility when handling production environments
Preferred Certifications
OT-Specific:
GICSP, GRID, ICS410, ISA/IEC 62443
General:
OSCP, CEH, Pentest+, CCNA (Industrial optional)
Bonus Points
Hands-on experience with WirelessHART, ISA100, LoRaWAN
Scripting experience in Python/PowerShell tailored for ICS
Incident response or physical security experience in OT environments
Research or publications in OT threat analysis or protocol fuzzing
What We Offer
Standard insurance & benefits plan
Performance-linked year-end bonus
Work visa support for UAE area
Opportunity to work on critical national infrastructure projects
Diverse and highly technical global team culture
Career development through participation in top-tier security projects
Show more Show less
