Are you ready for a new beginning?

We need your talent, knowledge and dedication to better our world with biology.

Our purpose points the way

In Novonesis, we know that solutions rooted in biology can help solve humanity’s biggest challenges. Since we began more than a century ago, this has been our guide. It’s how we've gotten so far. And it’s how we'll impact the future. Now, more than ever, the world needs change. And with biosolutions, the possibilities for transformation are endless.

We’re here to better our world with biology.

Join us as our new Cyber Security Engineer (OT)

Are you passionate about OT-Security and ready to take our monitoring capabilities to the next level?

We are seeking a Cyber Security Engineer to lead and mature our OT monitoring environment. You will be responsible for onboarding new production sites, fine-tuning detections, and ensuring deep visibility into our operational networks. If you enjoy working hands-on with network monitoring, incident analysis, and continuous improvement of detection logic, this role offers a unique opportunity to shape the future of OT-Security at Novonesis.

Welcome to Cyber Defence Centre

You’ll join a growing and highly skilled team of cyber-security professionals working across IT and OT domains as advisors, engineers, and analysts. The team has a strong foothold in the organization, and there is a high demand for our competencies in building Novonesis’ Cyber Defence Centre.

Expect An Environment Where

Your ideas and technical expertise drive tangible improvements to our detection and response capabilities.

You work with modern platforms such as Nozomi Networks Guardian and Microsoft Sentinel, and help define their integration with OT use cases.

You collaborate closely with site engineers, automation specialists, and CDC colleagues to translate production-specific risks into actionable monitoring logic.

In This Role, You’ll Make An Impact By

As a Cyber Security Engineer, your role will have a direct influence on improving our OT security monitoring and ensuring the resilience of our global production networks. Your contributions will be divided into two main focus areas:

Operational Focus (60%)

In The Day-to-day Operations, You Will

Lead the technical onboarding of new OT sites into our monitoring platforms, including Nozomi Guardian and Sentinel.

Perform deep-dive forensics and analysis on alerts and network anomalies to identify root causes and mitigate risks.

Continuously tune and optimize detection rules, thresholds, and asset classifications to improve monitoring precision.

Support improvements in data quality, sensor placement, and network visibility to ensure robust coverage.

Assist the CDC in triage and incident investigations, ensuring OT-specific events are resolved effectively and lessons are applied for further prevention.

Engineering and Development Focus (40%)

Beyond Daily Operations, You Will Also

Design and implement scalable architectures for OT monitoring and log integration.

Develop playbooks, baselines, and enrichment logic to enhance advanced detection and correlation capabilities.

Collaborate with the OT Security Architecture and GRC teams to align monitoring controls with regulatory requirements like IEC 62443 and NIS2.

Share knowledge with colleagues through documentation, training, and collaboration on OT-specific workflows.

To Succeed You Must Hold

4–6 years of experience in OT or ICS cyber-security, preferably from a SOC/CDC or engineering environment.

A solid understanding of industrial protocols and network architectures across the Purdue model.

Hands-on experience with Nozomi Networks, Claroty, or similar OT NIDS platforms.

Practical knowledge of incident response, threat detection, and forensic techniques in OT.

Scripting or automation skills (Python, PowerShell, REST API) are a plus.

Familiarity with IEC 62443, NIS2, or related frameworks for secure industrial operations is a plus.

Location: Hørsholm, with the option to work in our new office in Carlsberg Byen and global collaboration across sites.

Application deadline: 07 December 2025

Contact details: Petrut Jianu, Head of Cyber Defence Centre, petji@novonesis.com

Could our purpose be yours? Then apply today!

At Novonesis we commit to an inclusive recruitment process and equality of opportunity for all our job applicants. We recommend you not to attach a cover letter to your application. Instead, please include a few sentences in your resume/CV about why you are applying. To ensure a fair recruitment process, please refrain from adding a photo in your resume/CV.

Novonesis is dedicated to fostering a unique community by embracing and respecting differences. We make all employment decisions based on business needs, ensuring that every individual can thrive, regardless of identity or background such as ethnicity, religion, gender, sexual orientation, age, disability, or veteran status.

Want to learn more?

Learn more about Novonesis, our purpose, and your career opportunities at novonesis.com

Not the right fit for you?

Even if this job isn't the right fit for you, perhaps you know someone who might find it interesting. If so, please feel free to share the job link and encourage them to apply. Thank you for your referral! Please check out our other open positions. The right fit for you could just be a few clicks away.

Stay alert: Avoid recruitment scams

At Novonesis, We Are Committed To Maintaining a Safe And Transparent Recruitment Process. Please Be Aware Of Potential Scams Targeting Job Seekers And Take Note Of The Following

Novonesis will never ask for sensitive personal information, such as bank account details, Social Security numbers, or passwords, at any stage of the hiring process.

Novonesis does not make employment offers without conducting interviews with candidates.

If you receive suspicious communication claiming to be from Novonesis, please do not share any personal or financial information. We encourage you to verify the legitimacy of the message by contacting us directly through our official channels.