Job Specifications
This position is based at our Luxembourg headquarters and requires regular office presence. The EIB offers you the opportunity to live and work in a truly international and multi-cultural environment. We also offer relocation support.
The EIB, the European Union's bank, is seeking to recruit for its Chief Financial Controller Directorate (CFC), Corporate Real Estate Department (CRE), Asset and Property Management Division (APM), Building Technology Unit (BT) at its headquarters in Luxembourg, an Operational Technology (OT) Cyber Security Specialist*.
This is a full-time position at grade 5 for which the EIB offers a permanent contract.
Internal benchmark Officer Non-financial Risk Management
Panel interviews are anticipated for April/May 2026.
Purpose
As an OT Cybersecurity Specialist, you will play a critical role in safeguarding the bank’s operational technology environments, including building technical infrastructure systems such as HVAC, Building Management Systems (BMS), Security and Safety systems and industrial control systems applicable to EIB Group’s Corporate Real Estate assets and services. Your mission is to ensure the resilience and security of these systems against evolving cyber threats.
Operating Network
Reporting to the Head of Building Technology Unit, you will be part of the team whose responsibility is to design, build and support further expansions and operational run of the building systems including the related infrastructure.
Accountabilities
Define and implement the OT/IoT cybersecurity strategy in collaboration with external providers, ensuring alignment with the EIB Group's security framework and the specific requirements and standards applicable to systems and technologies linked to the built environment.
Collaborate with internal OT, IoT, and facilities support teams, providing timely and actionable reporting to management on the security posture, risk exposure, and mitigation progress across cyber-physical systems.
Maintain a complete, comprehensive inventory and documentation system for all OT and IoT assets, including PLCs, RTUs, sensors, gateways, and communication interfaces (e.g., Modbus, BACnet, KNX, MQTT/S), ensuring full visibility and traceability.
Develop and continuously improve OT/IoT cybersecurity procedures, including incident response protocols and governance frameworks for internal and third-party environments.
Support and supervise the hardening and secure configuration of OT/IoT infrastructure, including protocol-level security improvements (e.g., encrypted Modbus, BACnet/SC, RTSP, OSDP, OPC, KNX, SIP, PROFINET, S7, UDP, TLS, MQTTS), network segmentation, and zero-trust access models.
Conduct regular cybersecurity assessments and gap analyses to ensure compliance with OT/IoT standards (e.g., ISA/IEC 62443, EN 303 645, NIS2, ISO/IEC 27002, etc.) and support/supervise the implementation of mitigation measures.
Evaluate new building automation technologies and IoT architectures, ensuring they meet cybersecurity requirements, support secure communication protocols, and align with the Bank’s operational and regulatory objectives.
Ensure compliance and risk alignment across IT/OT/IoT convergence zones, coordinating with internal stakeholders and regulators to maintain a robust control environment.
Manage the Identity and Access Management (IAM) for OT/IoT systems, ensuring secure and compliant access to data and systems, including privileged access monitoring and periodic recertification in accordance with the relevant EIB Group’s IT policy for the OT/IoT environment.
Manage daily OT/IoT cybersecurity operations, including change and incident management, supplier activity reviews, and the initiation and tracking of security improvement projects.
Define, coordinate, and monitor OT/IoT project plans, ensuring stakeholder alignment, timely delivery, and continuous improvement of cyber resilience capabilities.
Support the deployment, integration, and lifecycle maintenance of the OT/IoT infrastructure and smart building systems, ensuring secure connectivity, protocol compatibility, and operational continuity.
Qualifications
University degree (minimum an equivalent to a Bachelor) preferably in a STEM discipline (Computer Science, Engineering, Mathematics, Physics, or related field) or equivalent.
Minimum of 5 years of relevant professional experience in cybersecurity, ideally in structured or regulated environments.
Experience in developing OTIoT cybersecurity strategies and designing architecture, including functional and technical requirements, in collaboration with IT teams.
Hands-on experience with OT/IoT infrastructure, including servers, virtualization, backup, and high availability systems, as well as patch and firmware management for OT/IoT and Microsoft OS devices.
Proven experience with OT/IoT network cyber security and networking technologies/connectivity protocols.
Proven ability to draft and document OT/IoT policies and procedures, network diagra