我們始終以超越客戶和社會的期望，及提供卓越的市場服務為己任。身為行業的領導者，SGS提供專業的商務解決方案，協助提升產品品質、安全性、生產力及降低風險；在法規日益增多的國際市場上為客戶領航。我們獨立公正的服務為客戶提供特殊的價值，並確保其業務的永續發展。

Key Responsibilities
• Cybersecurity Assessment – Conduct assessments, gap analysis, and testing for Industrial Control Systems (ICS/OT) based on the IEC 62443 series standards.
• Compliance Assessment – Support clients in establishing OT cybersecurity management systems, perform assessments, and verify compliance with international standards and local regulations.
• Compliance Solutions – Provide recommendations to strengthen ICS/OT environments, covering areas such as vulnerability remediation, risk management, product security, and supply chain security.
• Project Management & Client Engagement – Independently or collaboratively manage projects, including planning, executing assessment, drafting reports, and delivering professional advice to clients.
• Training & Knowledge Sharing – Conduct cybersecurity training sessions, workshops, and internal knowledge-sharing to enhance both client and team capabilities.

What We Offer

• Opportunity to work in a global organization with cross-border cybersecurity projects and experts.
• Exposure to real-world cybersecurity use cases across industries.
• Career development and growth.

Qualifications

• Bachelor’s degree or above in Information Security, Electrical/Electronic Engineering, Computer Science, Automation, or related fields.
• Minimum 3 years of experience in cybersecurity, with at least 1 year in ICS/OT environments (e.g., power, petrochemical, manufacturing, semiconductor, medical automation).
• Solid understanding of industrial network and OT-specific cybersecurity challenges.
• Hands-on experience with vulnerability assessment, threat modeling, or risk assessment.
• Fluent English proficiency (reading, writing, speaking, and listening) is required for working with international standards and engaging in global projects.

Preferred / Nice-to-Have

• Familiarity with the IEC 62443 standards (esp. 2-1, 2-4, 3-3, 4-1, 4-2).
• Professional certifications such as CISSP, CISA, CEH, GICSP, or ISA/IEC 62443 (CFS/RAS/CDS/CMS).
• Practical experience with ICS technologies (DCS, SCADA, PLC, HMI).
• Involvement in compliance projects related to EN 18031, IEC 62443 Cyber Resilience Act (CRA), or other regulations.
• Strong communication and consulting skills to translate technical findings into business-oriented recommendations