
INCYDE · Berlin/Darmstadt/Leipzig/München/Wien
DIESE AUFGABEN ERWARTEN DICH Als IT/OT-Security (Junior) Expert (m/w/d) erwarten Dich spannende und abwechslungsreiche Aufgabenfelder in der Entwicklung zukünf...
Als IT/OT-Security (Junior) Expert (m/w/d) erwarten Dich spannende und abwechslungsreiche Aufgabenfelder in der Entwicklung
zukünftiger und der Absicherung bestehender Industriesysteme. Du bist Experte in übergreifenden Cyber-Security Themen und
Raum.
unserer Kunden identifizierst und die Risiken bewertest.
Industriesystems weiter zu verbessern.
Strategie, Architektur und Umsetzung von IT-Security.
Projektumsetzung verantwortlich.
zu gestalten.
etc.) oder eine vergleichbare Ausbildung war der Grundstein für Deinen Start ins Berufsleben.
Industriesysteme sammeln.
Kunden.
auf externen Weiterbildungen kannst Du Dein Knowhow erweitern und Deine persönliche Weiterentwicklung vorantreiben.
We’re looking for a hands-on Smart Factory Architect who can design and drive delivery of edge-to-cloud industrial data & application architectures across global manufacturing sites. You’ll bridge OT systems (PLC/SCADA/DCS/MES/Historians) with cloud services (Azure/AWS/Snowflake, etc.), ensuring ISA-95 interoperability, robust cybersecurity (Zero Trust), and reliable data flows for use cases like performance analytics, predictive maintenance, and digital twins. You’ll operate as a technical leader who can review architecture, validate implementation plans, unblock delivery, and communicate clearly across engineering, OT, security, networking, and site stakeholders. ________________________________________ Key responsibilities Architecture & technical leadership • Act as the technical expert for Smart Factory / Edge architectures in a multi-site, multi-stakeholder environment. • Review architectural designs (edge, network, cloud, security, data models) and confirm the feasibility of implementation plans. • Align with Cloud Engineers and OT consultants to ensure ISA-95 compliant IT/OT integration and interoperability across layers (L0–L4/5). • Validate that all required services are deployed and configured correctly (cloud resources, edge runtime, connectivity, identity, monitoring). Edge-to-cloud integration & data flow validation • Define and validate edge-to-cloud data flow requirements, including: o Tag list/signals, payload schemas/formats, naming conventions o Frequency, buffering, store-and-forward, latency/availability targets o Data quality rules (units, timestamps, limits, gaps, duplicates) o Create logical & conceptual models for contextualization • Validate conceptual and logical modelling of the factory asset hierarchy (site/area/line/cell/equipment/component) and mapping to data streams. • Support the implementation of industrial connectivity patterns (e.g., OPC UA, MQTT, Modbus, REST) and integration with OT data sources (historians, SCADA, MES, CMMS, LIMS when relevant). Cloud & platform enablement (Azure/AWS/Snowflake) • Drive architecture decisions for ingestion, storage, and analytics using services such as: o Azure (IoT Hub, Event Hubs, Functions, AKS, Data Lake, Databricks/Synapse, Monitor, Key Vault, Private Link) o AWS (IoT Core, Kinesis, Lambda, EKS, S3, Glue, CloudWatch, Secrets Manager, Greengrass) o Snowflake (ingestion patterns, data modeling, governance, performance considerations) • Ensure observability is in place: logging, metrics, tracing, alerting, and operational runbooks. Network, cybersecurity & site readiness • Coordinate with site IT/networking to ensure: o Connectivity readiness (routing, DNS, proxy, certificates) o Firewall rules, ports, and secure connectivity patterns (VPN/ExpressRoute/Direct Connect where applicable) • Ensure alignment with factory cybersecurity and Zero Trust principles, including segmentation, least privilege, secure remote access, and auditability. Testing, go-live, and operational stabilization • Own the go-live checklist and drive issue resolution during integration testing and cutover. • Support test data ingestion and end-to-end validation, from OT signal extraction through cloud ingestion, storage, and consumption. • Validate performance and reliability requirements (throughput, latency, resilience, recovery) and ensure operational handover readiness. Digital Twin & OT platforms • Contribute to Digital Twin concepts built on IT/OT convergence (asset hierarchy + telemetry + context). • Work hands-on with OT / Smart Factory platforms such as AVEVA, Sight Machine, and/or similar (e.g., Ignition, OSIsoft/PI, Tulip, PTC ThingWorx, depending on environment). ________________________________________ Required qualifications & experience • 7+ years of experience in industrial IT/OT, smart factory, or manufacturing digitalization roles, with architect-level ownership of designs and deployments. • Proven hands-on delivery experience implementing edge-to-cloud integration in real factory environments. • Strong understanding of: o ISA-95 (integration patterns and manufacturing system layers) o Industrial architectures (OT network segmentation, DMZ patterns, edge gateways) o Core OT systems (PLC/SCADA/DCS, historian, MES) and data acquisition methods • Cloud architecture experience on Azure and/or AWS (plus familiarity with Snowflake, databricks and modern data platforms). • Solid fundamentals in networking (firewalls, VLANs, routing, certificates, proxies) and troubleshooting in restricted environments. • knowledge of identity and access management (Azure AD/RBAC/Managed Identities or AWS IAM, secrets, key management). • Excellent communication skills, able to lead technical conversations with security, IT, OT, and business stakeholders globally. ________________________________________ Technical skill set (must-have) • Edge/IIoT protocols & patterns: OPC UA, MQTT, REST APIs, store-and-forward, buffering, offline resilience • Data engineering basics: schema design, time-series concepts, streaming ingestion, partitioning, data quality checks • Cloud security: least privilege, private networking, key management, audit/logging, policy enforcement • Operational readiness: integration test planning, go-live governance, incident triage and structured problem-solving ________________________________________ Preferred / nice-to-have • Knowledge of IEC 62443 / OT security frameworks and industrial zero trust patterns. • Experience with Kubernetes at edge/cloud (AKS/EKS), IaC (Terraform/Bicep/CloudFormation), and CI/CD. • Experience with industrial historians and time-series stacks (e.g., AVEVA/PI-like patterns). • Familiarity with data governance (catalog, lineage, access policies) and regulated environments. • Experience building or operationalizing Digital Twin solutions (asset model + context + telemetry). ________________________________________
Are you an Information Security specialist? Are you ready to take on an overall responsibility and drive the IS area in a global business? Join us as our new CISO! As our world changes, Information & Cyber Security are becoming increasingly important for a company such as Westermo. We have long been known for robust hardware, and increasingly so also for Cyber Security features in our software. Information Security at Westermo is not, and should not be an isolated IT function. It is fundamental to trusted products, resilient operations, and long‑term customer confidence. We are now looking for a Global Chief Information Security Officer (CISO) to define, lead, and govern our global cyber security agenda across the entire global organization. This is a diverse role, with operational and strategic aspects. Governance, risk management, and operational resilience are key focus areas. In this global role, you will work across all levels; from the executive management team, our leaders, and key functions across Westermo’s global operations. You will collaborate with IT, R&D, Manufacturing, Operations & Quality to ensure information security is embedded into decision‑making, processes, and culture across the company. Are you our next Global Chief Information Security Officer (CISO)? As Global CISO, you oversee all Information Security related issues. You are the domain expert, the advisor and coordinator. You make sure that Westermo follows IS laws, directives, standards and also set up our own strategy, policies and guidelines. You lead the work and influence people in all departments, making sure we have the right routines, trainings, risk assessments and pass our audits. You will not be starting from a clean slate, but there will be large opportunities to challenge current state and shape the future. Key Responsibilities Advise on identification, assessment, and prioritization of cyber risks across Westermo Provide direction and governance for the Information Security Management System (ISMS) in accordance with ISO 27001, including audits and scope expansion across Westermo companies Support compliance with applicable cyber security regulations and standards (e.g. ISO 27001, IEC 62443, NIS2, customer security requirements) Provide oversight and advisory input on third‑party and supply‑chain cyber security risks Create awareness, teach and train others in the organization. Report regularly to executive management on cyber security posture, risks, incidents, and initiatives Who Are We Looking For? We are looking for someone who has experience in Information Security. You might be an expert in one area of Information Security, but you are looking for a wider role. Or you are already working with broad topics, but are looking for more responsibility, and the opportunity to make your own mark on a role and organization. You like it in a medium sized company; where there’s room for influence, and not hierarchical and bureaucratic. You appreciate having different kinds of competence around you, and are comfortable being the expert in your own area. You can speak to all of your stakeholders, and meet them where they are; from executive management to customers and employees. You are also comfortable in a global company; English is not a problem for you, and you understand there will be differences between countries, even if you don’t know exactly what they are. In short; you are an Information Security Specialist who wants to get in the driver’s seat, with your supporters in the seats next to you. Requirements You are familiar with ISO 27001 and NIS2. Strong knowledge of both IT security and OT/ICS security in industrial environments Great communication skills, being able to teach and train others, but also learn from other specialists in the organization. Proven experience with Information Security governance, risk management, and incident response Meritorious Background from industrial, manufacturing, R&D, or mission‑critical system environments Relevant certifications (e.g. CISSP, CISM, or equivalent) Interest or experience in digital transformation and data governance In Return, We Offer: You will be working at the forefront of technology in a friendly, open culture where you get the opportunity to learn from skilled colleagues every day. A mature and caring leadership in a flat organization. Through our collective agreement you will be covered in terms of insurance, pension and other benefits. We like to have fun together and we regularly enjoy sports and other social activities as a team. We believe that magic happens when people meet. We are a learning organization and we truly love to try new things, think outside the box and be innovative together! Basic Information Location: Västerås, Sweden (preferred) or other Westermo locations Job type: Full‑time Employment contract: Permanent Application: We review applications continuously — apply as soon as possible Contact: Hiring Manager: Johan Inestam, CFO, at johan.inestam@westermo.com Recruiter: Elin Sandell, at elin.sandell@westermo.com About Westermo Westermo is a leading provider of Industrial Data Communications equipment to the global market. Sales are conducted through our own offices in key markets in Europe, North America, Australia and Asia, as well as through distributors and OEM customers worldwide. Development and manufacturing take place in Sweden, Ireland, Germany and Switzerland. Westermo was founded in 1975 and today has over 480 employees with a turnover of around 1 Billion SEK. The company is a wholly owned subsidiary of Ependion, listed on the Nasdaq OMX Nordic stock exchange.
Kyowa Kirin is a fast-growing global specialty pharmaceutical company that applies state-of-the-art biotechnologies to discover and deliver novel medicines in four disease areas: bone and mineral; intractable hematologic; hematology oncology; and rare disease. A Japan-based company, our goal is to translate science into smiles by delivering therapies where no adequate treatments currently exist, working from drug discovery to product development and commercialization. In North America, we are headquartered in Princeton, NJ, with offices in California, North Carolina, and Mississauga, Ontario. Summary: The Associate Director, ERP Functional & Solution Architect, ICT role will be responsible for overseeing MS D365 Enterprise Resource Planning (ERP) within the organization. Crucial role in implementing ERP specific business process improvements and enhancements within the organization and ensuring the system's optimal performance and functionality. Perform the planning, design, configuration, customization, and implementation of MS D365/ERP modules and functionalities, ensuring seamless integration with existing systems, ensuring compliance with industry standards, security protocols, and regulatory requirements. The ERP Functional Architect, Associate Director, ICT role will also serve as a business process analyst aligned with enterprise (i.e., SCM, MFG, Quality) and Corporate Functions (i.e., Finance, HR, Legal, Compliance, Procurement) ensuring successful technical solution development and delivery. Essential Functions: The D365 ERP F&O Functional Architect is responsible for the end-to-end functional design, configuration, and optimization of Microsoft Dynamics 365 Finance & Operations to support business operations across Finance, Procurement, Supply Chain, Manufacturing, Quality, and related business functions. The architect will partner with business stakeholders, technical teams, and implementation partners to ensure that the solution is aligned with corporate strategy, compliant with GxP/GAMP 5 standards (where applicable), and scalable for future business growth. 1. Solution Architecture & Design • Lead the functional design and architecture of the D365 F&O solution across key modules (Finance, Supply Chain, Manufacturing, Procurement, Inventory, Quality, etc.). • Translate complex business requirements into clear, scalable, and compliant functional solutions. • Emphasizes proactive, holistic leadership in solution architecture. • Focuses on aligning solutions with business goals, value streams, and enterprise architecture governance. • Define data flows, integrations, and system interactions between D365 and other enterprise systems & interfaces (e.g., LIMS, MES, 3PL Partners, External Finance Systems, and Cloud systems). • Ensure alignment with Microsoft’s Dynamics 365 roadmap and best practices. 2. Implementation & Configuration • Perform and lead the setup, configuration, and deployment of D365 F&O modules. • End to end management of project/solution management by using tools like Azure Boards for planning and tracking work, Azure Repos for code versioning, and Azure Pipelines for automating build and deployment. Perform all activities from initial user stories and tasks to code, testing, and deployment through integrations with tools like Lifecycle Services (LCS). • Drive fit-gap analysis and functional documentation. Develop User/Functional Requirements, Functional/Technical Design, System/Business process architecture diagrams. • Collaborate with development/vendor/managed service teams to define functional specifications for enhancements, bug/fix, customizations, reports, and interfaces. Co-develop or individually develop code/configurations required and coordinate internal development and user acceptance testing of the solution. • Participate in system validation activities, including IQ/OQ/PQ documentation for regulated environments. 3. Governance & Compliance • Ensure the ERP system design complies with GAMP 5, SOX, and GxP regulatory requirements. • Develop and maintain master data governance, change management, and configuration control processes. • Support audits and inspections through proper documentation and traceability. • Develop current and future state roadmaps and architecture. • Assess and align system release plan with Microsoft Dynamics 365 roadmap 4. Stakeholder Collaboration • Partner with business process owners to define best practices, continuous improvement opportunities, and confirm desired solution to fix the support/bug-fix items raised. Support communities of practice and collaborative development methodology. • Work independently to perform required fix within the D365 framework. Test and confirm the developed fix with business process owners. • Work closely with IT, OT, and cloud teams to ensure integrated digital architecture. • Provide subject matter expertise and training for internal business process owners and super users. 5. Project & Vendor Management • Support ERP implementation and upgrade projects through all phases — initiation, design, testing, go-live, and hypercare. • Manage and coordinate external implementation partners and vendors. • Define KPIs and monitor system performance, adoption, and ROI. Requirements: Education Bachelor’s degree or equivalent experience in computer science, information systems, engineering, supply chain, or related fields required. Microsoft D365 F&O Certification preferred. Experience • 8+ years of experience implementing or supporting Microsoft Dynamics AX / D365 F&O. • Proven expertise across multiple functional domains (Finance, Manufacturing, Supply Chain, Procurement). • Experience designing integrations between ERP and external systems (LIMS, MES, Payment interface with Bank, External Finance Systems, etc.). • Strong understanding of ERP data models, workflows, and reporting. • Strong understanding of functional and solution architecture of, and experience performing code and configuration updates within the following Dynamics 365 modules: o Finance: General ledger, Cash and bank management, Accounts payable, Accounts receivable. Budgeting, Fixed assets, Cost accounting, PR/PO process, Vendor Management, Cost Accounting and Management o SCM: Inventory management, Master planning, Procurement and sourcing, Product information management, Production control, Warehouse management, Cost accounting, Cost management, Asset management, including scheduled maintenance and repair tasks Technical Skills • Proficient in MS Office Suite. Experience with technology delivery applications across solutions such as (ERP, Manufacturing Execution Systems, Finance Systems, Control Tower). • Microsoft Certified: Dynamics 365: Finance and Operations Apps Solution Architect Expert certification preferred. • Experience with emerging technologies (AI/ML, cloud, etc.) as relevant to ERP. Working Conditions: Requires up to 10 % domestic and international travel The anticipated salary for this position will be $165,000 to $190,000. The actual salary offered for this role at commencement of employment may vary based on several factors including but not limited to relevant experience, skill set, qualifications, education (including applicable licenses and certifications, job-based knowledge, location, and other business and organizational needs. The listed salary is just one component of the overall compensation package. At Kyowa Kirin North America we provide a comprehensive range of benefits including: * 401K with company match * Annual Bonus Program (Sales Bonus for Sales Jobs) * Generous PTO and Holiday Schedule which includes Summer and Winter Shut-Downs, Sick Days and, Volunteer Days * Healthcare Benefits (Medical, Dental, Prescription Drugs and Vision) * HSA & FSA Programs * Well-Being and Work/Life Programs * Life & Disability Insurance * Concierge Services * Long Term Incentive Program (subject to job level and performance) * Pet Insurance * Tuition Assistance * Employee Referral Awards The compensation and benefits information set forth in this posting applies to candidates hired in the United States. Candidates hired outside the United States will be eligible for compensation and benefits in accordance with their local market. KKNA and all of its employees have an obligation to act in accordance with the law and with integrity in all our operations and interactions It is the policy of Kyowa Kirin North America, Inc. to provide equal employment opportunity to all qualified persons without regard to race, religion, creed, color, pregnancy, sex, age, national origin, disability, genetic trait or predisposition, veteran status, marital status, sexual orientation or affection preference or citizenship status or any other category protected by law. When you apply to a job on this site, the personal data contained in your application will be collected and stored by Kyowa Kirin, Inc. (“Controller”), which is located at 510 Carnegie Center Dr. Princeton, NJ 08540 USA and can be contacted by emailing kkus.talentacquisition.8h@kyowakirin.com. Controller’s data protection officer can be contacted at usprivacyoffice@kyowakirin.com. Your personal data will be processed for the purposes of managing Controller’s recruitment related activities, which include setting up and conducting interviews and tests for applicants, evaluating and assessing the results thereto, and as is otherwise needed in the recruitment and hiring processes. Such processing is legally permissible under Art. 6(1)(f) of General Data Protection Regulation (EU) 2016/679 (“GDPR”) as necessary for the purposes of the legitimate interests pursued by the Controller, which are the solicitation, evaluation, and selection of applicants for employment. Your personal data will be shared with Greenhouse Software, Inc., a cloud services provider located in the United States of America and engaged by Controller to help manage its recruitment and hiring process on Controller’s behalf. Accordingly, if you are located outside of the United States, your personal data will be transferred to the United States once you submit it through this site. The transfer will be made using appropriate additional safeguards under the standard contractual clauses approved by regulators for transfers of personal data outside the European Union. Your personal data will be retained by Controller as long as Controller determines it is necessary to evaluate your application for employment. Under the GDPR, if you are located in the European Union, you have the right to request access to your personal data, to request that your personal data be rectified or erased, and to request that processing of your personal data be restricted. You also have the right to data portability, and to lodge a complaint with an EU supervisory authority. If you have any questions about our use of your data, you may contact us by email at usprivacyoffice@kyowakirin.com. RECRUITMENT & STAFFING AGENCIES Kyowa Kirin does not accept agency resumes unless contacted directly by internal Kyowa Kirin Talent Acquisition. Please do not forward resumes to Kyowa Kirin employees or any other company location; Kyowa Kirin is not responsible for any fees related to unsolicited resumes. #LI-TT1 #Hybrid #Princeton