This position is based at our Luxembourg headquarters and requires regular office presence. The EIB offers you the opportunity to live and work in a truly international and multi-cultural environment. We also offer relocation support.
The EIB, the European Union's bank, is seeking to recruit for its Chief Financial Controller Directorate (CFC), Corporate Real Estate Department (CRE), Asset and Property Management Division (APM), Building Technology Unit (BT) at its headquarters in Luxembourg, an Operational Technology (OT) Cyber Security Specialist*.
This is a full-time position at grade 5 for which the EIB offers a permanent contract.
*Internal benchmark Officer Non-financial Risk Management
Panel interviews are anticipated for April/May 2026.
Purpose
As an OT Cybersecurity Specialist, you will play a critical role in safeguarding the bank’s operational technology environments, including building technical infrastructure systems such as HVAC, Building Management Systems (BMS), Security and Safety systems and industrial control systems applicable to EIB Group’s Corporate Real Estate assets and services. Your mission is to ensure the resilience and security of these systems against evolving cyber threats.
Operating Network
Reporting to the Head of Building Technology Unit, you will be part of the team whose responsibility is to design, build and support further expansions and operational run of the building systems including the related infrastructure.
Accountabilities
Define and implement the OT/IoT cybersecurity strategy in collaboration with external providers, ensuring alignment with the EIB Group's security framework and the specific requirements and standards applicable to systems and technologies linked to the built environment. Collaborate with internal OT, IoT, and facilities support teams, providing timely and actionable reporting to management on the security posture, risk exposure, and mitigation progress across cyber-physical systems.Maintain a complete, comprehensive inventory and documentation system for all OT and IoT assets, including PLCs, RTUs, sensors, gateways, and communication interfaces (e.g., Modbus, BACnet, KNX, MQTT/S), ensuring full visibility and traceability.Develop and continuously improve OT/IoT cybersecurity procedures, including incident response protocols and governance frameworks for internal and third-party environments.Support and supervise the hardening and secure configuration of OT/IoT infrastructure, including protocol-level security improvements (e.g., encrypted Modbus, BACnet/SC, RTSP, OSDP, OPC, KNX, SIP, PROFINET, S7, UDP, TLS, MQTTS), network segmentation, and zero-trust access models.Conduct regular cybersecurity assessments and gap analyses to ensure compliance with OT/IoT standards (e.g., ISA/IEC 62443, EN 303 645, NIS2, ISO/IEC 27002, etc.) and support/supervise the implementation of mitigation measures.Evaluate new building automation technologies and IoT architectures, ensuring they meet cybersecurity requirements, support secure communication protocols, and align with the Bank’s operational and regulatory objectives.Ensure compliance and risk alignment across IT/OT/IoT convergence zones, coordinating with internal stakeholders and regulators to maintain a robust control environment.Manage the Identity and Access Management (IAM) for OT/IoT systems, ensuring secure and compliant access to data and systems, including privileged access monitoring and periodic recertification in accordance with the relevant EIB Group’s IT policy for the OT/IoT environment. Manage daily OT/IoT cybersecurity operations, including change and incident management, supplier activity reviews, and the initiation and tracking of security improvement projects.Define, coordinate, and monitor OT/IoT project plans, ensuring stakeholder alignment, timely delivery, and continuous improvement of cyber resilience capabilities.Support the deployment, integration, and lifecycle maintenance of the OT/IoT infrastructure and smart building systems, ensuring secure connectivity, protocol compatibility, and operational continuity.Qualifications
University degree (minimum an equivalent to a Bachelor) preferably in a STEM discipline (Computer Science, Engineering, Mathematics, Physics, or related field) or equivalent.Minimum of 5 years of relevant professional experience in cybersecurity, ideally in structured or regulated environments.Experience in developing OTIoT cybersecurity strategies and designing architecture, including functional and technical requirements, in collaboration with IT teams.Hands-on experience with OT/IoT infrastructure, including servers, virtualization, backup, and high availability systems, as well as patch and firmware management for OT/IoT and Microsoft OS devices.Proven experience with OT/IoT network cyber security and networking technologies/connectivity protocols.Proven ability to draft and document OT/IoT policies and procedures, network diagrams, etc.Knowledge in OT/IoT/IIoT technologies and OT connectivity protocols such as TCP/IP, Modbus, BACnet, RTSP, OSDP, OPC, KNX, SIP, PROFINET, S7, UDP, TLS, etc.Good understanding of OT and IoT connectivity and networking principles.Proficiency in specialized OT tools such as EDRs.Experience with OT inventory tools would be a distinct advantage.Excellent knowledge of English and/or French (***), with a good command of the other. (Knowledge of other EU languages would be an advantage).Competencies
Find out more about EIB core competencies here
To find out more about our eligibility criteria click here
(***) Unless stated explicitly as a required qualification, a good command of French is not a pre-requisite for hire. As both English and French are however official working languages of the EIB, proficiency in both languages is a pre-requisite for your future career development. Any language clause in your contract must be fulfilled in order for you to be eligible for a promotion (either via the annual appraisal cycle or via an internal selection process). Proficiency is understood to mean the attainment of level 5 of the Inter Institutional language courses, corresponding to B1.2 of the Common European Framework of Reference for Languages (CEFRL). The Bank offers appropriate training support.
We hire and value talent with unique characteristics, creating a work environment where they can be themselves. We believe that Diversity, Equity and Inclusion makes us a performing and innovative organisation. We encourage all suitably qualified and eligible candidates to apply regardless of their gender identity/expression, age, racial, ethnic and cultural background, religion and beliefs, sexual orientation, disability or neurodiversity.
We strongly invite applicants with a disability, neurodivergent profile or chronic condition to request reasonable accommodations at any stage during the recruitment process. Please contact the EIB Recruitment team Jobs@eib.org who will ensure that your request is handled.
By applying for this position, you acknowledge the importance of maintaining the security and integrity of the Information of the EIB Group. In case of selection for the position you agree to comply with all measures (policies, controls, document classification and management) implemented by the EIB Group to prevent unauthorised disclosure of any information or any damage to the EIB Group reputation.
Deadline for applications: 25th February 2026
#LI-POST