Job DescriptionThe Operational Technology (OT) Analyst II secures and monitors industrial control systems (ICS), manufacturing systems, and other mission-critical OT environments. Working closely with GRC, IT Security, engineering, and operations teams, this role implements and operationalizes security controls, compliance requirements, and risk mitigation strategies. The analyst leverages Microsoft Sentinel, Microsoft Defender for Endpoint (MDE), and integrated telemetry to provide centralized threat detection, monitoring, and incident response across IT and OT systems.
Responsibilities- Monitor and defend OT/ICS environments by analyzing network traffic, logs, alerts, and telemetry to detect threats, anomalies, and indicators of compromise.
- Conduct threat hunting, incident triage, forensic analysis, and support incident response and recovery across industrial networks.
- Perform OT-focused vulnerability assessments, identify security weaknesses in ICS architectures and control systems, and validate remediation efforts.
- Implement, maintain, and optimize OT security controls, including network segmentation, intrusion detection systems, access controls, and security monitoring capabilities.
- Collaborate with GRC teams to align OT security controls with compliance requirements such as CMMC and NIST 800-171, providing technical evidence for audits and assessments.
- Partner with engineering and operations teams to support secure OT system design, maintain operational resilience, and ensure system integrity and safety.
- Develop and maintain detection rules, dashboards, runbooks, playbooks, and response procedures while incorporating threat intelligence to continuously improve OT security posture.
QualificationsExperience:
- Bachelor's Degree in Cybersecurity, Engineering, Information Technology, or related field
- Minimum two (2) years of experience in cybersecurity, with exposure to OT/ICS environments. OR (6) years of experience may be considered in lieu of a bachelor's degree. OR No experience required in lieu of master's degree.
- Experience monitoring and responding to security events in SIEM platforms
- Knowledge of: Network security fundamentals and segmentation, Incident response and threat detection and experience with OT security platforms
Preferred:
- Experience performing NIST-based security or technology risk assessments
- Industry certifications such as CISA, CRISC, Security+, or similar credentials
- Experience with: Security monitoring and detection engineering, Incident response and forensic analysis, Experience in Microsoft GCC High environments, Microsoft Sentinel, Microsoft Defender for Endpoint (MDE), OT monitoring platforms
Additional Information This position may require access to technology, materials, software or hardware that is controlled by either ITAR or EAR U.S. export laws. As a condition of any job offer, in order to be employed in this position, you may need to obtain a U.S. Government export license(s), as required by law.
Other benefits include: - Immediate Medical (FSA and HSA), Dental, and Vision
- 401K Match with 100% immediate vesting
- 9X80 compressed work schedule for qualifying roles
- Career Opportunity and Growth
- Tuition Reimbursement/Student Loan Repayment
- Generous PTO and 11 paid Holidays per year (9 designated holidays and 2 floating holidays)
- 8 weeks of 100% Paid Family Leave