OT Senior Cyber Security Analyst

Job Overview:

As an OT Senior Cyber Security Analyst, you will be responsible for maintaining SecOps (Security Operations) solutions, controls and processes across the organisation. You will be mentoring and assisting with leading the SOC team to ensure appropriate prioritisation and remediation of OT alerts and incidents.

This role requires a deep understanding of SecOps concepts, technologies and best practices across IT and OT environments, as well as the ability to collaborate effectively with cross-functional teams. The ideal candidate will possess strong communication and incident management skills and will be committed to ensuring the highest level of security, compliance, and user experience.

Responsibilities:

1. Investigate security alerts from our SIEM tool and 3rd party MSSPs, and provide appropriate incident response actions.
2. Liaise with technology and business stakeholders regarding cyber security issues/incidents, providing clear descriptions and actions.
3. Support the Cyber Security Operations Lead for security and privacy incidents, triaging events and performing root cause analysis to understand how incidents arise.
4. Act as the key contact and escalation point for the SOC and Clients Digital teams.
5. Support out-of-hours incident investigations via an On-Call rota, covering 24/7/365 alongside our 3rd party MSSP.
6. Monitor, analyse and optimise SecOps tool performance (e.g. SIEM, PAM), identify potential issues, and recommend and implement proactive solutions.
7. Develop and maintain SecOps documentation, policies, and procedures.
8. Collaborate with stakeholders to understand business requirements and implement security controls that are proportionate to the risk.
9. Maintain cyber security solutions with existing systems, applications, and infrastructure.
10. Evaluate and recommend technologies, tools, and vendors to meet business needs.
11. Perform proactive threat hunting for new and emerging cyber threats.
12. Specialise in Operational Technology systems, defining monitoring alerts and ensuring the operation of effective security controls.
13. Collect data that drives cyber security compliance metric dashboards.
14. Support compliance with relevant industry standards, regulations, and best practices, such as GDPR, NIS and ISO 27001.
15. Stay current on industry trends, emerging technologies, and best practices to continuously improve security operations.