Job
Description
Role Overview: As a Senior OT Analyst at EY, you will be responsible for securing OT environments by implementing proactive and reactive measures. Your role will involve detecting, investigating, and responding to security incidents, as well as recommending preventive controls and maintaining system integrity across industrial control systems (ICS) and SCADA infrastructures. You will be required to set up security and monitoring controls, conduct forensic investigations, and have a thorough understanding of the unique cyber risks associated with OT systems. Your core duties will focus on protecting critical infrastructure systems by utilizing strong technical skills, analytical thinking, and specialized knowledge of OT cybersecurity challenges. Key Responsibilities: - Monitor and analyze ICS/OT alerts generated by IDS tools such as Defender for IoT, Nozomi, or Claroty, identifying any unusual or suspicious activity, security breaches, or indicators of compromise. - Triage and prioritize alerts based on severity and potential impact, collaborating with other SOC analysts and incident response teams to address and mitigate security incidents. - Conduct pcap analysis to investigate and validate OT alerts, analyze OT protocols and device behaviors, and develop standard operating procedures (SOPs) for OT alert analysis and triage. - Perform regular security assessments, validate use cases, and conduct threat hunting activities within the OT environment. - Provide expert guidance on ICS/OT security best practices, contribute to the improvement of SOC processes, and document security incidents comprehensively. - Design and maintain incident response plans and recovery procedures specific to OT incidents, collaborating with IT security counterparts to ensure a cohesive security posture across IT and OT domains. - Stay updated with the latest trends in ICS/OT security and deliver OT cybersecurity awareness training programs for operational staff. Qualifications Required: - Strong knowledge of industrial control systems (ICS), SCADA systems, and other OT technologies. - Experience with SIEM tools, log management, and network security solutions. - Good understanding of how OT and IT devices interact and work together. - Analytical skills to identify patterns indicative of cyber threats and effective communication skills. - Problem-solving attitude and ability to manage incidents under pressure. - Knowledge of regulatory requirements and standards related to ICS/OT security (e.g., NERC CIP, IEC 62443) is a plus. - Relevant certifications in cybersecurity are desirable. Please note that the additional details about the company have been omitted from the provided job description. Role Overview: As a Senior OT Analyst at EY, you will be responsible for securing OT environments by implementing proactive and reactive measures. Your role will involve detecting, investigating, and responding to security incidents, as well as recommending preventive controls and maintaining system integrity across industrial control systems (ICS) and SCADA infrastructures. You will be required to set up security and monitoring controls, conduct forensic investigations, and have a thorough understanding of the unique cyber risks associated with OT systems. Your core duties will focus on protecting critical infrastructure systems by utilizing strong technical skills, analytical thinking, and specialized knowledge of OT cybersecurity challenges. Key Responsibilities: - Monitor and analyze ICS/OT alerts generated by IDS tools such as Defender for IoT, Nozomi, or Claroty, identifying any unusual or suspicious activity, security breaches, or indicators of compromise. - Triage and prioritize alerts based on severity and potential impact, collaborating with other SOC analysts and incident response teams to address and mitigate security incidents. - Conduct pcap analysis to investigate and validate OT alerts, analyze OT protocols and device behaviors, and develop standard operating procedures (SOPs) for OT alert analysis and triage. - Perform regular security assessments, validate use cases, and conduct threat hunting activities within the OT environment. - Provide expert guidance on ICS/OT security best practices, contribute to the improvement of SOC processes, and document security incidents comprehensively. - Design and maintain incident response plans and recovery procedures specific to OT incidents, collaborating with IT security counterparts to ensure a cohesive security posture across IT and OT domains. - Stay updated with the latest trends in ICS/OT security and deliver OT cybersecurity awareness training programs for operational staff. Qualifications Required: - Strong knowledge of industrial control systems (ICS), SCADA systems, and other OT technologies. - Experience with SIEM tools, log management, and network security solutions. - Good understanding of how OT and IT devices interact and work together. - Analytical skills to identify p
