Job Description :
100% Remote, prefer EST hours
24X7 operation
US Citizen only

Skills needed:
Security Orchestration and automation
Event monitoring/management tools, Reporting capability - Sensitive environment
IT/OT (Operational technology) are 2 separate skills, the consolidation of these has been happening
3 phases, need strong engineers
9 month duration- some will stay longer from engineering or analyst perspective.

Nature of candidates - Mix of skills:
They use the OTORIO tool- Israeli based company – hands on with similar tools, understanding how SEIM tools work, exposure to OT security. Splunk or Arcsight type of tools are in OT monitoring capability.
Interested in Contract to hire for a couple of these roles.
Job Description:
The Security analyst will be act as a member of the security operation center with specific responsibility for the Operational Technology (OT) cyber security.
Provides cyber security incident management support within related governance and framework aligned with industry and corporate cybersecurity requirements.
Responsible for monitoring and mitigating security threats and leading incident investigations from TIER1 as a Triage analyst and TIER 2 as incident handler.
Provides support and cooperate with cyber security audits and risk assessments.
Works closely with BTBS, Reliability Compliance and engineering to share tools, align resources, and provide support in alignment with the cybersecurity program.
Develops and enhances the production OT cyber security and compliance program governance.
Monitors OT cybersecurity threats and leads investigations.
Reviews industry alerts and provides proper communication escalation
Uses cyber monitoring tools daily to identify and investigate threats
Leads investigations and ensures proper response to identified cyber events or incidents
Leads, designs, and implements improvements in cybersecurity threat monitoring, attack response methods, and incident response plans.
Actively participates on the corporate Cyber Security Task Team to align cybersecurity threat monitoring and incident response across the organization
Ensures monitoring tools and alerts provide the necessary notification of potential threats
First point of call for incidents that have occurred for Tier 1; Tier 2 validate the Incidents escalated by Tier 1 SOC Security Analysts; etc
Perform first, second, third level of incident handling, and security monitoring and validation of physical security, IOT, and SCADA environments.
Analyze, and communicate with stakeholders, the threats associated with every incident.
Report findings and ensure incidents are escalated to the right persons
Analyze network traffic to identify anomalous activity and potential threats to network resources.
Qualifications Required:
Bachelor’s degree in a relevant technical or engineering discipline
At least 2 years of experience as a System Specialist or related work experience in OT or IT cyber security, risk management, and/or compliance
Knowledge and understanding of the OT world as related to diffrent components such as HMI, PLC etc
Knowledge and understanding of tools used to protect insudtrail environemnt
Understanding of the OT cybersecurity kill chain
Experience using monitoring tools for protecting and defending against cyber intrusion, along with experience in cyber security incident response
CISSP or other cyber security related certifications from SANS Institute, ISACA, CompTIA, etc. preferably oriented for ICS
Strong interpersonal and communication skills with an ability to communicate with all levels
Certification for relevant software programs in technical domain within the OT world
There are 5 positions open.
One of the 5 positions needs to be near Chester, VA - others can be remote

Similar Jobs you may be interested in ..