OT Security Analyst
Noida Berger Tower, India
Thales
From Aerospace, Space, Defence to Security & Transportation, Thales helps its customers to create a safer world by giving them the tools they need to perform critical tasksSummary:
We are seeking an experienced and certified in OSCP & ISA 62443 OT Cybersecurity professional to join our team. This role will be responsible for ensuring the security of operational technology (OT) systems and networks, including industrial control systems (ICS) and Supervisory Control and Data Acquisition (SCADA) systems. The successful candidate will possess strong offensive security skills, including penetration testing, vulnerability assessment, risk assessment and security awareness training, and be able to translate their expertise into practical security solutions within the OT environment.
Must Have:
Holding a valid OSCP (Offensive Security Certified Professional) certification.
Holding a valid ISA/IEC 62443 certification issued by ISA.
Skills and Experience:
Bachelor’s degree in computer science, Information security or a related field.
Demonstrated experience in offensive security, penetration testing, and vulnerability assessment.
Strong understanding of OT systems, networks, and industrial control systems (ICS).
Strong knowledge of relevant security standards and regulations, such as NIST, ISO 27001, and IEC 62443.
Experience with common penetration testing tools and methodologies.
Good knowledge of ICS protocols like, modbus, zigbee, Ethercat, IEC 104, OpenADR, etc.
Experience of creating secure and resilient OT/ICS architectures in water utility, Oil & Gas, or power domain.
Ability to communicate technical information clearly and concisely to both technical and non-technical audiences.
Excellent problem-solving and analytical skills.
Ability to work autonomously and as part of a team.
Hands experience of pen test tools like – Plcscan, Modscan, Kali Linux, Wireshark, Burp Suite, Nmap, Metasploit, ZAP, etc.
Responsibilities
Conduct comprehensive vulnerability assessments and penetration testing of OT systems and networks.
Develop and implement security policies, procedures, and best practices specific to OT environments.
Assist in the development and implementation of security solutions for OT systems, including firewalls, intrusion detection systems, and other security controls.
Support incident response efforts within OT environments, including detection, containment, and eradication of security incidents.
Collaborate with IT security teams and OT operations personnel to ensure a secure and resilient OT environment.
Design and implement network segmentation, robust access controls, and advanced intrusion detection/prevention systems, fortifying the infrastructure against potential intrusions and attacks.
Stay informed about emerging threats and vulnerabilities in the OT landscape.
Document security findings and provide recommendations for remediation.
Contribute to the development and maintenance of the organization's security program.
Perform security compliance assessment against different parts of IEC 62443 standards.
Conduct comprehensive risk analysis of OT systems and networks.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Burp Suite Compliance Computer Science Firewalls ICS IEC 62443 Incident response Industrial Intrusion detection ISO 27001 Kali Linux Metasploit Modbus NIST Nmap Offensive security OSCP Pentesting Risk analysis Risk assessment SCADA Vulnerabilities
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.