OT Security Analyst

Location: Noida, India

Thales people architect identity management and data protection solutions at the heart of digital security. Business and governments rely on us to bring trust to the billons of digital interactions they have with people. Our technologies and services help banks exchange funds, people cross borders, energy become smarter and much more. More than 30,000 organizations already rely on us to verify the identities of people and things, grant access to digital services, analyze vast quantities of information and encrypt data to make the connected world more secure.

Present in India since 1953, Thales is headquartered in Noida, Uttar Pradesh, and has operational offices and sites spread across Bengaluru, Delhi, Gurugram, Hyderabad, Mumbai, Pune among others. Over 1800 employees are working with Thales and its joint ventures in India. Since the beginning, Thales has been playing an essential role in India’s growth story by sharing its technologies and expertise in Defence, Transport, Aerospace and Digital Identity and Security markets.

Summary:

We are seeking an experienced and certified in OSCP & ISA 62443 OT Cybersecurity professional to join our team. This role will be responsible for ensuring the security of operational technology (OT) systems and networks, including industrial control systems (ICS) and Supervisory Control and Data Acquisition (SCADA) systems. The successful candidate will possess strong offensive security skills, including penetration testing, vulnerability assessment, risk assessment and security awareness training, and be able to translate their expertise into practical security solutions within the OT environment. 

Must Have:

• Holding a valid OSCP (Offensive Security Certified Professional) certification.

• Holding a valid ISA/IEC 62443 certification issued by ISA.

Skills and Experience:

• Bachelor’s degree in computer science, Information security or a related field.

• Demonstrated experience in offensive security, penetration testing, and vulnerability assessment.

• Strong understanding of OT systems, networks, and industrial control systems (ICS).

• Strong knowledge of relevant security standards and regulations, such as NIST, ISO 27001, and IEC 62443.

• Experience with common penetration testing tools and methodologies.

• Good knowledge of ICS protocols like, modbus, zigbee, Ethercat, IEC 104, OpenADR, etc. 

• Experience of creating secure and resilient OT/ICS architectures in water utility, Oil & Gas, or power domain.

• Ability to communicate technical information clearly and concisely to both technical and non-technical audiences.

• Excellent problem-solving and analytical skills.

• Ability to work autonomously and as part of a team. 

• Hands experience of pen test tools like – Plcscan, Modscan, Kali Linux, Wireshark, Burp Suite, Nmap, Metasploit, ZAP, etc.

Responsibilities

• Conduct comprehensive vulnerability assessments and penetration testing of OT systems and networks. 

• Develop and implement security policies, procedures, and best practices specific to OT environments. 

• Assist in the development and implementation of security solutions for OT systems, including firewalls, intrusion detection systems, and other security controls. 

• Support incident response efforts within OT environments, including detection, containment, and eradication of security incidents. 

• Collaborate with IT security teams and OT operations personnel to ensure a secure and resilient OT environment. 

• Design and implement network segmentation, robust access controls, and advanced intrusion detection/prevention systems, fortifying the infrastructure against potential intrusions and attacks.

• Stay informed about emerging threats and vulnerabilities in the OT landscape. 

• Document security findings and provide recommendations for remediation. 

• Contribute to the development and maintenance of the organization's security program. 

• Perform security compliance assessment against different parts of IEC 62443 standards.

• Conduct comprehensive risk analysis of OT systems and networks.

At Thales we provide CAREERS and not only jobs. With Thales employing 80,000 employees in 68 countries our mobility policy enables thousands of employees each year to develop their careers at home and abroad, in their existing areas of expertise or by branching out into new fields. Together we believe that embracing flexibility is a smarter way of working. Great journeys start here, apply now!