Cybersecurity OT Analyst

Job Summary 

The Cybersecurity professional will collect data from a variety of Computer Network Defense (CND) tools, including intrusion detection system alerts, firewall and network traffic logs, and host system logs to analyze events that occur within their environment. 

Support the monitoring, analysis, and investigation of cybersecurity activity impacting operational and industrial systems, including manufacturing and OT networks. Collaborate with engineering and operations teams to help identify risks, support incident response activities, and improve visibility across OT environments. 

Key Responsibilities 

• Build and maintain a robust OT inventory, including network diagrams and related documentation. 

• Monitor OT and industrial environments for potential cybersecurity threats using established tools, dashboards, and procedures. 

• Review and triage OT related alerts and events, escalating findings according to defined response workflows. 

• Support incident response investigations involving OT and IT systems, including evidence collection, documentation, timeline development, and root cause determination under the direction of senior analysts and incident commanders. 

• Collaborate with exposure vulnerability management teams to prioritize and remediate high-risk findings based on threat intelligence and exploitability. 

• Support administrative and operational tasks that improve team efficiency, including process improvement and automation initiatives. 

Required Qualifications 

• Bachelor’s degree. 

• 1+ year of exposure to industrial environments, manufacturing systems, or OT/ICS concepts through coursework, labs, and/or internships. 

Preferred Qualifications 

• Bachelors degree in Cybersecurity, Computer Science, Engineering, or related discipline. 

• 0-2 years of experience in OT, cybersecurity, engineering, operations, or a related technical role. 

• Military service or government experience in cybersecurity, intelligence, communications, engineering, operations, or mission‑focused technical roles. 

• Exposure to industrial environments, manufacturing systems, or OT/ICS concepts through coursework, labs, internships, or related roles. 

• Foundational familiarity with MITRE ATT&CK, LM Cyber Kill Chain, and threat actor behaviors. 

• Basic understanding of networking fundamentals (e.g., TCP/IP, VLANs, firewalls). 

• Familiarity with cybersecurity fundamentals such as malware, access control, and monitoring concepts. 

• Awareness of OT/ICS components (e.g., PLCs, SCADA, HMIs) at a foundational level. 

• Exposure to OT security standards or frameworks (e.g., NIST 80082, IEC 62443).