Job Purpose: -
Monitors and responds to threats in operational technology environments, protecting critical infrastructure. This role involves advanced threat analysis, incident escalation, and collaboration with engineering teams to ensure OT system security and compliance.
Skills
Skilled Set Required: -
•OT System - hashtag
#Nozomi Administration Hands-on and other similar technologies as per industries best practice.
•Nozomi networks certified engineer with Realtime hands on experience in OT / ICS domain in energy industry.
•Work with the OT CISO GRC and Respective departments to follow-up for closure of OT open incidents as per agreed SLA.
•Periodic review of use cases and closely coordination OT support team in order to validate and implement the same. And ensure the coverage of security monitoring across the OT landscape.
•Knowledge of MITRE ATT&CK of adversary tactics and techniques based on real-world observations.
•Review and reduce the false positives.
•Should be capable to analysis of the incidents identified to highlight the critical ones over the other incidents.
•Should be experienced enough to work directly with the OT SMEs and department teams to explain the identified issues/ incidents, resolve and escalate.
•Reporting Vulnerabilities as per severity and prioritize remediation efforts based on risk analysis.
•Collaborate with OT teams to ensure timely application of patches and updates to address vulnerabilities.
•Assist in preparing, participating and responding to security audits (external and internal), providing necessary documentation and evidence of compliance.
•Should have experience with OT networking devices & their interfaces/connections from OT/ICS such as from DCS/SCADA /RTU to SOC.
•Initiate and engage in sharing threat intelligence sharing with industry peers and relevant agencies to stay updated on the latest OT threats.
•Should be well versed / familiar with OT / ICS & its related technologies, tools, vendors etc.