This role focuses on designing, implementing, and managing detection strategies and tools to respond to cyber threats targeting critical OT/ICS environments. We are seeking a skilled professional with a strong understanding of OT protocols, industrial control systems, and cybersecurity best practices. Key Responsibilities: - Develop detection rules, correlation searches, and alerting mechanisms within our Security Information and Event Management (SIEM) and other security monitoring tools specifically tailored for OT environments. - Analyze OT network traffic, system logs, and security events to identify suspicious activity, anomalies, and potential security incidents. - Maintain an understanding of OT protocols (e.g., Modbus, DNP3, IEC 61850), industrial control systems (e.g., PLC, SCADA, DCS), and their security possible effects. - Collaborate with OT operations and engineering teams to understand their processes, and potential vulnerabilities. - Tune and increase detection rules to minimize false positives and ensure high-fidelity alerts. - Maintain documentation for detection strategies, rules, and incident response procedures specific to OT. - Participate in incident response activities related to OT cybersecurity incidents, providing technical expertise in detection and analysis. - Contribute to the development of OT security policies, standards, and procedures. - Stay up-to-date on the latest OT cybersecurity threats, vulnerabilities, and mitigation techniques. - Recommend new security tools relevant to OT detection capabilities. - Collaborate with IT security teams to guarantee a cohesive and integrated security posture across both IT and OT environments. The Ideal Candidate Will Have: - Bachelor's degree in engineering or any other field with equivalent experience. We Offer: - A comprehensive benefits package including mindfulness programs, volunteer time off, company volunteer matching program, employee assistance program, personalized wellbeing programs, and on-demand digital course library. Additional Information: Seniority level: Entry level Employment type: Full-time Job function: Information Technology Industries: Automation Machinery Manufacturing