Join to apply for the Senior OT Cyber Security Analyst role at Lightsource bp Powered By Hassan Allam.
Lightsource bp is a global leader in renewable energy, focused on delivering large‑scale onshore solar and energy storage solutions that help the world decarbonise.
Responsibilities
* OT & IT Security Monitoring: Continuously monitor the security of OT and IT environments, including SCADA systems and Industrial Control Systems.
* Threat Hunting & Incident Response: Utilize Azure Sentinel, Defender XDR, Defender IoT and other tools to proactively hunt security threats across IT and OT networks.
* Vulnerability Management & Patching: Identify and assess vulnerabilities within SCADA, OT devices and ensure timely remediation.
* Regulatory Compliance & Audit Support: Ensure compliance with NIST 800‑82, IEC 62443, NERC‑CIP, SOCI, NIST‑CSF, NIS2 and other regulations; assist in cyber security audits.
* Security Policy & Governance: Support development and enforcement of OT security policies, standards and procedures.
* Stakeholder Communication: Work closely with Cyber Security Managers, OT Engineers and Business Leaders to communicate risks and drive awareness.
* Incident Investigation & Documentation: Investigate, document and address all security incidents within the OT environment.
* Security Hardening & Best Practices: Apply industry best practices such as network segmentation, zero‑trust principles and access controls to secure industrial networks.
* Define and Measure Excellence: Establish clear security performance metrics and targets that align with the expectations of internal asset management teams.
* Enhance OT & SCADA Security Awareness: Promote a security‑first culture internally and externally with marketing and awareness teams.
Knowledge
* SIEM – Azure Sentinel, Defender for IoT, Defender XDR, Defender for Cloud Apps, Defender for Cloud, Defender EASM, Copilot for Security.
* Vulnerability Management – Defender XDR, Tenable IO/Nessus, Defender EASM.
* EDR – Defender for Endpoint.
* Data Governance – Purview.
* IDAM – Entra.
* Device Management – Intune MDM/MAM.
* Networking/Firewalls – Fortinet, Cisco FirePower, Cisco Meraki.
* Frameworks – NIST 2.0 Cyber Security Framework, IEC 62443 OT standard, ISO27001, Cyber Essentials Plus, ITIL principles.
* Standards – NERC CIP, SOCI, NIS2.
Qualifications
* Bachelor’s degree in Computer Science, Information Security or a related field.
* Azure Security Engineer (AZ‑500), Certified Cyber Professional (CCP), Certified Information Systems Security Professional (CISSP), CompTIA Security+, GCIA, GCIH.
Experience
* Extensive experience managing Azure Sentinel, Defender for IoT, Defender XDR and Defender for Cloud/App.
* At least five years of security incident handling and response.
* Demonstrated experience in a Microsoft focused cloud environment.
* Proven experience understanding and responding to cyber threats, OT cyber security knowledge desirable.
* Experience working for Critical National Infrastructure (CNI) organisations.
* Stakeholder management and engagement to C‑Suite level.
Benefits
* Competitive salary, annual bonus and retention bank.
* Health insurance, pension and local benefits.
* Annual bonus, retention bank, health insurance, pension and other local benefits.
* Variety of initiatives for personal development, charitable causes, sustainability projects.
#J-18808-Ljbffr