Job Description
The Cyber Security Analyst, Vulnerability Management OT will report to the Cyber Security Manager, Vulnerability Management and is responsible for the identification, assessment, and remediation of security vulnerabilities across the organisation’s OT estate. This role ensures that the enterprise maintains a strong security posture by proactively managing risks, aligning with regulatory requirements, and supporting business resilience.
Your role will involve
* Data Management: Identify OT assets on the estate using the OT NEMS tooling. Review and initiate asset data exchanges and updates between the OT NEMS tool & the OT asset database.
* Conduct Risk Assessments: Identify potential vulnerabilities in OT systems using the OT NEMS tooling, review outputs for dissemination and assess risks of potential threats in collaboration with OT Operations colleagues.
* Vulnerability Management: Track measures to manage and mitigate vulnerabilities in OT systems, chairing forums.
* Monitor Security Systems: Continuously monitor OT systems for signs of security breaches or anomalies using the organisation’s OT NEMS tooling.
* Incident Response: Follow and manage incident response plans to address security breaches promptly. Review, triage & investigate OT network anomaly alerts. Conduct regular periodic reviews of alerts to identify false positives and assess severity.
* Compliance: Support compliance teams in providing evidence of the organisation’s current regulatory compliance positions on regulated and critical systems.
* Reporting: Maintain OT NEMS tool updates and key metrics reporting for key stakeholders.
Skills
* Good knowledge of vulnerability scanning tools (Tenable, Defender, Qualys, Rapid7).
* Solid understanding of CVSS scoring, threat modeling, and risk prioritisation.
* Ability to interpret technical findings and communicate them to stakeholders.
* Knowledge of patch management processes and tools.
* Analytical, organisational, and communication skills.
About the Company
Heathrow Airport serves 80 million passengers each year and relies on a vast technical infrastructure to operate 24/7. The Data, Digital and Technology team leads innovation that enhances efficiency, resilience and competitiveness, while maintaining top‑level security and safety.
#J-18808-Ljbffr