Operational Technology (OT) Cyber Security Analyst
Glasgow
Hybrid working
Permanent, full time
Closing date: Friday 2nd May 2025
Who we are
We’re not just talking about making a difference, we’re making it happen. Wegenerate dispatchable, renewable power and create stable energy in an uncertainworld. Building on our proud heritage, we have ambition to become the globalleader in sustainable biomass and carbon removals.
You’ll be joining our teams of practical doers, future thinkers and businesschampions. We’re enabling a zero carbon, lower cost energy future for all, andworking hard to decarbonise the planet for generations to come.
About the role
As OT Cyber Analyst, you’ll be responsible for monitoring, assessing, andsecuring Drax’s operational technology (OT) systems, including industrialcontrol systems (ICS) and supervisory control and data acquisition (SCADA)systems, against cyber threats and vulnerabilities. The role will play a keyrole in ensuring the reliability and safety of UK critical nationalinfrastructure.
Cybersecurity Monitoring: Continuously monitor the efficacy and maintainOT security monitoring solutions deployed within the OT environment.
Threat Analysis: Analysing and identifying potential cyber threats andvulnerabilities, assess their impact, and prioritize responses accordingly.
Incident Response: Developing and implementing incident response plans forhandling cyber incidents in OT environments, including containment,eradication, and recovery procedures.
Vulnerability Management: Identifying and assessing vulnerabilities in OTsystems and coordinate with relevant teams to remediate them.
Security Assessment: Conducting security assessments and facilitatepenetration testing of OT systems to identify weaknesses and recommend securityimprovements.
Policy Development: Contributing to development and maintenance ofcybersecurity policies and procedures specific to OT environments.
Compliance and Regulations: Ensuring compliance and providing SME supportto programmes of work delivering transformation in line industry standards suchas IEC62443 and Industry regulations (NIS, CAF, OG86 and HSE).
Network Security: Implementing and managing security controls for OTnetwork segments to protect against unauthorized access and data breaches.
Collaboration: Collaborating with IT and Generation Engineering/Operationteams to ensure alignment between IT and OT cybersecurity efforts.
Documentation: Maintaining detailed records of security incidents,assessments, and remediation efforts.
Additional responsibilities include:
- Providing technical expertise through explanatory, advisory or facilitatingservices.
- Engaging with 3rd parties and colleagues from other areas of the business.
- Propose changes to existing processes to help drive efficiency andeffectiveness.
- Maintaining and developing the technology for the OT Cyber Defence Centre(CDC) across the Group.
- Maintaining OT security systems in accordance with Drax ISMS.
- Providing SME support and deliver relevant upgrades to the CDC environment.
- Performing Verification and Validation to a defined scope & scheduleacross OT security stack
- Assurance of all security stack components identified to ensure operationalstatus on a day-to-day basis is maintained ensuring no degradation to the Ecosystem.
- Participation in OT related projects with Cyber involvement.
Who we’re looking for
Ideally, you’ll have a background in cyber security and/ or OperationalTechnology (control systems) with an understanding of network securitytechnologies and processes including and understanding of current and emergingsecurity threats and an awareness of systems and methods to counter them.
A working knowledge of security frameworks including NIST / NIS Regulations CAF/ IEC / SoGP Cyber Kill Chain is highly beneficial. You’ll be able demonstratea keen interest in developing your knowledge in this area.
You’ll have a high level of attention to detail, be self-motivated and have theability to think outside the box when working on complex problems.
This role requires strong communication and stakeholder management skills, withthe ability to influence beyond your sphere of control.
Rewards and benefits
As you help us to shape the future, we’ve shaped our rewards and benefits tohelp you thrive and support your lifestyle:
- Competitive salary
- Discretionary group performance-based bonus
- 25 days annual leave (plus Bank Holidays)
- Single cover private medical insurance
- Pension scheme
We’re committed to making a tangible impact on the climate challenge we allface. Drax is where your individual purpose can work alongside your careerdrive. We work as part of a team that shares a passion for doing what’s rightfor the future. With Drax you can shape your career and a future forgenerations to come.
Together, we make it happen.
At Drax, we’re committed to fostering an environment where everyone feelsvalued and respected, regardless of their role. To make this a reality, weactively work to better represent the communities we operate in, fosterinclusion, and establish fair processes. Through these actions, we build thetrust needed for all colleagues at Drax to contribute their perspectives andtalents, no matter their background. Find out more about our approach here .
How to apply
Think this role’s for you? Click the ‘Apply now’ button to begin your Draxjourney.
If you want to find out more about Drax, check out our LinkedIn page to see ourlatest news.