• Salvio Pacheco Square
  • Senior OT Cyber Incident Responder

    The Senior OT Cyber Incident Responder will be curious and knowledgeable regarding cyber security standards and technologies, specifically focused on infrastructure within an industrial control system (ICS) environment, able to work independently or with appropriate stakeholders as needed. You will provide the opportunity to focus on threat identification, proactive threat hunting, incident response, and cyber threat intelligence fusion. You will be part of a highly collaborative, dynamic, responsive, and agile team providing incident response and cyber defense services to IT & OT infrastructure.

    Job Responsibilities
    -Maintain knowledge of adversary activities, including intrusion tactics, attack techniques and operational procedures.
    -Investigate and respond to potential cybersecurity incidents
    -Analysis of security event logs from a variety of sources
    -Forensic analysis of potential evidence
    -Static and dynamic malware analysis
    -Network packet capture analysis
    -Lead incident response efforts, coordinating resources as needed
    -Documentation of analysis, including summarization for executive review
    -Perform proactive threat hunting
    -Work cross-functionally to recommend, facilitate, and test security control improvements
    -Create and refine security operations workflows for new and existing tools
    -Provide guidance to junior analysts

    -High School or GED-General Educational Development-GED Diploma
    -4 years’ experience in IT-Information Technology security, including working in Security Operations Centers

    -Bachelor’s Degree in Computer Science or job-related discipline or equivalent experience

    -Previous experience supporting cyber defense analysis of Operational Technology (OT) Networks, including Integrated Controls Systems (ICS), SCADA, and Process Control Networks (PCN).
    -Formal IT Security/Network Certification, such as WCNA, CompTIA Security +, Cisco CCNA, GIAC GCIH, GMON, GCFA, GCFE, GREM, GICSP, GRID, or other relevant certifications
    -Utility Industry experience
    -Experience with compliance standards: NERC-CIP, SOX, TSA
    -Previous experience working with various SIEM, EDR, and digital forensic technologies
    -Experience with scripting in Python, PowerShell
    -Malware reverse engineering skills

    A reasonable salary range is:​
    Bay Area Minimum:  $122,000   
    Bay Area Maximum: $194,000