We are seeking a highly skilled and experienced OT CSIRT Consultant to enhance a Cyber Security Incident Response Team (CSIRT) capabilities in managing and responding to security events generated by Operational Technology (OT). The ideal candidate will have a strong background in OT security, incident management, and SOC/CSIRT environments, with hands-on experience in handling and responding to cyber security incidents. This role requires a deep understanding of OT systems, integration of OT security alerts into existing cyber security frameworks, and the ability to provide expert-level guidance in managing OT-related threats.
Key Responsibilities
1. Incident Response for OT Environments:
* Lead the investigation and response to cyber security incidents affecting Operational Technology (OT) systems.
* Analyse OT-specific security alerts, including those generated by SCADA, ICS, and other industrial systems, and determine their impact.
* Collaborate with SOC and CSIRT teams to develop and execute response plans tailored to OT environments.
2. OT Alert Integration and Monitoring:
3. Design and implement processes for incorporating OT security events into existing SOC and CSIRT workflows.
4. Ensure OT-specific alerts are properly tuned, monitored, and triaged within SIEM and other security monitoring tools.
5. Work with ...