Duties and Responsibilities:
o Solid grasp of Cyber Security concepts, such as risk management, incident response, threat
intelligence, and security frameworks.
o Technical expertise in network security technologies and protocols, intrusion
detection/prevention systems (IDS/IPS), firewalls, etc.
o Incident response: Implementing and participating in incident response plans tailored to OT
disruptions.
o Experience in endpoint security solutions, endpoint detection and response (EDR), like
CrowdStrike.
o Must have knowledge in Investigation, mitigation of the attacks & preventives measures.
o Basic knowledge on Malware analysis and Forensics
o Exposure to OT environment – Protocols and Purdue model and its functioning
o Exposure in securing OT networks, including segmentation, isolation & Knowledge of
protocols used in industrial environments (e.g., Modbus, DNP3), best practices, including
ICS protocols, SCADA systems, and industrial control systems.
o Keeping up with the evolving threat landscape and new technologies in the OT security space.
o Problem-solving and analytical skills: To identify and troubleshoot complex security issues in
OT systems and work with clients in remediation efforts.
o Maintain documentation related to incident response plans, playbooks, and standard
operating procedures.
o Leadership and team management skills to guide and mentor SOC analysts, foster
collaboration, continuous learning.
o Effectively communicating security risks and solutions to stakeholders.
o Strong communication skills (both verbal and written) and presentation skills.
o Industry Certifications like CISSP, SANS, OT Related certifications are an added advantage