Senior OT Cyber Security Analyst

Join to apply for the Senior OT Cyber Security Analyst role at Lightsource bp

2 weeks ago Be among the first 25 applicants

Join to apply for the Senior OT Cyber Security Analyst role at Lightsource bp

We are Lightsource bp – and we’re on a mission to become a global leader in onshore renewables, anchored by our proven track record in solar development.

For over a decade, we’ve been actively working to diversify the way our world is powered with sustainable and responsible renewable power. We work to safely deliver affordable, reliable, large-scale onshore renewable and energy storage solutions to help the world decarbonise.

Our growing business is constantly innovating and investing to help drive the energy transition. Our people and projects are focused on supporting long-term sustainable growth and energy security.

Lightsource bp (LSbp) was fully acquired by bp in 2024.

We are looking for a dynamic, hands-on senior analyst responsible for monitoring cyber risk and facilitating the remediation of vulnerabilities for IT and OT systems across Lightsource bp. The ideal candidate will have extensive cybersecurity experience, a strong understanding of threat landscapes, and the ability to mentor junior analysts. This role leverages global resources and tools to develop business cyber maturity, with a focus on the Microsoft security stack.

1. OT & IT Security Monitoring: Continuously monitor the security of both OT and IT environments, including SCADA systems, ICS, and supporting infrastructure for threats, anomalies, and signs of compromise.
2. Threat Hunting & Incident Response: Use tools like Azure Sentinel, Defender XDR, Defender IoT, Cisco Secure Access, Purview, and Tenable for proactive threat hunting across IT and OT networks, leveraging relevant threat intelligence.
3. Vulnerability Management & Patching: Identify and assess vulnerabilities within SCADA, ICS, and OT devices, ensuring timely remediation in collaboration with relevant teams.
4. Regulatory Compliance & Audit Support: Ensure compliance with standards such as NIST 800-82, IEC 62443, NERC-CIP, SOCI, NIST-CSF, NIS2; assist in audits and risk assessments.
5. Security Policy & Governance: Support development and enforcement of OT security policies, standards, and procedures aligned with industry frameworks.
6. Stakeholder Communication: Collaborate with Cyber Security Managers, OT Engineers, and Business Leaders to communicate risks and provide security updates.
7. Incident Investigation & Documentation: Fully investigate, document, and address security incidents within OT to improve response capabilities.
8. Security Hardening & Best Practices: Secure industrial networks, remote access, and third-party integrations with industry best practices like network segmentation and zero-trust.
9. Define and Measure Excellence: Establish security performance metrics aligned with organizational expectations and embed security best practices in OT operations.
10. Enhance OT & SCADA Security Awareness: Promote OT and SCADA security awareness internally and externally, working with marketing and communications teams.

Include a bachelor’s degree in a relevant field, certifications like AZ-500, CISSP, etc., extensive experience with Azure Sentinel, Defender XDR, and OT security, along with stakeholder management skills, especially within critical infrastructure sectors.

Additional details on knowledge areas and preferred standards are provided in the original description.