Senior OT SOC Analyst

Explore our latest thought leadership, ideas, and insights on the issues that are shaping the future of business and society.

Choose a partner with intimate knowledge of your industry and first-hand experience of defining its future.

Discover our portfolio – constantly evolving to keep pace with the ever-changing needs of our clients.

Become part of a diverse collective of free-thinkers, entrepreneurs and experts – and help us to make a difference.

See our latest news, and stories from across the business, and explore our archives.

We are a global leader in partnering with companies to transform and manage their business by harnessing the power of technology.

• Continuously monitor OT environments using Armis for real-time detection of threats and anomalies.
• Triage, analyze, and prioritize security alerts, ensuring timely and appropriate responses.
• Investigate incidents using Devo for data correlation and enrichment.
• Provide actionable insights and recommendations for incident containment and remediation.

• Collaborate with security operations teams to initiate and coordinate response actions.
• Leverage Swimlane for automated playbooks, incident tracking, and documentation.
• Perform root cause analysis (RCA) and contribute to post-incident reporting.

• Facilitate the seamless flow of OT data into Devo and Swimlane for centralized visibility.
• Work with IT and security teams to ensure integrated monitoring and response across IT and OT systems.
• Develop and maintain dashboards and reports to provide stakeholders with actionable intelligence.

• Identify trends and recurring issues to recommend proactive security measures.
• Tune monitoring tools and detection rules to reduce false positives and improve accuracy.
• Contribute to the development of policies, procedures, and best practices for OT security.

• Act as a liaison between OT, IT, and security operations teams to ensure alignment on security goals.
• Provide training and support to site operators and engineers on recognizing and reporting security issues.

• Bachelor's degree in Cybersecurity, Information Technology, Engineering, or related field.
• Experience with Armis for OT asset management, monitoring, and threat detection.
• Proficiency in using Devo for security data analysis and Swimlane for automated incident response.
• Strong understanding of OT environments, industrial control systems (ICS), and SCADA systems.
• Familiarity with cybersecurity frameworks such as NIST CSF and IEC 62443.
• Excellent analytical and problem-solving skills.
• Strong communication and collaboration abilities.

• Relevant certifications (e.g., GICSP, CISSP, CEH, or equivalent).
• 5+ years of Hands-on experience in critical infrastructure or manufacturing environments.
• Extensive experience in IT security
• Conversant with SIEM and SOAR technologies
• Experience with threat intelligence and vulnerability management in OT environments.

Capgemini supports all aspects of your well-being throughout the changing stages of your life and career. For eligible employees, we offer:

• Healthcare including dental, vision, mental health, and well-being programs
• Financial well-being programs such as 401(k) and Employee Share Ownership Plan
• Paid time off and paid holidays
• Paid parental leave
• Family building benefits like adoption assistance, surrogacy, and cryopreservation
• Social well-being benefits like subsidized back-up child/elder care and tutoring
• Mentoring, coaching and learning programs
• Employee Resource Groups
• Disaster Relief

About Capgemini:

Capgemini is a global business and technology transformation partner, helping organizations to accelerate their dual transition to a digital and sustainable world, while creating tangible impact for enterprises and society. It is a responsible and diverse group of 340,000 team members in more than 50 countries. With its strong over 55-year heritage, Capgemini is trusted by its clients to unlock the value of technology to address the entire breadth of their business needs. It delivers end-to-end services and solutions leveraging strengths from strategy and design to engineering, all fueled by its market leading capabilities in AI, cloud and data, combined with its deep industry expertise and partner ecosystem. The Group reported 2023 global revenues of €22.5 billion.

Capgemini is an Equal Opportunity Employer encouraging diversity in the workplace. All qualified applicants will receive consideration for employment without regard to race, national origin, gender identity/expression, age, religion, disability, sexual orientation, genetics, veteran status, marital status or any other characteristic protected by law.

This is a general description of the Duties, Responsibilities and Qualifications required for this position. Physical, mental, sensory or environmental demands may be referenced in an attempt to communicate the manner in which this position traditionally is performed. Whenever necessary to provide individuals with disabilities an equal employment opportunity, Capgemini will consider reasonable accommodations that might involve varying job requirements and/or changing the way this job is performed, provided that such accommodations do not pose an undue hardship.

Capgemini is committed to providing reasonable accommodations during our recruitment process. If you need assistance or accommodation, please reach out to your recruiting contact.

Business unit Cloud Infrastructure Services

When you join Capgemini, you don’t just start a new job. You become part of something bigger.

Learn about how the recruitment process works – how to apply, where to follow your application, and next steps.

To help you bring out the best of yourself during the interview process, we’ve got some great interview tips to share before the big day.