OT Cybersecurity Analyst (Junior–Mid Level)

MarkiTech • Full-time • Toronto, Ontario, Canada • 1w ago

We are looking for a junior- to mid-level OT Cybersecurity Analyst to help protect our industrial control systems (ICS), SCADA environments, and connected devices. You will work closely with operations, engineering, and IT teams to monitor threats, support security controls, and improve the overall cyber resilience of our operational technology.

Key Responsibilities:
Monitoring & Incident Response:

Monitor OT networks, security tools, and logs for suspicious activity.
Triage alerts and support incident investigation and containment.
Document security events, incidents, and lessons learned.

OT Asset & Network Management:

Assist in maintaining an accurate inventory of OT assets (PLCs, RTUs, HMIs, SCADA servers, sensors, etc.).
Support network segmentation efforts (e.g., separating IT and OT, defining zones and conduits).
Help analyse network traffic in OT environments using basic tooling (e.g., Wireshark, network monitoring tools).

Security Controls & Hardening

Assist in implementing and maintaining security controls such as:
- User access controls and least-privilege principles.
- Secure remote access for vendors and technicians.
- Patch and vulnerability management processes for OT devices (where feasible and safe).
Support configuration reviews of firewalls, switches, and gateways that interact with OT networks.

Risk & Vulnerability Management:

Run or support basic vulnerability scans in coordination with OT/engineering teams (with change controls in place).
Assist in risk assessments for OT systems, documenting threats, vulnerabilities, and potential impacts.
Help track remediation actions and follow-up items with system owners.

Governance, Compliance & Documentation:

Contribute to OT cybersecurity policies, standards, and procedures.
Support alignment with relevant frameworks (e.g., NIST CSF, ISA/IEC 62443 – as applicable).
Maintain up-to-date documentation of OT architecture, security controls, and recovery plans.

Training & Collaboration:

Collaborate with operations, maintenance, and engineering teams to ensure security controls are practical and safe. Help deliver awareness sessions or quick guides for plant technicians and engineers on cybersecurity best practices.

Required Qualifications & Experience:

Bachelor’s degree in Computer Science, Cybersecurity, Electrical/Industrial Engineering, or related field
- OR equivalent practical experience in IT/OT support or security.
1–4 years of experience in one or more of the following:
- IT or OT support role (network/ systems/ field engineer)
- Cybersecurity analyst / SOC analyst Industrial automation or control systems with security exposure

Essential Skills & Knowledge:

Basic understanding of operational technology environments, such as:
- ICS / SCADA, PLCs, HMIs, DCS, or similar industrial systems.
Foundation in cybersecurity concepts:
- Network security, access control, least privilege, patching, backups, logging.
- Common attack types (phishing, ransomware, lateral movement, etc.).
Familiarity with networking fundamentals: TCP/IP, VLANs, firewalls, VPNs.
Hands-on experience with one or more of the following (even at beginner level):
- SIEM tools (e.g., Splunk, QRadar, etc.)
- Network analysis tools (e.g., Wireshark)
- Vulnerability scanning tools
Strong problem-solving skills and attention to detail. Good communication skills and ability to work with non-technical OT personnel.

Nice-to-Have (Preferred):

Exposure to or awareness of industrial standards (e.g., ISA/IEC 62443, NIST CSF, NERC CIP, ISO 27001).
Experience working in manufacturing, utilities, energy, oil & gas, transportation, or critical infrastructure.
Basic scripting skills (e.g., Python, PowerShell) for automation and log analysis. Experience participating in incident response activities or tabletop exercises.

What We Offer:

Opportunity to grow from junior to specialist in OT/Industrial Cybersecurity.
Hands-on exposure to real plant/industrial environments and technologies.
Training and certification support (e.g., GICSP, ICS/OT security courses). Collaborative environment with engineering, operations, and cybersecurity team.

Job Title: OT Cybersecurity Analyst (Junior–Mid Level)
Location: [City / Remote]
Experience: 1–4 years (basic to moderate)
Department: Operational Technology / Industrial Cybersecurity