Cybersecurity Analyst

Position Summary

The Cyber Security Analyst is responsible for monitoring, analyzing and protecting OT and IT Systems. This role is technical and requires an in depth understanding of the TCP/IP stack, data flows and cyber security functions. Applicant should possess strong communication/interpersonal skills, as they will work closely with NBU stakeholders to protect Supervisory Control and Data Acquisition (SCADA) systems, Industrial Control Systems (ICS), Operational Technology (OT) and business systems.

Essential Duties & Responsibilities

- Support, evaluate and analyze the security and risk assessment of NBU OT systems.

- Analyze firewall rules, event logs, ICS, OT system components and identity management logs.

- Monitor, identify, triage and prioritize security events, ensuring timely and appropriate response.

- Recommend and implement remediation/mitigation steps keeping with the organizations risk tolerance.

- Maintain a strong understanding of TCP/IP, Ports, Protocols, Attack Surfaces, Threat Vectors, and Tactics.

- Develop and maintain an understanding of OT endpoints, to include PLCs, HMIs, Sensors, Switches, Relays, etc.

- Identify trends and recurring issues to recommend proactive security measures

- Oversee the OT Vulnerability Management program and take active steps to closely align with security requirements from DHS, CISA, Water/Electric-ISAC, NERC/CIP, TCEQ and other regulatory agencies.

- Generate, gather and track security metrics to provide reports in digestible format.

- Provide cybersecurity awareness training and support to employees on best practices and compliance.

- Work closely with teammates, IT and OT staff to support convergence and enhance our overall security posture.

- Participate in tactical and strategic meetings with stakeholders and planners as a cybersecurity Subject Matter Expert (SME).

- Develop remediation workflows, influence and collaborate across teams, stakeholders and third-party vendors

- Develop and update technical documentation such as security processes, data flows, incident response plans and risk assessments

- Participate in the exercise and updating of Incident response plans.

- Attend out-of-town Cyber or OT related training and conferences on occasion.

- Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one

- An ability to effectively influence others to modify their opinions, plans or behaviors

- An understanding of organizational mission, values, goals and consistent application of this knowledge

- Strong problem-solving, critical thinking and troubleshooting skills

- Adhere to all safety rules and regulations to create a safe and healthy workplace.

- Perform other duties as required.

Formal Education and Work Experience Requirements

Degree/Diploma Obtained: Bachelors

Work Experience Time Frame: Three Years or More Field of Study: Cybersecurity, Information Technology, Engineering, or suitable technical field.

Other: 5-year work experience plus recognized security or network certifications may be substituted for degree

Certification and Licensures Requirements

Other Minimum Qualifications

- Understanding of OT, ICS, IT and SCADA environments and systems

- 3+ years’ experience in IT security, OT security, or SCADA/ICS administration

- Strong analytical and problem-solving skills

- Ability to influence, motivate, build and maintain good working relationships

- Proven ability to work, take initiative and begin projects with limited supervision

Bachelor’s degree in Cybersecurity, Information Technology, Engineering, or suitable technical field. Combined 5-year work experience plus recognized security/network certifications may be substituted for degree