OT Cyber Security Analyst - Security-cleared

We are currently recruiting for an experienced OT Cyber Security Analyst for our client to work 2 days per week on-site in Culham, Oxfordshire.

You will be responsible for the implementation, operation, and continuous improvement of OT security controls and monitoring capabilities across UKAEA environments. The role delivers hands-on security engineering and operational support, ensuring OT systems are protected in line with defined strategy, standards, and risk priorities. This includes implementing an OT Security Strategy, contributing to the development of policies and standards, and apply appropriate security controls across OT environments.

You will provide technical and governance compliance of OT security, ensuring alignment with industry frameworks (IEC 62443, NIST CSF, CAF, ISO 27001) and with enterprise cyber security objectives.

The role will combine hands-on implementation and the creation of governance artefacts. You will also engage with engineering teams and managed service providers (MSPs) to ensure that OT security controls are effectively implemented and sustained. Experience with SIEM/SOC integration is valuable and considered desirable.

Accountabilities:

Control Implementation

• Deploy and maintain OT security controls including:
• Network segmentation (zones/conduits)
• Secure remote access solutions
• Assess and recommend best-fit-best-of-breed OT-specific monitoring tools

Monitoring & Detection

• Integrate OT systems into SOC and SIEM platforms
• Develop and tune detection rules for OT threats
• Investigate and triage OT-related alerts

Asset Visibility & Assurance

• Support OT asset discovery and inventory maintenance
• Conduct hands-on security assessments and evidence collection
• Validate control effectiveness against standards

Vulnerability & Risk Support

• Identify vulnerabilities and misconfigurations
• Support remediation planning with engineering teams
• Provide input into risk assessments led by the Specialist

Incident Response (Execution)

• Support OT incident response activities:
  • Log collection
  • Initial triage
  • Coordination with SOC

Engineering Collaboration

• Work closely with OT engineers and facility teams
• Support secure implementation of system changes
• Ensure minimal disruption to operations and safety

Continuous Improvement & Reporting

• Track and report on:
  • Control coverage
  • Detection capability
  • Asset visibility
• Provide feedback to improve standards and strategy
• Collaborate with enterprise security teams to align OT security with broader cyber programmes.
• Support OT incident response activities, including escalation paths to SOC teams where relevant.
• Mentor and support junior team members in OT security concepts and practices.
• Track and report on OT security maturity progress against roadmap milestones.

Essential:

• Oil/gas/rail/chemical process industry
• Familiarity with SIEM/SOC integration for OT environments
• Demonstrable experience in maturing OT security within ICS or critical infrastructure environments.
• Proven ability implement OT security strategies, policies, and standards.
• Strong knowledge of OT security frameworks and standards (IEC 62443, NIST CSF, CAF, ISO 27001).
• Experience conducting OT security risk assessments, gap analysis, and remediation planning.
• Knowledge of OT networks, segmentation, and common industrial protocols.
• Experience working with operations and engineering teams in OT environments.
• Ability to provide technical recommendations for MSPs or third-party security service providers.
• Strong communication and documentation skills, particularly in policy/standards creation.
• Max notice period of 2 weeks

Desirable:

• Experience with OT asset discovery, monitoring, and security tool deployment.
• Exposure to regulatory compliance in critical infrastructure (eg, NIS Directive, UK CAF).
• Knowledge of project and service delivery life cycles and ITSM controls.
• Familiarity with SIEM/SOC integration for OT environments.

If you feel you have the skills and experience needed for this role; please do apply now.

By applying for this job and submitting your CV to Parker Shaw, you acknowledge and give permission for us to pass it to an associate company for resourcing purposes. We outsource some of our resourcing calls to a trusted third-party company and they may call you to discuss this opportunity with you. They will then report back to us with the outcome of their conversation with you, where upon we will decide whether to submit your CV to the end client. Please be assured that the third-party company do not store or control any of your data, this is all done by ourselves (Parker Shaw).