GRIDsentry
Website:
grid-sentry.com
Job details:
About Us -
GRIDsentry is Hiring OT Cybersecurity Experts for Power Infrastructure Projects. GRIDsentry is expanding its team to support large-scale OT Cybersecurity deployments for power substations and control centres. This project involves implementing advanced cybersecurity technologies to protect critical grid infrastructure.
Role Summary -
The Applications Assistant – OT Cybersecurity & Infrastructure Operations provides multi-domain operational support for the deployment, monitoring, and maintenance of cybersecurity and infrastructure systems across control centres (CC) and substations (SS).
The role supports Security Operations Centre (SOC) activities, endpoint protection, network monitoring, backup management, vulnerability assessment, and infrastructure operations, ensuring continuous visibility, system availability, and security compliance within the OT environment. Working under the guidance of Applications Engineers, the assistant contributes to day-to-day monitoring, alert handling, system support, and documentation, enabling reliable and secure operation of critical infrastructure systems.
Key Responsibilities -
SIEM & Log Management Support
• Assist in onboarding log sources and validating log ingestion into the SIEM platform.
• Monitor SIEM dashboards and alerts for security events and anomalies.
• Support log parsing, normalization checks, and data validation.
• Maintain SIEM reports and assist in basic alert analysis.
IDS & Network Threat Monitoring
• Monitor IDS alerts and network traffic anomalies.
• Assist in identifying suspicious activities and escalating incidents.
• Support configuration and health monitoring of IDS sensors.
• Maintain logs related to intrusion detection activities.
Log Collection (LC)
• Assist in managing log collectors and forwarders across distributed environments.
• Ensure reliable log transmission from OT devices, servers, and network infrastructure.
• Support troubleshooting of log collection issues.
Endpoint Security (EMS – HIPS, AV, EDR)
• Assist in deployment and monitoring of endpoint security tools.
• Monitor alerts related to malware, intrusion attempts, and endpoint anomalies.
• Support policy updates and endpoint agent health checks.
Patch Management (PMS)
• Assist in patch deployment and update tracking.
• Monitor patch compliance and identify missing updates.
• Maintain records of patching activities and schedules.
Vulnerability Assessment (VA)
• Support execution of vulnerability scans.
• Assist in analysing scan results and tracking remediation.
• Maintain vulnerability reports and compliance documentation.
Backup Management (BUM)
• Monitor backup jobs and ensure successful execution.
• Support backup validation and restoration testing.
• Maintain backup logs and storage records.
Network Monitoring (NMS – CC & SS)
• Monitor network performance across control centres and substations.
• Track health of network devices and communication links.
• Respond to alerts and escalate issues.
Network Infrastructure Support
• Assist in configuration and monitoring of firewalls, switches, routers, and secure communication systems.
• Support troubleshooting of connectivity and network performance issues.
• Assist in maintaining network configurations and documentation.
Monitoring, Incident Support & Reporting
• Monitor dashboards across all systems for alerts and anomalies.
• Escalate incidents to appropriate engineering teams.
• Maintain logs, reports, and operational documentation.
• Assist in preparation of compliance and audit reports.
Experience -
• 2–4 years experience in IT operations, cybersecurity support, or infrastructure monitoring.
• Exposure to SOC operations, network monitoring, or endpoint security tools preferred.
• Experience in multi-system or multi-domain environments is an advantage.
Skills -
• Basic understanding of cybersecurity domains (SIEM, IDS, endpoint security)
• Network monitoring and infrastructure fundamentals
• Log management and alert handling
• Patch management and vulnerability assessment basics
• Troubleshooting and incident escalation
• Documentation and reporting
Qualification -
Diploma or Graduate in Information Technology, Cybersecurity, Networking, or related field.
Certifications (Preferred) -
• CompTIA Security+
• CompTIA Network+
• Certified SOC Analyst (CSA)
• Basic SIEM / Endpoint Security Tool Training.
Click on Apply to know more.