Tekskills
Website:
tekskillsinc.com
Job details:
Job Role: IT/OT Security Engineer
Job Location: Bangalore, Hyderabad, Pune
Work Mode: (Hybrid)
Experience : 7+ years
JD:
SOC Operations & Incident Response
- Configure, Manage, monitor, and triage alerts across IT (Wazhu SIEM, EDR) and OT security platforms. Should have hands-on on managing data diode, Linux firewall, PaloAlto, Fortigate appliances, Security hardening of RHEL and Ubuntu Linux, and OT SIEM (e.g. Claroty, Nozomi Networks, Microsoft Defender for IoT).
- Should have worked on Wazuh and configured for File Integrity Monitoring, Vulnerability Management, Automated Incident Response, Threat Intelligence integration, and configured sys-logger, Lead incident response investigations in IT and OT environments, ensuring containment without disrupting industrial processes.
- Execute threat hunting activities tailored to industrial control systems (ICS) and build behavioral use cases based on adversary TTPs (Tactics, Techniques, and Procedures).
IT/OT Architecture & Compliance
- Design and maintain secure network architectures, implementing micro-segmentation and air-gapped security for OT assets.
- Ensure OT systems comply with industry cybersecurity standards such as ISA/IEC 62443 and NIST frameworks.
- Manage Change (MOC) process for patch management and configuration changes in OT environments.
Vulnerability Management
- Support Threat and Vulnerability Management (TVM) activities by identifying, assessing, and tracking remediation of OT assets with restricted maintenance windows.
- Collaborate with system engineers and vendors to ensure safe implementation of firmware updates and security advisories.
Required Qualifications & Skills
- Education: Bachelor’s degree in Computer Science, Electrical Engineering, or a related technical discipline.
- Experience: 8+ years of hands-on experience in cybersecurity, specifically combining IT threat monitoring and OT/ICS environment management.
Technical Proficiencies:
- Strong working knowledge of industrial protocols (Modbus, DNP3, OPC, PROFINET, etc.).
- Experience with OT monitoring solutions like Claroty or Nozomi Networks
- Proficiency with SIEM platforms (e.g., Microsoft Sentinel, Splunk) and network assessment tools (Wireshark, Nmap)
- Certifications: Certifications such as ISA/IEC 62443 Cybersecurity Specialist, GICSP, CISSP, or CompTIA Security+ are highly preferred.
Core Competencies
- Ability to translate traditional IT security concepts (like CIA Triad) into OT safety and availability requirements.
- Strong cross-functional communication to align IT security teams with plant/manufacturing operations personnel.
- High-stress tolerance and critical decision-making ability during industrial cyber incidents.
Click on Apply to know more.