- Job Title: IT‑OT Cyber Security Analyst – Services Division
- Experience: 4–6 years
- Location: Gurugram, Haryana
Employment Type: Full‑time
- ABOUT:
- The analyst will secure both enterprise IT infrastructure and OT/ICS environments for WhizHack’s services customers, focusing on end‑to‑end threat monitoring, incident response, and risk reduction. They will work as a bridge between IT, plant operations, and management, ensuring converged IT‑OT networks meet security and regulatory requirements.
- Key responsibilities – IT and OT
- Monitor and triage security alerts across IT (servers, endpoints, cloud, network) and OT (PLC, SCADA, DCS) using SIEM, NIDS and OT‑specific platforms.
- Perform initial investigation, correlation, and classification of security events, escalating complex incidents as per playbooks and SLAs.
- Conduct vulnerability assessment and manage remediation tickets for both IT and OT assets, ensuring patching or compensating controls are tracked to closure.jobs.
- Support design and implementation of security controls, network segmentation and Zero Trust‑aligned access between IT and OT zones.jobs.
- Maintain and update incident response, business continuity and disaster recovery procedures for converged IT‑OT environments.jobs.
- Coordinate with internal IT teams, plant operations, and third‑party vendors to implement secure remote access (VPN, MFA, jump hosts) and review 3rd‑party security practices.jobs.
- Assist in security audits and compliance activities, mapping controls to frameworks such as IEC 62443, NIST SP 800‑82, NIST SP 800‑53 and CERT‑In guidance.
- Prepare clear technical documentation, incident reports, dashboards, and executive summaries for management and clients.
- Contribute to tuning detection rules, threat hunting use‑cases, and continuous improvement of IT‑OT SOC playbooks.
- Skills and experience (IT + OT)
- 4–6 years in cybersecurity with combined exposure to IT security operations and OT/ICS environments.
- Strong knowledge of enterprise security concepts: networking, firewalls, IDS/IPS, endpoint security, identity and access management, cloud security (AWS/Azure).
- Practical experience with OT security: ICS/SCADA architectures, industrial protocols (Modbus, DNP3, IEC‑104, Ethernet/IP), and safety‑driven operations.
- Hands‑on work with SIEM (e.g., Sentinel, Splunk, QRadar), OT monitoring platforms (e.g., Nozomi, Claroty, Dragos) and ticketing systems (ServiceNow, similar).
- Familiarity with standards and frameworks: IEC 62443, NIST SP 800‑82/800‑53, Zero Trust principles, and Indian or sector‑specific regulations.
- Good scripting/automation ability (Python/PowerShell) for log parsing, enrichment, and reporting is desirable.
- Qualifications
- Bachelor’s degree in Computer Science, IT, Electronics, Cybersecurity or related field.
- Relevant certifications preferred: Security+, CEH, CySA+, GICSP, IEC 62443, CCNA or equivalent.
- Strong communication skills to explain risks to both technical and non‑technical stakeholders, and to work with cross‑functional IT and operations teams.
- High ownership, ability to work in shifts for managed services, and readiness to support on‑site assessments as needed.
Pay: ₹282,829.15 - ₹1,043,583.14 per year
Work Location: In person