Apply now »

Senior OT Cyber Security Analyst

We are Lightsource bp – and we’re on a mission to become a global leader in onshore renewables, anchored by our proven track record in solar development.  

 

For over a decade we’ve been actively working to diversify the way our world is powered with sustainable and responsible renewable power. We work to safely deliver affordable, reliable, large-scale onshore renewable and energy storage solutions to help the world decarbonise.  

 

Our growing business is constantly innovating and investing to help drive the energy transition. Our people and projects are focused on supporting long-term sustainable growth and energy s

ecurity.  

 

Lightsource bp (LSbp) was fully acquired by bp in 2024.

 

Summary

 

We are looking for a dynamic, hands-on senior analyst who will be responsible for monitoring cyber risk and facilitating the remediation of identified vulnerabilities for IT and OT systems across Lightsource bp. The ideal candidate will have extensive experience in cybersecurity, a strong understanding of threat landscapes, and the ability to mentor junior analysts. This role will leverage global resources and tools to develop business cyber maturity, with a strong focus on the Microsoft security stack.

 

  • OT & IT Security Monitoring: Continuously monitor the security of both OT and IT environments, including understanding of SCADA systems, Industrial Control System (ICS), and supporting infrastructure for potential threats, anomalies, and signs of compromise.
  • Threat Hunting & Incident Response: Utilise tools such as Azure Sentinel, Defender XDR, Defender IoT, Cisco Secure Access, Purview, and Tenable to proactively hunt for security threats across IT and OT networks, leveraging threat intelligence relevant to the organisation.
  • Vulnerability Management & Patching: Identify and assess vulnerabilities within SCADA, ICS, and OT devices, ensuring timely remediation in collaboration with Infrastructure, Digital Workplace, and Support teams.
  • Regulatory Compliance & Audit Support: Ensure compliance with NIST 800-82, IEC 62443, OG86, NERC-CIP, SOCI, NIST-CSF, NIS2 and other relevant regulations. Assist in cyber security audits and risk assessments for OT environments.
  • Security Policy & Governance: Support the development and enforcement of OT security policies, standards, and procedures, ensuring alignment with industry frameworks and best practices.
  • Stakeholder Communication: Work closely with Cyber Security Managers, OT Engineers, and Business Leaders to communicate risks, provide updates during security investigations, and drive awareness of OT-specific threats.
  • Incident Investigation & Documentation: Ensure all security incidents within the OT environment are fully investigated, documented, and addressed, improving incident response capabilities.
  • Security Hardening & Best Practices: Assist in securing industrial networks, remote access solutions, and third-party integrations by applying industry best practices, including network segmentation, zero-trust principles, and access controls.
  • Define and Measure Excellence: Establish clear security performance metrics and targets that align with the expectations of customers, internal asset management teams, and O&M teams. Ensure security best practices are embedded within OT operations.
  • Enhance OT & SCADA Security Awareness: Raise the profile of OT Security and SCADA Security both internally and externally. Work closely with Marketing, communications, and security awareness teams to promote a security-first culture.

Core Responsibilities

 

  • Threat detection, investigation and incident response
  • Managing the core SecOps tooling platforms, ensuring they are correctly configured and maximising security value from existing investments
  • Understand the key risks the organisation faces, the key tactics techniques and procedures that likely threat actors will use and create mitigation options to overcome them.
  • Designing, producing and maintaining high quality configuration documentation for all technologies in your area of responsibility
  • Generate reports for both technical and non-technical staff and stakeholders
  • Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues

Knowledge

 

  • SIEM – Azure Sentinel, Defender XDR, Defender for Cloud, Defender for Cloud Apps, Defender EASM, Copilot for Security
  • Vulnerability Management – Defender XDR, Tenable IO/Nessus, Defender EASM
  • EDR – Defender for Endpoint, Defender for IoT
  • SSE - Cisco Secure Access (Umbrella)
  • Data Governance – Purview
  • IDAM - Entra
  • Device Management - working understanding of Intune including MDM/MAM
  • Networking/Firewalls – exposure to Fortinet, Cisco FirePower and Cisco Meraki desirable
  • Good understanding of ISO27001 and Cyber Essentials Plus requirements required
  • Knowledge of NIST Cyber Security Framework required
  • Knowledge of NERC CIP and/or SOCI standards desirable
  • Knowledge of IEC 62443 OT standard required
  • ITIL Knowledge - Good understanding of ITIL principles and their application required

Qualifications

 

  • Bachelor’s degree in Computer Science, Information Security, or a related field.
  • Azure Security Engineer (AZ-500), Certified Cyber Professional (CCP), Certified Information Systems Security Professional (CISSP), CompTIA Security+, GCIA, GCIH

Experience

 

  • Extensive experience in managing and utilizing Azure Sentinel, Defender XDR, Defender for Cloud Apps and Defender for Cloud/EASM
  • At least five years’ experience in security incident handling and security incident response
  • Demonstratable experience of working in an Azure focused cloud environment.
  • Proven experience of understanding and responding to cyber threats
  • Expertise in information security technologies: Firewalls, intrusion detection, vulnerability assessment tools, logging solutions, gateway security products, end-point security products, authentication mechanisms, etc.
  • Experience of the Cyber Kill Chain, MITRE ATT&CK and other information security defence and intelligence frameworks.
  • OT Cyber Security experience is desirable but not required
  • Experience in stakeholder management and engagement to C-Suite level.
  • Experience working for Critical National Infrastructure (CNI) Organisations

Why you’ll want to work for us  

 

Our company is a place where you can be yourself and grow; a place where your ideas and opinions matter. 

 

Be you

We pride ourselves on being an inclusive community, where every individual is valued and treated with respect. 

 

Be responsible

Our culture is driven by our core values. From operating safely to ensuring our solar projects are responsible and promote biodiversity.  

 

Be recognized

Alongside a competitive salary, we offer a variety of benefits including annual bonus, retention bank, health insurance, pension and other local benefits. 

 

Be inspired

Beyond your day-to-day working life at Lightsource bp, there’s a variety of initiatives that will contribute to your own personal development. Initiatives to get involved with including our charitable causes, supporting our solar honey project or our sustainability initiatives. 

 

Our Core Values

Lightsource bp truly cares about creating a sustainable future through safe, responsible and meaningful low carbon energy projects. Our core values of Safety, Integrity, Respect, Sustainability and Drive are the guiding principles for everything we do. 

 

https://www.lightsourcebp.com/careers/

 

Apply now »