Senior OT Threat Intelligence Analyst

Dragos

16h•Remote

About The Position

We’re seeking a Senior OT Cyber Threat Intelligence Analyst to partner directly with Dragos customers and deliver tailored, high‑impact threat intelligence through written reports, briefings, and in‑person engagement. In this role, you’ll serve as the customer’s dedicated CTI resource - providing relevant intelligence that guides their OT security journey and collaborating across Dragos delivery teams to maximize the value of each engagement. Our ideal candidate has experience delivering threat intelligence in a service‑oriented environment, a working knowledge of industrial control systems and hands‑on threat hunting expertise. You’ll also contribute to research on emerging OT threats and help shape security outcomes in a rapidly evolving industrial cybersecurity landscape.

Requirements

At least 4 years of cyber threat intelligence analysis experience.
At least 2 years of customer-facing experience.
Direct experience working in an ICS/OT environment (eg, power generation, oil and gas, manufacturing).
Knowledge and experience with NERC-CIP compliance.
Experience presenting intelligence or technical briefings to customers.
Experience writing CTI analysis products and deliverables using confidence-based assessments.
Knowledge of ICS/OT adversary TTPs, historical attacks and the overall impact of those events.
The ability to confidently scope, shape and deliver CTI content with minimal oversight.
Knowledge of cybersecurity and network defender frameworks such as Mitre ATT&CK and DEFEND.
Experience with data aggregation, hunting and analysis tools such as Synapse.

Responsibilities

Directly support clients with their respective ICS/OT security and cyber threat intelligence needs.
Support and engage in the client’s daily ICS/OT security workflows.
Hunt within your respective client’s ICS/OT environment looking for potential adversary activity and support the client in responding to and mitigating discovered threats and risks.
Leverage internal Dragos sources, OSINT, and our CTI sources to draft recurring deliverables tailored to your respective client’s priority intelligence requirements.
Respond to client’s ICS/OT CTI inquiries through Deep Analysis research deliverables and weekly engagements.
Consume ICS/OT cyber threat intelligence and other relevant internal data on behalf of your respective client. Provide alerts and advisory deliverables when applicable.
Perform research and analysis into the OT threat landscape, including tracking, analysing and hunting for adversary activity.
Help drive client adoption and utilization of Dragos products and services and help them along their customer optimization journey.
Build and maintain a working knowledge and understanding of ICS/OT threats and risks directly relevant to your respective client’s OT environment, including attack surface analysis, threat hunting strategies and threat modeling.
Provide support and feedback to other internal Dragos teams, such as Customer Success and the broader Dragos Intelligence apparatus.
Drive adoption and maintenance of your respective client’s ICS/OT priority intelligence requirements and ensure those are hunted against regularly.