Senior OT Incident Responder

3+ years of hands-on experience with intrusion analysis and digital forensics/incident response (DFIR). Ability to support an investigation from start to finish. Proficiency with Windows, Linux and applicable security toolsets. Ability to write scripts in Python, Ruby, Bash, or similar languages. Strong interpersonal, verbal, and written communication skills. Willingness to participate in on-call rotations. Experience handling communications during incidents. Desire to master industrial environments. Willingness to travel up to 30% for onsite engagements.

Perform hands-on forensic investigations, root-cause analysis, and threat hunting. Support and deliver exercise-based engagements. Lead investigations and threat-hunting operations in industrial environments. Work closely with teammates supporting Incident Response Retainer customers. Develop and refine incident response playbooks, workflows, and technical content. Recommend service and process improvements. Provide expert, hands-on support during high-pressure incidents.