Graham Packaging Company logo
Graham Packaging Company

Graham Packaging is a leading manufacturer of sustainable packaging. They’re the kind of people you want as your friends and neighbors as well as your partners and suppliers. By building strong relationships and creating value for our customers, our employees embody the innovative spirit that’s inherent to Graham.

OT Cybersecurity Analyst

Security AnalystSecurity AnalystFull TimeRemoteMid LevelTeam 5,001-10,000

Location

Northern America + 2 moreAll locations: Northern America | Europe | South America

Posted

8 days ago

Salary

$128.4K - $192.6K / year

Seniority

Mid Level

Job Description

OT Cybersecurity Analyst

Graham Packaging Company

Role Description The OT Cyber Security Analyst is a critical member of the Cybersecurity and Operational Technology (OT) team, responsible for securing industrial control systems and manufacturing environments. This role focuses on: - OT security monitoring, threat detection and incident response - Vulnerability management - Secure implementation of cybersecurity controls across plant operations The analyst will leverage hands-on experience in manufacturing environments, working directly with: - PLCs - Embedded systems - Industrial networks - OT-specific security platforms such as Dragos - Tools including CrowdStrike and Linux-based systems This role requires a practitioner who can bridge IT and OT domains, ensuring the availability, integrity, and security of production systems without disrupting operations. This is a remote position with travel required to manufacturing facilities primarily in North America, with occasional travel to Europe and South America. Responsibilities - OT Security Monitoring & Incident Response: Monitor industrial networks, control systems (SCADA, PLCs), and plant environments for cyber threats and anomalies. Investigate alerts generated by tools such as Dragos and CrowdStrike, and coordinate incident response actions including containment and recovery with plant operations teams. - Threat Detection & OT Risk Analysis: Identify threats targeting industrial control systems by analyzing OT network traffic, device behavior, and threat intelligence. Perform root cause analysis of incidents impacting manufacturing environments. - OT Vulnerability Management: Assess vulnerabilities across OT assets including PLCs, HMIs, and embedded systems. Partner with engineering and plant teams to prioritize remediation activities that minimize production risk. - Industrial Control Systems (ICS) Security: Support the design, implementation, and maintenance of secure architectures for PLCs, DCS, and embedded systems. Ensure adherence to segmentation, least privilege access, and secure communication protocols within plant environments. - Tool Administration & Optimization: Deploy, maintain, and optimize OT and endpoint security platforms including Dragos, CrowdStrike, and Linux-based monitoring tools. Tune detection rules and alerts to reduce false positives and improve threat visibility. - Network Segmentation & Plant Security Controls: Assist in implementing network segmentation strategies between IT and OT environments. Validate firewall rules, remote access controls, and secure vendor connectivity into plant networks. - Collaboration with Manufacturing & Engineering Teams: Work closely with plant managers, controls engineers, and IT teams to integrate cybersecurity controls into manufacturing processes without impacting uptime or throughput. - Security Policy, Compliance & Standards: Ensure OT security practices align with frameworks such as NIST Cybersecurity Framework (CSF), ISA/IEC 62443, and internal company cybersecurity policies. Support audits and risk assessments specific to manufacturing operations. - Continuous Improvement & Threat Intelligence: Stay current on emerging OT threats and vulnerabilities. Contribute to improving the organization’s overall OT security posture through new controls, tools, and best practices. Qualifications - Education: Bachelor’s degree in Cybersecurity, Information Technology, Engineering, or related field preferred (or equivalent experience) - Experience: - 3–7 years of experience in cybersecurity, with direct experience in OT/ICS environments within manufacturing required - Proven experience implementing cybersecurity controls in industrial or production environments - Hands-on experience supporting plant operations or working with controls/automation teams is strongly preferred - Technical Skills: - Strong understanding of OT networks, industrial protocols (Modbus, OPC, Ethernet/IP), and control systems architecture - Hands-on experience with PLCs and embedded systems - Dragos or similar OT security platforms - CrowdStrike or equivalent endpoint detection tools - Linux environments and scripting - Familiarity with network segmentation, firewalls, and remote access in OT environments - Understanding of IT/OT convergence risks and mitigation strategies - Certifications (Preferred): - GICSP (Global Industrial Cyber Security Professional) - CISSP, CISM, or equivalent - Vendor-specific certifications (CrowdStrike, Dragos) a plus - Skills: - Strong analytical and troubleshooting skills in complex operational environments - Ability to communicate effectively with both technical teams and plant operations personnel - Ability to balance security requirements with operational uptime and safety priorities - Self-driven with ability to work independently in a remote environment Work Environment & Travel Requirements - Remote-based role with expected travel: - North America manufacturing sites: primary travel (approximately 25–40%) - International travel (Europe & South America): occasional, project-based - Must be comfortable working in industrial plant environments, including production floors when required Compensation Statement The standard compensation for this role is $128,400 - $192,600. Salary offers will be determined based on final candidate qualifications, experience, skillset, and other relevant factors. Benefits - Medical, dental, vision and basic life insurance - Enrollment in the company’s 401K Employee Saving Plan - Participation in the Employee Wellness Program - Paid time off in accordance with company policy and state law requirements EEO Disclaimer Graham Packaging is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, sex (including pregnancy), sexual orientation, religion, creed, age, national origin, physical or mental disability, gender identity and/or expression, marital status, veteran status or other characteristics protected by law.

Related Job Pages

More Security Analyst Jobs

AAA logo

Cyber Threat Intelligence Analyst

AAA

Proud to serve our 62+ million members, help travelers see the world and drive real change to improve road safety.

Security Analyst10 days ago
Full TimeRemoteTeam 5,001-10,000Since 1902H1B Sponsor

• operationalizing the Threat Intelligence Platform (TIP) • tracking priority threats • delivering actionable, detection‑driven intelligence to security teams and leadership • identifying, analyzing, and tracking cyber threats that may impact the organization • collecting intelligence from a wide range of internal and external sources • analyzing and contextualizing threat intelligence • supporting security operations through actionable insights • monitoring and analyzing intelligence from commercial, industry, and OSINT sources • maintaining and using Threat Intelligence Platforms (TIP) • integrating intelligence across security tools • collecting, enriching, and managing actionable IOCs • providing real‑time intelligence context during investigations and incidents • responding to ad hoc and time‑sensitive intelligence requests from stakeholders • producing and delivering intelligence reports and briefings for technical and non‑technical audiences

Alabama + 20 moreAll locations: Alabama | Arizona | California | Colorado | Connecticut | District Of Columbia | Florida | Idaho | Illinois | Iowa | Kansas | Kentucky | Louisiana | Maine | Montana | Maryland | Massachusetts | Michigan | Minnesota | Mississippi | Missouri
$122.9K - $164K / year
Deutsche Telekom logo

Junior SOC Analyst

Deutsche Telekom

Headquartered in Bellevue, Washington, T-Mobile is an international cell phone carrier that is part of Deutsche Telekom, one of the largest telecommunications companies in the worl

Security Analyst10 days ago

Role Description - Monitoreo de alertas en herramientas como CrowdStrike, Microsoft Defender, Cortex XDR, Splunk, SocRadar y ServiceNOW. - Análisis inicial de eventos e incidentes de ciberseguridad. - Escalación inicial de incidentes siguiendo playbooks. - Documentación básica de incidentes de seguridad. - Atención y seguimiento de tickets. - Reporte oportuno de anomalías/comportamiento sospechoso detectado. Qualifications - Conocimientos básicos de redes, sistemas operativos (Windows/Linux/macOS) y conceptos de ciberseguridad. - Capacidad de análisis contextual de información. - Manejo de herramientas de análisis OSINT (VirusTotal, AbuseIPDB, HybridAnalysis, etc). - Capacidad de seguir procedimientos estandarizados. - Comunicación clara y efectiva. - Orientación al detalle y disciplina en la documentación. - Inglés Intermedio (necesario, se realiza entrevista en inglés). - 0 a 2 años en áreas de soporte técnico, helpdesk o seguridad informática. - Experiencia básica en monitoreo de sistemas o uso de consolas de seguridad. - Deseable prácticas profesionales en un SOC, Datacenter o área de TI. Requirements - Certificaciones deseables: - CompTIA CySA+ - Microsoft SC-200 - Splunk Core Certified User - CrowdStrike Certified Falcon Responder - CrowdStrike Certified Falcon Administrator - Palo Alto Networks Security Operations Professional - Fortinet NSE1/NSE2 Benefits - T-Systems se enorgullece de ser un empleador que ofrece igualdad de oportunidades y acción afirmativa. - No discriminamos por motivos de raza, religión, color, origen nacional, sexo (incluido el embarazo, el parto o condiciones médicas relacionadas), orientación sexual, género, identidad de género, expresión de género, condición de transgénero, estereotipos sexuales, edad, condición de persona con discapacidad, u otras características legalmente protegidas aplicables. - En cualquier proceso de evaluación o contratación dentro de T-Systems México no se requieren pruebas de VIH ni de embarazo. - T-Systems cuenta con un sistema de gestión antisoborno y es compromiso de todos los colaboradores conocerlo y cumplirlo. - Brindamos a nuestros empleados oportunidades únicas para un mayor desarrollo, ya sea en carreras técnicas o gerenciales.

Mexico
TD SYNNEX logo

Junior Application Security Analyst

TD SYNNEX

At TD SYNNEX, our values guide everything we do: Together, We Own It, We Dare to Go, We Grow and Win, and above all, We Do the Right Thing. These principles shape how we work with each other, our partners, and our communities as we drive innovation and create lasting impact. TD SYNNEX is proud to be an equal opportunity employer. We welcome applicants from all backgrounds and experiences and are committed to creating an inclusive environment where everyone can thrive.

Security Analyst10 days ago
Full TimeRemoteTeam 10,001+Since 1980H1B Sponsor

• Support TD SYNNEX’s global application security and cybersecurity technologies. • Execute key security processes, including application security testing, vulnerability management, and threat analysis. • Review security findings and help identify coding vulnerabilities, misconfigurations, and areas of risk. • Support vulnerability prioritisation, remediation tracking, and communication with technical teams. • Assist with security health checks, compliance reviews, and KPI reporting. • Help improve secure coding practices, process documentation, and security procedures. • Support process automation and orchestration to improve operational efficiency. • Contribute to investigations related to potential application security incidents.

Poland
True Zero Technologies logo

Junior Cyber Security Analyst

True Zero Technologies

True Zero Technologies, a veteran-owned small business, was founded on the principle that the purposeful enablement of people and technology in an organization directly ties to the quality of its outcomes. Recognized as one of the Best Places to Work in 2023 in two categories Earned spots on the Inc. 5000 list of fastest-growing companies in America in 2022, 2023, and 2025 Community of like-minded, driven, and passionate individuals

Security Analyst10 days ago
Full TimeRemoteTeam 51-200

Role Description The Junior Cyber Security Assurance Analyst will be responsible for providing support for system security assessments of a cloud-based, NIST-regulated systems. Works with technical and functional teams to define, document, and deliver security documentation and artifacts that demonstrate compliance with required security controls. Supports the remediation and tracking of identified deficiencies and works with the Security team to support continuous diagnostic and monitoring programs as needed. Supports the security work stream within the system release/change management process. Reviews planned system changes, helps identify and document security impacts, helps coordinate security scanning, testing, reporting as well as production readiness and post implementation support activities. Successful candidates will work closely with U.S. Federal Government clients, including Information System Security Officers (ISSO), System Owner, Cyber security team, and other groups as needed on release related activities. Updates established work plans for Security release activities. Qualifications - Implement, administer, and use cybersecurity tools, systems and applications; develop policies, standards, and guidelines to ensure secure enterprise-wise operations, performance and resiliency. - Deploy and secure security systems, application layer and traditional firewalls, vulnerability management and forensics utilities, and other infrastructure deployed and maintained by the Information Security Office. - Develop plans to safeguard information against unauthorized access modification, and destruction, and ensure organizational continuity of operations. - Monitor, research, and respond to cyber related events and incidents such as malicious code detection, intrusion, detection, system configuration, and patch management issues. - Conduct risk assessments, audits, and validate that system functionality, and security controls are implemented appropriately according to policy and industry best practices. - Conduct cybersecurity training and outreach organization-wide. Requirements - BA or BS degree, or at least 4 years of experience in related field - Minimum 1+ years supporting OR conducting federal system security assessments - Minimum 1+ years developing formal security documentation - Minimum 1+ years assessing and remediating security findings - Minimum 1+ years exposure to the SDLC - Minimum 1+ years experience with Release Management or Change Management - Thorough knowledge of NIST SP 800-series security guidelines - Active clearance, or ability and willingness to submit for a clearance may be required - Approved to work in the United States - Excellent written and oral communication skills - Ability to work well in a team environment Benefits - Competitive salary, paid twice per month - Best in class medical coverage - 100% of medical premiums covered by True Zero - Company wide new business incentive programs - Contribution Incentives (i.e. white papers, blog posts, internal webinars, etc.) - 3 weeks of PTO starting + 11 Paid Holidays Annually - 401k Program with 100% company match on the first 4% - Monthly reimbursement of Cell Phone and Home Internet costs - Paternity/Maternity Leave - Investment in training and certifications to broaden and deepen your technical skills

United States