Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Operational Technology (OT) Cyber Threat Analyst

RMC Global

Job Description

Job Description

Description:

RMC is seeking an Operational Technology (OT) Cyber Threat Analyst for a full-time in-office position in San Antonio, TX!

Are you ready to embark on a fulfilling and impactful career journey with Risk Mitigation Consulting (RMC)? We're in search of an exceptional OT Cyber Threat Analyst to become a part of our mission-driven team, dedicated to making a difference in the federal and commercial markets. At RMC, we're all about enhancing security for both our military and global commercial partners, offering an array of services such as Risk Management, Mission Assurance, and Cybersecurity.

Our team's well-being is paramount, and we reflect this commitment through our flexible work environment and exceptional company culture. By joining RMC, you become a key contributor to our mission – Assuring Tomorrow!

When you join RMC, you'll experience a range of benefits, including:

  • Comprehensive health, vision, and dental insurance plans fully covered for employees
    • Subsidized dependent health care coverage
  • Participation in our Annual Bonus Program
  • Life insurance policy equivalent to 1x your annual salary.
  • Company paid short and long-term disability
  • Cell phone reimbursement of $65 per month
  • 401(k) Plan with contributions
  • A 401(k) Safe Harbor Employer Contribution Program, which includes a 3% contribution

Position Summary:

The OT Cybersecurity Analyst supports the protection and resilience of critical infrastructure environments through threat intelligence analysis, security monitoring, incident response, and vulnerability assessment activities focused on Operational Technology (OT) and Industrial Control Systems (ICS). This role is responsible for identifying and analyzing cyber threats targeting industrial environments, supporting incident response efforts, and helping clients strengthen the security posture of mission-critical systems across sectors such as energy, water, transportation, and manufacturing. The position works closely with clients, government partners, and internal technical teams to provide actionable intelligence, risk-based recommendations, and regulatory compliance support. Successful candidates will bring a strong understanding of OT/ICS environments, evolving cyber threats, and the operational considerations required to secure critical infrastructure systems.

Essential Functions:

Threat Intelligence & Analysis

  • Monitor, collect, and analyze cyber threat intelligence from open-source, commercial, and government feeds (ISACs, CISA, sector-specific advisories) with specific focus on threats targeting critical infrastructure sectors (energy, water, transportation, manufacturing)
  • Assess threat actor TTPs (Tactics, Techniques, and Procedures) relevant to ICS/SCADA environments using frameworks such as MITRE ATT&CK for ICS and the Purdue Model
  • Produce timely, actionable threat intelligence reports tailored to both technical and executive audiences

OT/ICS Security Monitoring

  • Perform continuous monitoring of OT/ICS network environments, including SCADA systems, PLCs, RTUs, HMIs, and historian servers, for anomalous or malicious activity
  • Analyze network traffic, asset telemetry, and security events across IT/OT boundaries using OT-aware tools (e.g., Claroty, Dragos, Nozomi Networks, Tenable OT)
  • Identify and document Indicators of Compromise (IoCs) and Indicators of Attack (IoAs) specific to industrial control system environments

Incident Detection, Response & Support

  • Triage, investigate, and escalate security incidents in accordance with client incident response plans and sector-specific regulatory requirements
  • Support containment, eradication, and recovery activities for cyber incidents affecting OT/ICS environments, with acute awareness of operational safety and uptime constraints
  • Maintain detailed incident timelines, chain-of-custody documentation, and post-incident lessons-learned reports

Vulnerability & Risk Assessment

  • Conduct vulnerability assessments of OT assets, applying risk-based prioritization that accounts for operational impact, compensating controls, and the consequences of patching in live industrial environments
  • Map identified vulnerabilities to threat actor capabilities and likelihood of exploitation to support client risk decisions
  • Track remediation efforts and validate closure of identified findings
  • Client Engagement & Reporting
  • Serve as a day-to-day technical point of contact for assigned clients, delivering regular briefings on threat landscape changes, incident status, and security posture
  • Develop and maintain client-specific threat profiles, asset inventories, and sector risk assessments
  • Communicate findings clearly and professionally across technical, operational, and executive stakeholder levels

Regulatory & Standards Compliance Support

  • Support clients in understanding and meeting cybersecurity obligations under relevant frameworks and regulations, including NERC CIP, NIST SP 800-82, IEC 62443, TSA Security Directives, and AWIA 2018, as applicable by sector
  • Assist in the development and review of OT security policies, procedures, and security plans

Collaboration & Intelligence Sharing

  • Coordinate with government partners, sector ISACs (E-ISAC, WaterISAC, MS-ISAC), and peer organizations to share and receive actionable threat information
  • Collaborate with internal red team, engineering, and advisory practice staff to integrate findings into broader client security programs
  • Participate in tabletop exercises, drills, and wargames simulating OT-targeted attack scenarios

Continuous Improvement

  • Stay current on emerging OT/ICS threats, vulnerabilities, and adversary campaigns through ongoing research, training, and industry engagement
  • Contribute to the firm’s internal knowledge base, playbooks, and methodology development
  • Pursue and maintain relevant certifications (GICSP, GRID, CISA, GCIH, or equivalent)

Competencies:

  • Excellent writing skills, strong communication abilities, good time management and organizational skills
  • Experience using Microsoft Office tools and applications such as Word, PowerPoint, Excel and SharePoint
  • Work confidently in a fast-paced environment with the ability to support multiple projects
  • Ability to perform analysis of complex technical issues
  • Ability to work independently on multiple tasks with minimal direction to meet deadlines
  • Ability to work in a team environment and take initiative to help ensure team tasks are successfully completed within required timelines
Requirements:

Education & Experience Requirements:

  • Bachelor’s degree and 4-10 years of experience in the industry

Desired Certificates & Licenses:

  • Security+
  • CISSP
  • GICSP

Other Requirements:

  • Security Clearance (Optional): Obtaining a DoD Secret Clearance. Applicants selected will be subject to a government security investigation and must meet eligibility requirements for clearance level required for the job.
  • Valid Passport: Possession of a current passport with a minimum of 8 months remaining until the expiration date.
  • Travel Flexibility: Willingness and capability to travel, CONUS approximately 20% of the time. Telecommunication is authorized for this role.
  • Work Environment Compliance: Commitment to maintaining a drug-free work environment, U.S. Citizenship, and possession of a valid state driver's license.

Want to take the next step in your career with RMC? This OT Cyber Threat Analyst role is where your skills and talents will thrive, and you'll be part of something truly meaningful.

Join us today!

Reasonable Accommodations Statement

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. Reasonable Accommodations may be made to enable qualified individuals with disabilities to perform the essential functions.

RMC has reviewed this job description to ensure that essential functions and basic duties have been included. It is intended to provide guidelines for job expectations and the employee's ability to perform the position described. It is not intended to be construed as an exhaustive list of all functions, responsibilities, skills, and abilities. Additional functions and requirements may be assigned by your manager as deemed appropriate. This document does not represent a contract of employment, and RMC reserves the right to change this position description and/or assign tasks for the employee to perform, as RMC may deem appropriate.

RMC is an Equal Opportunity Employer.

Vacancy posted 23 days ago
Similar jobs that could be interesting for youBased on the Operational Technology (OT) Cyber Threat Analyst in San Antonio, TX vacancy
  • Description RMC is seeking an Operational Technology (OT) Cyber Threat Analyst for a full-time in-office position in San Antonio, TX! Are you ready to embark on a fulfilling and impactful career journey with Risk Mitigation Consulting (RMC)? We're in search of an exceptional... 
    Suggested
    Full time
    Contract work
    Temporary work
    Work at office
    Flexible hours

    Rmcinc

    San Antonio, TX
    3 days ago
  • RMC Global is seeking an Operational Technology (OT) Cyber Threat Analyst for a full-time in-office position in San Antonio, TX. The role focuses on enhancing the security of critical infrastructure environments such as energy, water, and transportation, requiring strong... 
    Suggested
    Full time
    Work at office

    RMC Global

    San Antonio, TX
    2 days ago
  •  ...Job Description Description: RMC is seeking an Operational Technology (OT) Cybersecurity Analyst for a full-time in-office position in San Antonio,...  ...Consulting (RMC)? We're in search of an exceptional OT Cyber Threat Analyst to become a part of our mission-driven team... 
    Suggested
    Full time
    Contract work
    Temporary work
    Work at office
    Flexible hours

    RMC Global

    San Antonio, TX
    5 days ago
  •  ...Maximus is looking to hire a Cyber Threat Intelligence Analyst. This position is onsite in San Antonio,...  ...SCI security clearance. Maximus TCS (Technology and Consulting Services) Internal...  ...in interviews—please contact People Operations at ****@*****.*** . #J-... 
    Suggested
    Minimum wage
    Contract work
    Temporary work
    Work experience placement

    MAXIMUS

    San Antonio, TX
    1 day ago
  • Abacus Technology is seeking a Cyber Security/Network Defense Analyst in San Antonio, Texas. This full-time position involves providing technical support for the AFCENT Network Operations and Security Center, ensuring 24/7 operational readiness. The ideal candidate will... 
    Suggested
    Full time

    Abacus Technology

    San Antonio, TX
    5 days ago
  • A technology security company in San Antonio is seeking a Cyber/Indications and Warnings Analyst to handle security incidents and analyze threats. Candidates should have a Bachelor's in Information Assurance and several years of experience with monitoring tools like StealthWatch... 

    Interclypse

    San Antonio, TX
    4 days ago
  • Abacus Technology is seeking a Cyber Security/Network Defense Analyst to provide technical support for the AFCENT Network Operations and Security Center (NOSC) at Lackland AFB as part of a 24/7/...  ...reporting processes. Knowledge of threat visualization applications. Extensive... 
    Full time
    Shift work
    Weekend work

    Abacus Technology Corporation

    San Antonio, TX
    2 days ago
  • $102.17k

     ...you are passionate about water and technology, Trinnex is the place for you!...  ...Trinnex Security Team as a Senior Cyber Security Analyst, where you will operate at the intersection of cybersecurity...  ...environments are resilient against evolving threats. You will work closely with... 
    H1b

    CDM Smith

    San Antonio, TX
    5 hours ago
  •  ...military installations across the U.S. We areseeking a Cyber Threat Emulation & Analyst at Lackland AFB in San Antonio, TX. What You'll Do: Conduct...  ...configuration vulnerability assessments as directed by operational flight leads. Conduct Cyber Threat Emulation operations,... 
    Temporary work
    For contractors
    Flexible hours

    STS Systems Support, LLC

    San Antonio, TX
    1 day ago
  • Bristol Bay Native Corporation is hiring for an Emerging Threats Analyst at Lackland Air Force Base in San Antonio, TX. The role involves...  ...conducting threat intelligence research to support military operations. The ideal candidate will possess a strong background in... 

    Bristol Bay Native Corporation

    San Antonio, TX
    4 days ago
  • $142.7k - $158.3k

     ...seeking a highly skilled and experienced Cyber Security Analyst / SIEM Engineer to join our SPRINT...  ...and leadership of enterprise SIEM operations and security dashboard development in...  ...a diverse portfolio of high technology solutions, products and services that... 
    Flexible hours

    General Dynamics Mission Systems

    San Antonio, TX
    18 hours ago
  •  ...The Cyber Security Analyst is responsible for planning and implementing...  ..., and Security Operations. The analyst will act...  ...Systems, Information Technology, Computer Science, or...  ...of malware analysis, threat mitigation, and countermeasure...  ...working in IT/OT roles within a... 

    Compunnel

    San Antonio, TX
    1 day ago
  •  ...respond to potential threats. The ideal candidate is...  ...TITLES Cybersecurity Analyst, Information Security...  ...Assurance Analyst, Security Operations Center (SOC) Analyst,...  ...Risk Analyst, Cyber Risk Manager, Security...  ...Cybersecurity, Information Technology, Computer Science, Information... 
    Temporary work
    For contractors
    Immediate start
    Flexible hours

    Cymertek

    San Antonio, TX
    1 day ago
  •  ...cybersecurity principles, threat detection, and incident...  ...TITLES Cybersecurity Analyst, Information Security Analyst...  ..., IT Risk Analyst, Cyber Defense Specialist, Security Operations Center (SOC) Analyst, Vulnerability...  ..., Information Technology, Computer Science, Information... 
    Temporary work
    For contractors
    Immediate start
    Flexible hours

    Cymertek

    San Antonio, TX
    5 days ago
  •  ...robust against evolving threats. The ideal candidate...  ...Hacker, Vulnerability Analyst, Security Consultant,...  ...Assessment Specialist, Cyber Threat Analyst, Exploit...  ...Science, Information Technology, Information Security,...  ...strategies Familiarity with operating systems like Windows,... 
    Temporary work
    For contractors
    Immediate start
    Flexible hours

    Cymertek

    San Antonio, TX
    5 days ago
  •  ...Cybersecurity Analyst LOCATION San Antonio,...  ...and data from potential threats. In this role, you...  ...Cybersecurity Engineer, Security Operations Center (SOC) Analyst,...  ...Tester, Risk Analyst, Cyber Defense Analyst,...  ...Security, Information Technology, Digital Forensics,... 
    Temporary work
    For contractors
    Immediate start
    Flexible hours

    Cymertek

    San Antonio, TX
    17 hours ago
  • Abacus Technology Corporation in San Antonio is seeking a Cyber Security/Network Defense Analyst to provide crucial support for the AFCENT Network Operations and Security Center. The role requires expertise in monitoring network security, conducting incident analyses,... 

    Abacus Technology

    San Antonio, TX
    2 days ago
  • $110k - $220k

     ...SYSTEM VULNERABILITY ANALYST BTS Software Solutions is seeking...  ...and attacks to the design and operation of a system by relating...  ...development, programming, information/cyber/network security, systems...  ...Cyber Security, Information Technology, Information Assurance, and Information... 
    Work experience placement
    Local area

    BTS Software Solutions

    San Antonio, TX
    18 hours ago
  • $110k - $220k

     ...System Vulnerability Analyst BTS Software Solutions is seeking...  ...and attacks to the design and operation of a system by relating vulnerabilities...  ..., programming, information/cyber/network security, systems...  ...Cyber Security, Information Technology, Information Assurance, and... 
    Local area

    Navstar

    San Antonio, TX
    3 days ago
  •  ...Computer Network Defense Analyst (CNDA) LOCATION...  ...systems against potential threats and vulnerabilities....  ...with advanced tools and technologies to identify security...  ...Threat Analyst, Security Operations Center (SOC) Analyst,...  ...Response Analyst, Cyber Threat Intelligence Analyst... 
    Temporary work
    For contractors
    Immediate start
    Flexible hours

    Cymertek

    San Antonio, TX
    1 day ago
  • Maximus is seeking a Cyber Threat Intelligence Analyst to work onsite in San Antonio, TX. This role demands an active Top Secret/SCI clearance and involves collecting and analyzing cyber threat intelligence, identifying emerging threats, and developing intelligence products... 

    Maximus

    San Antonio, TX
    21 days ago
  • STS Systems Support, LLC (SSS) is looking for an Emerging Threats Analyst at Lackland Air Force Base in San Antonio, TX. The role involves analyzing network traffic and providing insights on cyber threats using various analytical tools. Ideal candidates will possess an... 

    STS Systems Support, LLC

    San Antonio, TX
    1 day ago
  •  ...mission-critical utility infrastructure across a complex environment that blends enterprise networking, cybersecurity, and operational technology. The successful candidate will configure and support Cisco routing and switching, manage firewalls, and contribute to cloud... 
    Contract work
    For contractors

    Brooksource

    San Antonio, TX
    5 days ago
  •  ...Digital Network Exploitation Analyst (DNEA) LOCATION...  ...SIMILAR CAREER TITLES Cyber Network Analyst,...  ...Exploitation Specialist, Cyber Operations Analyst, Signals Intelligence Analyst, Threat Intelligence Analyst,...  ...Science, Information Technology, Data Analytics,... 
    Temporary work
    For contractors
    Immediate start
    Flexible hours

    Cymertek

    San Antonio, TX
    18 hours ago
  •  ...Target Digital Network Analyst (TDNA) LOCATION...  ...Digital Network Analyst, Cyber Network Analyst, Network...  ...Specialist, Cyber Operations Analyst, Intelligence...  ...Analyst, SIGINT Analyst, Threat Intelligence Analyst,...  ...Science, Information Technology, Network Engineering,... 
    Temporary work
    For contractors
    Immediate start
    Flexible hours

    Cymertek

    San Antonio, TX
    17 hours ago
  • $65 per hour

    A leading technology innovator is seeking a Freelance Cybersecurity Analyst to analyze security incidents and improve AI understanding of threats. The position offers flexible remote work and compensation...  ...experience in cybersecurity operations, and familiarity with... 
    Remote job
    Freelance
    Flexible hours

    Mind Rift

    San Antonio, TX
    4 days ago
  •  ...RESPONSIBILITIES The Senior Cyber Security Analyst must have a deep...  ...experience working in information technology, security, or risk...  ...&CK experience in building threat detections, performing threat...  ...Security: IDS/IPS, NGFW, NGAV Operating Systems: Windows, Linux, macOS... 

    University Health

    San Antonio, TX
    4 days ago
  •  ...Cyber Vulnerability Test Engineer At IPSecure, you'll shape...  ...Cybersecurity by building the technology to tackle the toughest challenges...  ...and stay ahead of the latest threats. If you want to join an agile...  ...Design, build, operate, and maintain a stand-alone cyberspace... 

    IPSecure Inc

    San Antonio, TX
    3 days ago
  •  ...We are currently seeking a contract Cyber Incident Response Analyst to be a key resource on a technical...  ...stakeholders. Support multi‑agency response operations, including SLTT partners and...  ...adversary TTPs, intrusion kill chains, and threat hunting methodologies using packet‑... 
    Contract work
    Work at office

    TexasGovLink Inc

    San Antonio, TX
    3 days ago
  •  ...systems secure against evolving threats. Join us to help build and...  ...Assurance Engineer, Security Operations Engineer, IT Security Engineer, Systems Security Analyst, Cloud Security Engineer, ect....  ...Focus) Cybersecurity, Information Technology, Computer Science, Information... 
    Temporary work
    For contractors
    Immediate start
    Flexible hours

    Cymertek

    San Antonio, TX
    5 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Operational Technology (OT) Cyber Threat Analyst. Be the first to apply!