OT Threat Detection SIEM Engineer (Cybersecurity)

TL;DR

OT Threat Detection SIEM Engineer (Cybersecurity): Designing, implementing, and optimizing SIEM capabilities for critical operational technology (OT) environments with an accent on threat detection, log parsing, and data pipeline management. Focus on mapping detection use cases to MITRE ATT&CK frameworks, analyzing industrial telemetry, and ensuring security monitoring aligns with operational safety and availability requirements.

Location: Hybrid (Aberdeen or Glasgow, UK)

Company

hirify.global is a leading provider of business technology solutions within the Energy, Public, and Finance sectors, focused on driving transformational change through domain expertise and proven technology.

What you will do

• Configure, onboard, and administer SIEM platforms within complex OT environments.
• Develop and maintain log parsing, data pipelines, and ingestion processes for industrial data sources.
• Build and continuously improve OT-specific detection content and use cases.
• Analyze telemetry from firewalls, network sensors, historians, and control systems.
• Map detection use cases against MITRE ATT&CK Enterprise and ICS frameworks.
• Support the triage and investigation of OT security events and incidents.

Requirements

• Hands-on experience administering and optimizing SIEM platforms within OT or industrial environments.
• Strong understanding of OT, ICS, and SCADA environments and their security challenges.
• Experience developing, tuning, and maintaining threat detection use cases.
• Knowledge of MITRE ATT&CK Enterprise and ICS frameworks.
• Analytical capabilities with experience in security event triage and incident investigation.
• Ability to balance security objectives with operational, safety, and availability requirements.

Nice to have

• Experience with industrial protocols such as DNP3, Modbus, or OPC.
• Knowledge of OT network monitoring and anomaly detection.
• Experience working within critical national infrastructure (CNI) or highly regulated environments.
• Familiarity with threat intelligence integration and industrial network segmentation.

Culture & Benefits

• Personalized career development plans tailored to individual goals.
• Flexible working arrangements to support work-life balance.
• Generous annual leave allowance and enhanced family-friendly benefits.
• Pension scheme and access to private health, well-being, and insurance schemes.
• Inclusive team culture that values diversity and professional growth.