
Senior Analyst, OT Cybersecurity Engineering
Johnson & Johnson
full-time
Posted on:
Location Type: Hybrid
Location: São José dos Campos • Brazil
Visit company websiteExplore more
Job Level
About the role
- Develop and maintain automation solutions that enhance the functionality and efficiency of OT services.
- Contribute to custom script development, platform optimization, and integration efforts to support cybersecurity operations across IT and OT environments.
- Collaborate with cross-functional teams to improve visibility, compliance, and platform performance.
- Build and deploy custom scripts aligned with security stakeholder requests and Platform standards.
- Maintain a repository of reusable code for remediation and data retrieval across IT & OT environments.
- Refactor and validate existing code for performance, security, and maintainability.
- Conduct structured testing of code samples during upgrade cycles and recommend improvements.
- Define and implement strategies for platform performance, security hardening, and automation.
- Validate data flows and integration points to maintain accuracy and compliance.
- Collaborate with security and infrastructure teams to ensure platform reliability and adherence to operational standards.
- Develop sensors, scripts and packages to enhance endpoint data visibility and monitor workflows.
- Support Cybersecurity workflows, to assess risk, increase visibility and reduce impact of vulnerabilities across IT & OT environments.
- Test and validate security controls throughout the different phases of the Cyber Kill Chain, and the MITRE ATT&CK framework to prevent, detect, and respond.
- Generate threat behavior analytics for discovering historical and emerging threats to networks and systems.
- Implement detection strategies based on internal and external intelligence reporting and vulnerability research.
- Perform administrative tasks associated with tuning, alerts, correlation rules, signatures, device configurations, patching, and upgrades.
- Establish and maintain relationships with the suppliers, vendors, and partners.
- Assist with security events/incidents, coordinating activities with the CSOC and others – as needed.
Requirements
- A bachelor's degree or equivalent experience in the information security or information technology sector
- Strong programming skills in scripting languages (e.g., Python, PowerShell, Bash) for automation and integration.
- Strong foundation in information security principles , with proven ability in debugging and root cause analysis in IT & OT environments.
- Experience in engineering, installing, configuring, and operating security solutions and appliances across large-scale, hybrid environments (AWS, Azure, GCP, on-prem).
- Ability to engineer, customize, and extend endpoint management and visibility platforms , including developing integrations, automation, and product-level enhancements.
- Familiarity with agile frameworks and DevSecOps practices , with the ability to deliver iteratively while maintaining reliability in high-risk environments.
- Proven track record leading complex implementations , demonstrating risk-aware problem solving and balancing security with operational continuity.
- Strong communication skills (written and verbal), able to translate technical details into clear guidance for both technical and non-technical stakeholders.
- Knowledge of security frameworks and standards (NIST CSF, CIS Controls, OWASP, SANS) and ability to apply them pragmatically in OT contexts.
- Working knowledge of the MITRE ATT&CK framework , including OT-specific TTPs, and ability to map telemetry to adversary behaviors.
- Experience collaborating with distributed, global teams , working effectively across diverse cultural and technical backgrounds.
Benefits
- Inclusive work environment
- Opportunities to lead technical initiatives
- Opportunities for professional development
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
PythonPowerShellBashautomationintegrationdebuggingroot cause analysissecurity solutionsendpoint managementvisibility platforms
Soft Skills
communicationproblem solvingcollaborationleadershipadaptabilityrisk managementguidancecross-functional teamworkcultural awarenesstechnical translation