Remote Senior Operational Technology Incident Response Engineer- Remote (Anywhere in the U.S.)

Description:

• As a Senior Operational Technology (OT) Incident Response Engineer, you will lead complex OT incident-response engagements and perform deep-dive forensics.
• You will help customers rapidly contain and eradicate threats in critical-infrastructure environments.
• You will work closely with GuidePoint’s Digital Forensics & Incident Response (DFIR) practice, providing OT-specific expertise to broader incident response efforts.
• Your role will involve authoring clear, actionable deliverables that explain technical findings, business impact, and pragmatic remediation steps for both executive and technical audiences.
• You will contribute to the advancement of the practice by conducting research, giving conference talks, writing blogs, and publishing white papers on OT incident response trends, malware, and defensive techniques.
• You will foster strong client relationships through collaborative communication and high-impact guidance.
• Other duties may be assigned as needed.

Requirements:

• A solid understanding of ISA/IEC 62443, NIST 800-82, NIST-CSF, NERC CIP, and the Purdue Model is required.
• You must have 3+ years dedicated to OT security, with at least 2 years leading or co-leading live OT/ICS incident-response engagements.
• A minimum of 2 years in a client-facing consulting or services role is necessary.
• Preferred is 5+ years of combined experience across IT/OT networking, security monitoring, or digital forensics.
• Preferred certifications include GIAC GRID, GCIP, GCFA, GICSP, or equivalent practical expertise.
• Demonstrated community involvement, such as being a conference speaker, white paper author, or podcast guest, is strongly preferred.
• Proven ability to lead engagements and provide technical oversight to analysts is essential.
• Deep knowledge of OT/ICS attack lifecycles and relevant threat frameworks is required.
• Hands-on experience with OT visibility/security platforms and competence in packet analysis, log analytics, memory forensics, and scripting for automation is necessary.
• Strong written communication skills are required, with reports needing minimal editing before client delivery.
• You must be able to manage multiple workstreams, meet deadlines, and navigate demanding client situations calmly.
• A passion for continuous learning, adaptability, and contributing to a high-performance team culture is essential.

Benefits:

• The position offers a remote workforce primarily, with some travel required for certain positions and on-site work for Federal positions.
• Group Medical Insurance options include a Zero Deductible PPO Plan, where GuidePoint pays 90% of the premium for employees and 70% for family plans, or a High Deductible Health Plan with HSA, where GuidePoint pays 100% of the employee's premiums and 75% for family plans, along with annual contributions to HSA.
• Group Dental Insurance is provided, with GuidePoint paying 100% of the premium for employees and 75% for family plans.
• Employees receive 12 corporate holidays and a Flexible Time Off (FTO) program.
• A healthy mobile phone and home internet allowance is included.
• Eligibility for a retirement plan begins after 2 months at open enrollment.
• A Pet Benefit Option is also available.