Business Analyst – OT & Cybersecurity (Heavy Asset Industry)

Cognizant
London
8 months ago
Applications closed

Related Jobs

View all jobs

Information Security Assurance Analyst

Business Analyst

Business Analyst - Operational resilience - Banking

Cyber Security Analyst - Training Course

Delivery Manager

Cyber Security Specialist – Training Course

The Company

Cognizant (NASDAQ:CTSH) is a leading provider of information technology, consulting, and business process outsourcing services, dedicated to helping the world's leading companies build stronger businesses. Headquartered in Teaneck, New Jersey (U.S.), Cognizant has over 350,000 employees as of January 2024. Cognizant is a member of the NASDAQ-100, the S&P 500, the Forbes Global 1000, and the Fortune 500 and is ranked among the top performing and fastest growing companies in the world.

Cognizant Consulting

At Cognizant, our consultants orchestrate the capabilities to truly change the game across strategy, design, technology and industry/functional knowledge to deliver insight at speed and solutions at scale. Our consulting services elevate the unique abilities and business aspirations of customers and employees and build relationships based on trust and value.

Water Utilities Consulting

With the arrival of AMP8 and recent market developments, Water Utilities in the UK have embarked on a transformation journey that focuses on sustainability (fewer pollution incidents, green energy powered water treatment etc.), reliable infrastructure(fewer flooding incidents, leakages etc.), customer centricity (affordable bills, enhanced customer experience), social responsibility(support for vulnerable customers), and most importantly disruption from innovative competitors entering the marketplace.

Cognizant has multiple engagements with water utilities in the UK where we are utilising our capabilities in data science and digital enablement to help them lead this transformation through new offerings, solutions and innovative business models that are aligned to the market trends and regulatory commitments. We are looking for experienced business analysts/consultants/product owners who are passionate about making a difference for our clients in the energy and utilities domain. This is an opportunity for being at the forefront of the transformation journey working with the best minds in the energy and utilities domain at Cognizant.

Job Summary:

We are seeking a Business Analyst with expertise in Operational Technology (OT) and Cybersecurity within heavy asset industries (e.g., utilities, manufacturing, oil & gas, transportation, mining). The ideal candidate will support cybersecurity initiatives for OT environments, ensuring compliance, risk management, and secure integration of industrial control systems (ICS), SCADA, and IoT. This role requires strong analytical, technical, and stakeholder management skills to enhance OT security while aligning with business objectives.

Key Responsibilities:

Business Analysis & Cybersecurity Strategy

  • Gather and document business and technical requirements for OT cybersecurity projects.
  • Analyze current OT security controls, risks, and vulnerabilities to identify areas for improvement.
  • Support the implementation of cybersecurity frameworks (NIST CSF, IEC 62443, NERC CIP, ISO 27001) for industrial environments.
  • Assist in defining security policies, procedures, and governance models for OT networks and assets.

Operational Technology (OT) Security & Risk Management

  • Work with IT, OT, and security teams to ensure secure deployment of SCADA, ICS, and IIoT solutions.
  • Support network segmentation, zero-trust architecture, and intrusion detection strategies for OT environments.
  • Collaborate with cybersecurity and operations teams on threat monitoring, incident response, and vulnerability management.
  • Assist in risk assessments, penetration testing, and compliance audits for industrial networks.

Technology Integration & Compliance

  • Work with stakeholders to integrate EAM/CMMS, SCADA, and industrial automation systems with cybersecurity controls.
  • Support projects related to secure remote access, identity & access management (IAM), and anomaly detection for OT environments.
  • Ensure OT systems comply with industry regulations such as NERC CIP, ISA/IEC 62443, GDPR, or CISA guidelines.
  • Assist in vendor risk management and the evaluation of cybersecurity solutions for OT environments.

Data Analytics & Reporting

  • Develop dashboards and reports on OT security performance, incident trends, and compliance status.
  • Analyze OT cybersecurity logs and events to identify potential threats or vulnerabilities.
  • Provide insights on security best practices, asset inventory management, and risk mitigation strategies.

Desirable skills and experience

  • Experience as a Business Analyst in OT cybersecurity, industrial automation, or IT security within heavy asset industries.
  • Strong understanding of SCADA, ICS, DCS, PLCs, and industrial networking protocols (Modbus, OPC, DNP3, etc.).
  • Experience with cybersecurity risk assessments, NIST CSF, IEC 62443, or similar frameworks.
  • Proficiency in business process mapping, requirements gathering, and stakeholder management.
  • Strong knowledge of cybersecurity tools such as SIEM, firewalls, IDS/IPS, and endpoint security.
  • Familiarity with cloud security, IoT security, and secure OT-IT convergence.

Preferred:

  • Certifications such as GICSP, CISSP, CISM, CISA, or ISA/IEC 62443.
  • Experience with OT penetration testing, threat hunting, or incident response.
  • Knowledge of AI/ML-based cybersecurity solutions and anomaly detection for OT environments.
  • Understanding of regulatory compliance in energy, utilities, or critical infrastructure sectors.

#J-18808-Ljbffr

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Education

The Skills Gap in Cyber Security Jobs: What Universities Aren’t Teaching

Cyber security has become one of the most critical disciplines in the modern economy. From protecting financial systems and healthcare data to securing national infrastructure, cloud platforms and supply chains, cyber security professionals now sit at the frontline of digital trust. Demand for cyber security talent in the UK has surged. Job vacancies remain high, salaries continue to rise, and organisations across every sector report difficulty hiring skilled professionals. Yet despite this demand, many graduates struggle to break into cyber security roles and employers consistently report that candidates are not job-ready. The problem is not intelligence, ambition or academic effort. It is a persistent and widening skills gap between university education and real-world cyber security work. This article explores that gap in depth: what universities teach well, what they routinely miss, why the gap exists, what employers actually want, and how jobseekers can bridge the divide to build sustainable careers in cyber security.

Jobs Careers

Cyber Security Jobs for Career Switchers in Their 30s, 40s & 50s (UK Reality Check)

If you’re thinking about switching into cyber security in your 30s, 40s or 50s, you’re in good company. Across the UK, organisations of all sizes are hiring people from diverse backgrounds to protect systems, data & customers. But with hype around “hackers” & quick-win courses, it’s hard to separate reality from fiction. This guide gives you a UK reality check: which roles genuinely exist, what employers actually want, how training really works, what to expect on salary & progression & whether age matters. Whether you come from finance, project management, operations, law, HR or customer service, there is a credible route into cyber security if you approach it strategically.

Jobs

How to Write a Cyber Security Job Ad That Attracts the Right People

Cyber security is now a board-level priority for organisations across the UK. From financial services and healthcare to critical infrastructure, SaaS platforms and the public sector, demand for skilled cyber security professionals continues to grow. Yet despite this demand, many employers struggle to attract the right candidates. Cyber security job adverts often generate large volumes of applications, but few are a genuine match. Meanwhile, experienced security engineers, analysts and architects quietly ignore adverts that feel vague, unrealistic or disconnected from real security work. In most cases, the problem is not a lack of talent — it is the quality of the job advert. Cyber security professionals are trained to assess risk, spot weaknesses and question assumptions. A poorly written job ad signals organisational immaturity and weak security culture. A well-written one signals seriousness, competence and trust. This guide explains how to write a cyber security job ad that attracts the right people, improves applicant quality and positions your organisation as a credible security employer.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.