Senior Operational Technology Incident Response Engineer

As a Senior Operational Technology (OT) Incident Response Engineer, you will lead complex OT incident-response engagements and help customers rapidly contain and eradicate threats in critical-infrastructure environments. You will perform deep-dive forensics and work in close partnership with GuidePoint’s Digital Forensics & Incident Response (DFIR) practice. Responsibilities include delivering OT IR services, immediate on-site/remote IR, compromise assessments, and root-cause analysis. The candidate will conduct OT-focused digital forensics (PLC, historian, HMI, network captures, log review), tabletop exercises, purple-team simulations, threat-hunting and proactive compromise assessments, development and validation of ICS/SCADA IR playbooks, runbooks, and detection logic. You will author clear, actionable deliverables that explain technical findings, business impact, and pragmatic remediation steps for executive and technical audiences. The candidate will advance the practice by contributing research, conference talks, blogs, and white papers on OT IR trends, malware, and defensive techniques, strengthen skills continuously to stay at the forefront of OT threat TTPs, tooling, and defensive controls and foster strong client relationships through collaborative communication and high-impact guidance.