← Back to Cloud Security
D
Dragos
job-boards.greenhouse.io/dragos

Senior OT Threat Hunter

Cloud SecurityOn-site

Senior OT Threat Hunter

Dragos is on a relentless mission to defend industrial organizations that provide us with the necessities of modern civilization; running water, functioning electricity, and safe industrial working environments. As the market leader in ICS/OT Cybersecurity, we are dedicated to arming our customers with best-in-class technology, threat intelligence, and services to protect their systems as effectively and efficiently as possible. We’re a remote-first culture with operations in North America, Europe, the Middle East, and APAC. We’re looking for mission-oriented teammates who embody our core values of authenticity, transparency, and trust. Are you ready to make a difference? Come join a mission that can save the world!

About the Role: Responsibilities:
  • Lead independent, hypothesis‑driven threat hunting operations across customer ICS/OT environments, investigating suspicious network behaviors to identify adversaries, anomalies, and misconfigurations.
  • Serve as the primary escalation point for high‑severity events detected in the Dragos Platform, guiding OT Hunters and Security Analysts through triage, analysis, and response.
  • Communicate critical findings directly to customers, providing clear, actionable remediation guidance and confidently addressing technical questions during security events.
  • Tune and optimize Dragos Platform configurations and distributed hunt profiles to improve detection fidelity, reduce noise, and validate detection triggers based on operational findings.
  • Develop and refine original hunt hypotheses, content, and workflows, and provide structured feedback to Detection Engineering and Intelligence teams to enhance detections, IOCs, and threat intelligence outputs.
  • Contribute to operational reporting and incident summaries, support custom reporting needs, and mentor junior team members to promote technical rigor, knowledge sharing, and continuous improvement across the team.

Qualifications:
  • 5+ years of experience in threat hunting, security monitoring, or incident response within ICS/OT environments.
  • Strong understanding of networking concepts (e.g., TCP/IP, firewalls, DNS, packet analysis) and OT-specific protocols (e.g., Modbus, DNP3, Ethernet/IP).
  • Experience with PCAP analysis, IDS/IPS, SIEM platforms, or other network traffic analysis tools in an OT context.
  • Deep familiarity with adversary tactics, techniques, and procedures (TTPs) relevant to OT environments, including MITRE ATT&CK for ICS.
  • Familiarity with threat intelligence workflows, including consumption and feedback loops with intelligence and detection engineering teams.
  • Proven ability to communicate complex security findings to clients and internal stakeholders, both verbally and in writing.
  • Experience acting as a technical escalation point or senior contributor in a security operations or threat hunting context.
  • Ability to work independently and lead efforts in a remote, distributed team environment.

Compensation:
  • Salary: 150,000 AUD
  • Competitive Equity Package
  • Comprehensive Benefits Plan

#LI-JF1 #LI-REMOTE

Create a Job Alert

Interested in building your career at Dragos? Get future opportunities sent straight to your email.