Cyber Security Analyst Vulnerability Management (OT)

Apply before: 04/05/2026

Job Description

The Cyber Security Analyst, Vulnerability Management OT will report to the Cyber Security Manager, Vulnerability Management and is responsible for the identification, assessment, and remediation of security vulnerabilities across the organisation s OT estate. This role ensures that the enterprise maintains a strong security posture by proactively managing risks, aligning with regulatory requirements, and supporting business resilience.

Your role will involve

• Data Management: Identify OT assets on the estate using the OT NEMS tooling. Review and initiate asset data exchanges and updates between the OT NEMS tool & the OT asset database.
• Conduct Risk Assessments: Identify potential vulnerabilities in OT systems using the OT NEMS tooling, reviewing its outputs for dissemination and assess the risks of potential threats, in collaboration with OT Operations colleagues.
• Vulnerability Management: Track measures to manage and mitigate vulnerabilities in OT systems, chairing forums.
• Monitor Security Systems: Continuously monitor OT systems for any signs of security breaches or anomalies, using the organisation s OT NEMS tooling.
• Incident Response: Follow and manage incident response plans to address security breaches promptly. Review, triage & investigate OT network anomaly alerts, Conduct regular periodic reviews of alerts (false positives, low, medium and high severity).
• Compliance: Support Compliance teams in providing evidence of the organisation s current regulatory compliance positions on regulated and critical systems.
• Reporting: Maintain OT NEMS tool updates and key metrics reporting for key stakeholders.

These skills are essential

• Good knowledge of vulnerability scanning tools (e.g., Tenable, Defender, Qualys, Rapid7).
• Solid understanding of CVSS scoring, threat modelling, and risk prioritisation.
• Ability to interpret technical findings and communicate them to stakeholders.
• Knowledge of patch management processes and tools.
• Analytical, organisational, and communication skills.

About us

With 80 million passengers passing through our airport each year, it takes hundreds of systems, platforms and networks to keep our airport running smoothly, 24 hours a day, 365 days a year.

Join us, and you ll thrive on the buzz of providing the technology, data, cyber and digital capabilities that run all the services you d expect to see in a city and more. Tech at Heathrow isn t typical the scale and non-stop nature of our airport make it truly unique.

Our Data, Digital and Technology team are leading the way in innovations that will make our airport more efficient, resilient and competitive, in an increasingly digital marketplace, as well as keeping Heathrow safe and secure.
Every day will test your skills and give you the opportunity to make your mark. We re constantly looking for new ways to help Heathrow transform and grow, responding to the changing needs of passengers, colleagues and partner businesses.

It means the chance to work on a huge variety of inspiring projects and to develop in lots of exciting directions. Our team covers technology, cyber defence, data and digital, offering one-of-a kind careers you won t find anywhere else.