1

Overnight Operational Technology Cyber Security Jobs

This position supports reliable, secure, and scalable technology operations across all district ... Bachelor's degree in information technology, cybersecurity, computer science, management ...

next page

Showing results 1-20

Overnight Operational Technology Cyber Security information

See salary details

$40.5K

$122.9K

$180K

How much do overnight operational technology cyber security jobs pay per year?

As of Jul 1, 2026, the average yearly pay for overnight operational technology cyber security in the United States is $122,890.00, according to ZipRecruiter salary data. Most workers in this role earn between $102,000.00 and $142,000.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as an Overnight Operational Technology Cyber Security professional, and why are they important?

To thrive as an Overnight Operational Technology (OT) Cyber Security professional, you need expertise in industrial control systems, network security, incident response, and a background in computer science or a related field. Familiarity with tools like SIEM (Security Information and Event Management), SCADA systems, firewalls, and certifications such as CISSP or GICSP is typically required. Strong problem-solving abilities, attention to detail, and effective communication are essential soft skills for quickly identifying and mitigating threats. These skills are crucial for protecting critical infrastructure, minimizing downtime, and ensuring the safety and security of industrial operations during overnight shifts.

What is the difference between Overnight Operational Technology Cyber Security vs Network Security Specialist?

AspectOvernight Operational Technology Cyber SecurityNetwork Security Specialist
CertificationsGICSP, CISSP, CompTIA Security+CISSP, CompTIA Security+, CCNA Security
Work EnvironmentIndustrial facilities, power plants, manufacturing plants, often overnight shiftsCorporate offices, data centers, network operations centers, regular hours
Industry UsageUtilities, manufacturing, critical infrastructureIT, telecommunications, finance, corporate sectors
Job FocusProtecting operational technology systems from cyber threats in industrial environmentsSecuring enterprise network infrastructure and data from cyber attacks

Overnight Operational Technology Cyber Security specialists focus on safeguarding industrial control systems during overnight shifts, often in critical infrastructure environments. In contrast, Network Security Specialists primarily protect corporate networks during standard hours. Both roles require cybersecurity certifications but differ in work environment and specific focus areas.

What are the typical challenges faced by professionals in Overnight Operational Technology Cyber Security roles?

Professionals in Overnight Operational Technology (OT) Cyber Security roles often face the challenge of monitoring and responding to security incidents during non-standard hours when critical operations are running and support resources may be limited. They must stay vigilant for unusual activity in industrial control systems and coordinate with both IT and engineering teams to address threats quickly without disrupting essential processes. Working overnight also requires strong self-management skills to maintain focus and productivity, as well as the ability to communicate issues clearly during shift handovers. This role provides valuable experience in incident response and cross-department collaboration, which can lead to advancement into senior OT security or management positions.

What is Overnight Operational Technology Cyber Security?

Overnight Operational Technology (OT) Cyber Security refers to professionals who protect and monitor industrial control systems and critical infrastructure during nighttime hours. Their responsibilities include detecting and responding to cyber threats targeting OT environments when staffing is minimal but risk remains high. These experts ensure continuous security for manufacturing, utilities, and other industries by conducting real-time monitoring, incident response, and system updates overnight. Working these hours helps maintain operational continuity and prevent cyber attacks that could disrupt essential services.
What cities are hiring for Overnight Operational Technology Cyber Security jobs? Cities with the most Overnight Operational Technology Cyber Security job openings:
What are the most commonly searched types of Operational Technology Cyber Security jobs? The most popular types of Operational Technology Cyber Security jobs are:
What states have the most Overnight Operational Technology Cyber Security jobs? States with the most job openings for Overnight Operational Technology Cyber Security jobs include:
Operational Technology Cybersecurity Analyst - Journeyman

Operational Technology Cybersecurity Analyst - Journeyman

ECS

Fairfax, VA โ€ข On-site

Full-time

Posted 21 days ago


Key responsibilities

  • Monitor and analyze security telemetry from OT, ICS, and DCI environments to detect anomalous activity, policy violations, misconfigurations, and indicators of compromise.

  • Coordinate with SOC/CIRT personnel, OT engineers, and facility stakeholders to investigate, contain, and communicate cybersecurity events in operational environments.

  • Document cybersecurity findings, operational impacts, and risk implications, and support mitigation tracking, remediation validation, and follow-up reporting.


Job description

Position Summary
ECS is seeking an Operational Technology Cybersecurity Analyst - Journeyman to support the Army National Guard (ARNG) Enterprise Network Operations and Cybersecurity Support (ENOCS) program. In this role, the candidate supports Task 3 - Cybersecurity Operations Support by monitoring and analyzing security telemetry across Operational Technology (OT), Industrial Control System (ICS), and Defense Critical Infrastructure (DCI) environments; identifying anomalous activity, policy violations, and indicators of compromise; and coordinating response actions with SOC/CIRT personnel, OT engineers, and facility stakeholders. The position contributes directly to ENOCS delivery of Defensive Cyberspace Operations - Internal Defensive Measures (DCO-IDM) across the DoDIN-Army-NG area of responsibility and helps maintain continuous cyber defense operations in coordination with the broader cybersecurity operations team.
Please Note: This position is contingent upon contract award.
This role supports ARNG's mission to provide secure enterprise services for more than 120,000 users and approximately 141,000 endpoints across roughly 2,800 sites in 54 states and territories, including support to Title 10 and Title 32 missions, mobilization readiness, domestic emergency response, and classified and unclassified network environments. The analyst operates within the ENOCS cybersecurity ecosystem that coordinates with NETCOM, the Global Cyber Center, DISA DCDC, RCCs, and USIEM-enabled monitoring activities, and helps extend enterprise detection and reporting practices into OT/DCI environments where operational continuity, safety, and availability are mission critical. The role aligns monitoring and reporting activities with RMF, continuous monitoring objectives, and ARNG cybersecurity policy while supporting a future-state environment in which OT visibility is integrated with enterprise cyber defense capabilities.
Responsibilities
  • Monitor and analyze security telemetry from OT, ICS, and DCI environments to detect anomalous activity, policy violations, misconfigurations, and indicators of compromise affecting control system networks.
  • Review OT network traffic, system logs, and sensor outputs to identify threats while accounting for operational safety, system availability, and mission continuity requirements.
  • Document cybersecurity findings, operational impacts, and risk implications, and support mitigation tracking, remediation validation, and follow-up reporting.
  • Coordinate with SOC Tier 2, Cyber Incident Response Team (CIRT), OT engineers, and facility stakeholders to investigate, contain, and communicate cybersecurity events in operational environments.
  • Support Task 3 cybersecurity operations objectives by contributing to continuous monitoring, threat detection, vulnerability management, and Defensive Cyberspace Operations - Internal Defensive Measures (DCO-IDM) activities across the DoDIN-Army-NG area of responsibility.
  • Align OT monitoring and reporting activities with DoD and ARNG cybersecurity policy, RMF requirements, eMASS-related evidence needs, and continuous compliance objectives.
  • Assist in correlating OT/DCI events with broader enterprise cybersecurity data to improve visibility and support coordinated analysis across classified and unclassified network environments.
  • Coordinate, as required, with NETCOM, RCCs, and other ENOCS cybersecurity stakeholders to support incident reporting, defensive actions, and operational awareness for OT and DCI environments.
  • Contribute to the evolving ARNG cyber defense architecture by helping apply USIEM-supported detection and monitoring concepts to OT environments consistent with ENOCS Task 3 DCI/OT objectives.

Required Qualifications
U.S. Citizenship is required
Security Clearance: Secret Eligible
Required Certifications: DCWF Work Role 462-Control Systems Security Specialist - Intermediate proficiency; must hold ONE OR MORE of the following: DAF 462 (Intermediate) (ICS), or, DAF 462 (Intermediate) (CS3-300)
Experience: 3+ years of experience in cybersecurity
Education: Bachelors degree or higher in Computer Science, Cybersecurity, Data Science, Information Systems, Information Technology, or Software Engineering
  • Experience monitoring and analyzing security events in Operational Technology, Industrial Control System, or Defense Critical Infrastructure environments.
  • Experience reviewing network traffic, logs, and security telemetry to identify anomalous behavior, threats, or policy violations.
  • Ability to document findings, assess risk impacts, and support remediation validation in mission-critical operational environments.
  • Experience coordinating cybersecurity investigations with incident response personnel, engineers, and operational stakeholders.
  • Working knowledge of Risk Management Framework (RMF) and continuous monitoring practices in DoD or federal cybersecurity environments.
  • Ability to support cybersecurity operations affecting both classified and unclassified network environments while maintaining operational continuity.