Sr. Analyst, OT Vulnerability Management in Chessington

As part of the continued expansion of our cybersecurity program, we are seeking a Senior Analyst, Threat & Vulnerability Management with a strong focus on Operational Technology (OT) security. In this role, you will be responsible for supporting and executing vulnerability management activities across the full vulnerability lifecycle, with particular emphasis on OT environments within our data center operations. You will help identify, assess, prioritize, and drive remediation of vulnerabilities affecting critical OT assets such as security systems, access control devices, power monitoring equipment, and other operational technologies.

Working closely with Cybersecurity, IT, Engineering, Data Center Operations, and external vendors, you will play a key role in strengthening the organization's security posture and reducing cyber risk across both IT and OT environments.

• Execute vulnerability management activities across the full lifecycle, including discovery, assessment, prioritization, remediation tracking, and validation of fixes.
• Support vulnerability identification, risk assessment, and remediation efforts across Operational Technology (OT) environments, while contributing to broader Threat & Vulnerability Management initiatives.
• Analyze vulnerability and threat intelligence data to identify high-risk exposures, emerging trends, and remediation priorities.
• Partner with Cybersecurity, IT, Infrastructure, Engineering, Data Center Operations, and business stakeholders to assess impacts and drive timely remediation activities.
• Coordinate remediation and patch management efforts, including validation of corrective actions and follow-up on outstanding issues.
• Work with vendors and operational teams to address vulnerabilities affecting OT assets where patching and maintenance processes may require specialized coordination.
• Develop and maintain dashboards, metrics, and reports to measure program effectiveness, remediation progress, and overall risk posture.
• Prepare technical and executive-level summaries, reports, and presentations for a variety of stakeholders.
• Support compliance with vulnerability management policies, standards, and risk management processes.
• Act as a point of coordination and subject matter resource for complex vulnerability management issues.
• Participate in incident response and urgent risk mitigation activities when vulnerabilities present elevated operational or security risks.
• Contribute to the continuous improvement of Threat & Vulnerability Management processes, workflows, reporting capabilities, and overall program maturity.

• 3–5+ years of experience in Threat & Vulnerability Management, Cybersecurity Operations, Security Engineering, or related cybersecurity disciplines.
• Hands-on experience with vulnerability management and security scanning platforms such as Tenable (Nessus), Claroty, or similar technologies.
• Proven experience assessing, prioritizing, and tracking vulnerabilities through remediation in enterprise environments.
• Strong understanding of vulnerability management methodologies and risk-based prioritization practices.
• Solid knowledge of CVSS scoring and the ability to evaluate vulnerabilities based on business impact, exploitability, operational risk, and remediation complexity.
• Ability to analyze technical findings and translate them into clear, actionable recommendations for both technical and non-technical stakeholders.
• Experience working in or supporting Operational Technology (OT), industrial, critical infrastructure, or data center environments is highly preferred.
• Strong analytical, organizational, and problem-solving skills, with the ability to manage multiple priorities in a fast-paced environment.
• Excellent collaboration and communication skills, with the ability to work effectively across Cybersecurity, IT, OT, Engineering, Operations, and vendor teams.
• Self-motivated and capable of working independently while contributing to the maturity and continuous improvement of security processes.
• Relevant industry certifications such as CISSP, CISM, CEH, OSCP, or equivalent are considered a plus.

Digital Realty is the leading provider of carrier and cloud neutral data centre services by delivering the full spectrum of data center, colocation and interconnection solutions. PlatformDIGITAL®, the company’s global data center platform, provides customers with a secure data meeting place and a proven Pervasive Datacenter Architecture (PDx™) solution methodology for powering innovation and efficiently managing Data Gravity challenges.

Our rapidly evolving business sector offers the opportunity to be part of a courageous and passionate team who work together to understand and meet the changing needs of our global customers. Join us and you’ll be part of a supportive and inclusive environment where you can bring your whole self to work. As part of our team, you’ll get to work with people from different business areas, challenge the way we do things and put your ideas into action. We’ll also give you plenty of development opportunities so you can build a rewarding and successful career with us.