Student Analyst, OT Cybersecurity (Fall 2026, 4 Months)
About The Position
Oxford Properties is looking for a Student Analyst, OT Cybersecurity (Co-op) to join their Technology Operations team. This role is a hands-on student position where the individual will support vulnerability management, contribute to compliance evidence and controls, and help strengthen the security posture of the operational technology environment across a geographically distributed real estate portfolio. The student will work alongside the team with OT infrastructure (network devices, building automation systems, endpoint protection, and monitoring platforms) to help identify risk, close gaps, and keep the compliance program current.
Requirements
- Enrollment in a post-secondary program (e.g., Cybersecurity, Computer Science, IT, Engineering, or related).
- Interest in security operations, vulnerability management, or risk/compliance.
- Familiarity with vulnerability scanning concepts or tools (Qualys or similar) through coursework, labs, or projects.
- Awareness of security frameworks and controls (e.g., NIST CSF, CIS Controls, SOC 2, PCI-DSS).
- Basic understanding of networking fundamentals, including VLANs, ACLs, routing, DNS, and DHCP.
- Exposure to firewalls and endpoint security concepts (FortiGate and/or EDR is a plus).
- Curiosity about OT/ICS environments and how they differ from enterprise IT.
- Strong written documentation skills and comfort working in ticketing/ITSM tools.
- Takes ownership and doesn’t wait to be told a vulnerability needs attention.
- Communicates clearly with both technical teams and nontechnical stakeholders.
- Works independently across multiple priorities.
- Pragmatic and focused on real risk, not checkbox compliance.
- Committed to continuous learning and improving the program.
Nice To Haves
- What You’ll Bring (Nice to Have)
Responsibilities
- Support triage and remediation of vulnerabilities across OT network infrastructure using Qualys VMDR.
- Help track vulnerability SLAs, escalate breaches, and maintain the vulnerability register.
- Coordinate patching and mitigation activities with property-level technology teams.
- Support maintenance and evidence collection for compliance controls mapped to NIST CSF / CIS frameworks.
- Help produce audit ready evidence packages and support SOC 2 / PCI-DSS assessments.
- Assist with the risk register by helping assess, score, and track risk treatment plans.
- Support monitoring and response to alerts from SentinelOne (EDR) and OPManager (network monitoring).
- Assist with incident investigation, root cause analysis, and documentation.
- Help maintain and review FortiGate firewall policies across sites.
- Work in ServiceNow, our ITSM and CMDB platform.
- Contribute to automation (Deluge scripts, REST API integrations) that supports compliance workflows.
- Help maintain CMDB accuracy for OT network devices across the portfolio.
Benefits
- annual Incentive Award pursuant to our Short-term Incentive plan
- Long-Term Incentive plan (if applicable)
- group benefits
- retirement plans
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Intern
Education Level
No Education Listed
