Operational Technology Cybersecurity Consultant

Key Role:

Help industrial organizations evaluate, design, and implement Cybersecurity solutions on Industrial Automation and Control Systems (IACS) and Supervisory Control and Data Acquisition (SCADA) systems. Identify potential security and vulnerability risks and advise how to address and reduce the risks to the systems considering the specific requirements that IACS have. Provide solutions compliant with applicable industrial security standards, security strategies, and Information Technology (IT) or Operational Technology (OT) architectures for different industrial environments. Conduct IACS and SCADA risk assessments, using specially adapted methodologies to collect and analyze business, operational, and functional requirements. Develop corporate-wide Cybersecurity operating models for industrial organizations, research and analyze emerging technologies, and design and build architectures and solutions to enable secure implementation of the latest industrial Cyber technologies. Develop and execute certification and assurance testing plans to validate the security of the automation systems and process control networks. Assist with building and growing existing industrial Cybersecurity offerings and delivering client engagements, including marketing and proposal development, delivery and execution, and working in a team environment.

Basic Qualifications:

-Experience with providing consulting services on a range of security risk management initiatives

-Experience with conducting penetration testing

-Knowledge of SCADA and IACS architectures

-Knowledge of network protocols

-Knowledge of risk assessment methodologies

-Knowledge of governance operating models and organizational structures

-Knowledge of critical infrastructure sectors

-Knowledge of relevant industrial and critical infrastructure protection security standards and regulations

-BS degree in CS, Cybersecurity, or Engineering

Additional Qualifications:

-Experience with implementing IACS modules and elements

-Experience with the analysis of industrial protocols

-Experience with industrial control systems

-Knowledge of access, incident, configuration, and change management

-Knowledge of safety and protection systems

-Knowledge of physical security

-Possession of excellent time management and organizational skills

-Possession of excellent oral and written communication skills

-Cybersecurity Certifications, including SANS Global Industrial Cyber Security Professional (GICSP), Certified Information Systems Security Professional (CISSP), Certified SCADA Security Architect (CSSA), SANS GIAC-GSEC Security Practitioner, and Certified Information Systems Auditor (CISA)

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

Not ready to apply? Join our talent community and sign up for job alerts.