Operational Technology Cybersecurity Strategy Engineer, Senior

Key Role:
Serve as a part of an integrated team of engineers and Cybersecurity experts helping to expand the firm’s operational technology (OT), industrial control system (ICS), and supervisory control and data acquisition (SCADA) Cybersecurity strategy practices. Consult with clients on the secure design of ICS and SCADA environments, conduct Cybersecurity risk assessments, develop security documentation, and design and implement industrial Cybersecurity monitoring solutions. Work both remotely and onsite at various commercial, industrial, or government facilities. Perform onsite activities, including implementing Cybersecurity solutions or performing security assessment activities, such as physical security walks, observations, technical configuration reviews, and personnel interviews. Work across several industries, including water and wastewater, oil and gas, energy, manufacturing, and defense. This position will require moderate travel based on client and project need.

Basic Qualifications:

-4+ years of experience with Cybersecurity, including risk management, vulnerability assessments, security assessments, strategy and program development, network architecture designs, or monitoring solutions

-Experience with industrial control regulations, including IEC 62443, NIST SP 800-82, NERC CIP, or NEI 08-09 or other industrial control regulations

-Experience with Cybersecurity standards and best practices and how to integrate them

-Experience with evaluating security vulnerabilities, developing mitigation strategies, and implementing remediation      

-Experience with analyzing vulnerability and security risk assessment tool results, including DoD SCAP or Nessus 

-Ability to analyze Cybersecurity documentation, including security policies, plans, and procedures

-HS diploma or GED

Additional Qualifications:

-Experience with working in a commercial consulting or professional services environment

-Experience with various vendors and types of ICS and SCADA equipment, including PLCs, VFDs, HMIs, and network protocol

-Ability to analyze and suggest recommended improvements to the industrial control system programs and systems to meet industry standards and best practices

-Possession of excellent research and analytical skills      

-Possession of excellent oral and written communication skills      

-BA or BS degree

-Global Industrial Cybersecurity Professional (GICSP), Certified SCADA Security Architect (CSSA), or Certified Information Systems Security Professional (CISSP) Certification

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

CMCL

Not ready to apply? Join our talent community and sign up for job alerts.