Job Number: R0031486
Operational Technology CybersecurityStrategy Engineer
Serve as a part of an integrated team of engineers and Cybersecurity experts helping to expand the firm’s Operational Technology (OT), Industrial Control System (ICS), and Supervisory Control and Data Acquisition (SCADA) Cybersecurity strategy practice. Consult with clients in the secure design of ICS and SCADA environments, conduct Cybersecurityrisk assessments, develop security documentation, and design and implement industrial Cybersecurity monitoring solutions. Work remotely and onsite at various commercial, industrial, or government facilities. Perform onsite activities, including implementing Cybersecurity solutions or performing security assessment activities, such as physical security walks, observations, technical configuration reviews, and personnel interviews. Work across several industries, including water and wastewater, oil and gas, energy, manufacturing, and defense. This position may require moderate travel based on client and project need.
-5+ years of experience with Cybersecurity, including risk management, vulnerability assessments, security assessments, strategy and program development, networkarchitecture designs, and monitoring solutions
-Experience with IEC 62443, NIST SP 800 82, NERC CIP, NEI 08 09, or other industrial control regulations
-Experience with Cybersecurity standards and best practices in how to integrate them
-Experience with evaluating security vulnerabilities, developing mitigation strategies, and implementing remediation
-Experience with analyzing vulnerability and securityrisk assessment tool results, including DoD SCAP or Nessus
-Ability to analyze Cybersecurity documentation, including security policies, plans, and procedures
-Experience with various vendors and types of ICS and SCADA equipment, including PLCs, VFDs, HMIs, and network protocol
-Ability to analyze and suggest recommended improvements to the industrial control system programs and systems to meet industry standards and best practices
-Possession of excellent research and analytical skills
-Possession of excellent oral and written communication skills
-BA or BS degree
-Global Industrial Cybersecurity Professional (GICSP), Certified SCADA Security Architect (CSSA), or Certified Information Systems Security Professional (CISSP) Certifications
We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.