Industrial Cybersecurity Senior Consultant

About The Position

Requirements

• Bachelor's Degree or relevant work experience.
• 7+ years experience in a business/consulting environment.
• All applicants must be able to complete pre-employment onboarding requirements (if selected) which may include any/all of the following: criminal/civil background check, drug screen, and motor vehicle records search, in compliance with any applicable laws and regulations.

Nice To Haves

• Experience applying common OT standards and regulations (e.g., NIST, IEC 62433, CMMC, NERC CIP)
• Experience scoping and estimating technical projects
• Proven ability to assess security architectures of OT networks
• Direct experience in planning and facilitating risk workshops, table-top exercises, and other client-facing work sessions
• Experience with OT Security-by-design and/or new OT in construction
• Has managed significant engagements
• 10+ years in a business/consulting environment
• All applicants must be able to complete pre-employment onboarding requirements (if selected) which may include any/all of the following: criminal/civil background check, drug screen, and motor vehicle records search, in compliance with any applicable laws and regulations.
• Experience at customer sites
• Proven experience with OT penetration testing and/or red teaming
• Proven ability to install monitoring technologies (e.g., Nozomi, Dragos, Tenable, Claroty)
• Experience conducting maturity and technical assessments
• Proven team leadership and management experience
• Graduate degree(s) preferred
• 2+ years business development experience preferred
• Other relevant cybersecurity certifications (e.g., Nozomi, Fortinet, Dragos, Tenable) preferred

Responsibilities

• Assesses people, process, and technical dimensions of client cybersecurity posture
• Develops and writes master plans and cybersecurity programs of work that combine analyses, reviews, and recommendations of client industrial cyber programs, technologies, and networks
• Leads workshops, data collection, tabletop exercises and client interviews
• Conducts asset and vulnerability scanning of customer networks, including the installation of scanning and monitoring technologies
• Performs walk-downs of client sites to assess cyber and physical security postures
• Applies industrial cybersecurity standards and regulatory requirements (e.g., NERC CIP, NIST, IEC 62443) to customer programs
• Performs technical (e.g., segmentation, hardening, technology integration) and programmatic (e.g., policies, response plans) implementation of master plans and recommendations
• Contributes to quality review on engagements of other delivery team members
• Develops applicable knowledge bases by using best practices to redefine tools and techniques. Outlines specific performance measures, targets, and goals to articulate the business case for desired efficiencies or added value
• Challenges client’s current strategy and direction through effective presentation of best practices including benefits to client.
• Defines competitive advantage and achievable value to the client through use of the strategic change components and metrics. Formulates issue-based hypotheses and develops analytical plan for testing. Contributes to analysis of impact of strategic changes by defining linkages and interdependencies.
• Utilizes specialized knowledge to produce complex work products and solutions across all phases of an engagement
• Anticipates and resolves technical problems with minimal technical assistance from others
• Develops, presents, and defends conclusions, recommendations, and implementation plans
• Identifies technical issues impacting an engagement and proposes solutions
• Analyzes and applies best practices knowledge of the industry
• May contribute to the development and implementation of the strategic direction and objectives of a service offering
• Manages moderate to highly complex engagements through all stages and phases
• Secures commitment and participation from the client’s senior management by leveraging relationships
• Recommends appropriate resources based on the phases of an assignment
• Delegates work to assigned team members
• Uses defined processes and practices in assessing engagement risks
• Manages engagement issues in less complex projects or escalates issues in more complex projects
• Identifies and develops new sales opportunities with existing or new clients
• Secures receivables from clients during and after completion of engagements
• Hires, trains, and develops delivery teams
• Supervises and manages day-to-day activities for delivery team
• Transfers knowledge, capabilities, and skills to improve others’ knowledge and skill levels
• Provides ongoing feedback to professionals on the projects
• Contributes to the career development of others through engagement assignments and general evaluation
• Delegates work duties according to the development opportunities and needs of individuals
• Supervises work of others. Responsible for hiring, discipline, and pay administration of their subordinates. Acts as a project manager. Among responsibilities is management of a project team to meet scope, budget, and schedule expectations.

Benefits

• competitive compensation
• 401k match
• benefits that start day one
• flexible work schedules
• paid vacation and holiday time
• sick time
• dependent sick time
• company-matched 401k plan
• adoption reimbursement
• tuition reimbursement
• vendor discounts
• an employment referral program
• AD&D insurance
• pre-taxed accounts
• voluntary legal plan
• B&V Credit Union
• performance-based bonus program
• medical
• dental
• vision insurances
• disability
• wellness program