Operational Technology Security Engineer

About The Position

Requirements

• Must possess IT-II security clearance or have a current National Agency Check with Local Agency Check and Credit Check (NACLC). (Basic Federal Clearance requirements are U.S. Citizenship, clear criminal history check, no recent or pending bankruptcies)
• Required Training /Certifications In: ICS300 or relevant Operational Technology “OT” or Industrial Control System “ICS” Cybersecurity Certifications and Forescout – Training Module /Course Completion.
• Must possess an active DoD 8570 IAT Level II certification such as Security+ CE, CySA+, and SSCP.
• 7+ years of relevant OT Cybersecurity experience.
• Experience with OT communication protocols such as Modbus/TCP, EtherNet/IP, IEC 61850, ICCP, DNP3, BACnet, and similar industrial protocols.
• Strong understanding of OT systems including SCADA, ICS, DCS, PLCs, HMIs, RTUs, and field devices.
• Knowledge of secure OT network architectures, including segmentation, firewalls, IDS/IPS, and network monitoring solutions.
• Understanding of secure remote access technologies and best practices for OT maintenance and monitoring.
• Experience managing software and firmware updates for OT devices while minimizing operational disruption.
• Proficiency with OT-relevant cybersecurity frameworks such as NIST CSF, ISA/IEC 62443, and NERC CIP.
• Familiarity with DoD cybersecurity requirements including STIGs, TCG configuration guides, IAVMs, and Task Orders.
• Experience preparing environments for DoD cybersecurity inspections.
• Ability to develop, maintain, and validate cybersecurity artifacts and documentation.
• Understanding of compliance requirements for OT environments and industry-specific regulatory obligations.
• Proficiency in conducting vulnerability assessments across networks, databases, applications, and OT/IT systems.
• Knowledge of vulnerability scanning and asset visibility tools (ACAS, Nessus, Qualys, Forescout, EyeInspect).
• Updates and tracks POA&M entries by documenting findings, logging remediation actions, and keeping milestone dates current to ensure issues move toward closure.
• Experience performing OT-specific risk assessments, identifying threats, vulnerabilities, and operational impacts.
• Ability to recommend risk-based mitigation strategies tailored to OT constraints.
• Familiarity with secure configuration baselines, hardening procedures, and compliance enforcement.
• Experience deploying and tuning security monitoring solutions for OT environments, including anomaly detection and threat intelligence integration.
• Ability to develop and implement OT-specific incident response plans.
• Knowledge of forensic techniques and tools appropriate for OT systems.
• Understanding of patch management workflows and enterprise change management processes.
• Ability to build automated workflows for vulnerability remediation, compliance checks, or reporting.
• Proficiency with analytical tools such as Microsoft Excel, Access, Power BI, and Power Platform.
• Ability to generate clear, accurate, and audit-ready cybersecurity reports for technical and leadership audiences.
• Experience producing analytics and trend reports using data from scanners, configuration tools, and monitoring platforms.
• Understanding of vendor and supply chain security practices for OT equipment and services.
• Experience bridging IT and OT cybersecurity requirements to ensure aligned policies and protections.
• Ability to translate technical findings into actionable recommendations for engineers, operators, and leadership.
• Strong research, analytical, and problem-solving abilities.
• Excellent written and verbal communication skills, including briefing senior leaders.
• Proven ability to work independently and collaboratively with minimal oversight.
• Commitment to staying current on emerging OT threats, vulnerabilities, and best practices.

Responsibilities

• Performs a variety of routine project tasks applied to specialized information assurance problems with operational technology (OT) systems.
• Tasks involve integration of OT processes or methodologies with information systems to resolve total system problems, or technology problems as they relate to Cybersecurity requirements.
• Analyzes information security requirements.
• Applies analytical and systematic approaches in the resolution of problems of workflow, organization, and planning.
• Provides security engineering support for planning, design, development, testing, demonstration, and integration of OT systems.

Benefits

• Medical, Dental, Vision Benefits
• Paid Life
• Paid Vacation, Holidays, Sick Leave, Floating Holidays, Bereavement Leave
• Semi-monthly pay cycle