Operational Technology Security Engineer

About The Position

Requirements

• Expertise in OT communication protocols (e.g., Modbus/TCP, EtherNet/IP, IEC 61850, DNP3, BACnet) and industrial networking
• Strong understanding of OT environments, including SCADA, ICS, DCS, PLCs, HMIs, RTUs, and field devices
• Knowledge of secure OT network architecture, including segmentation, firewalls, IDS/IPS, and monitoring solutions
• Experience with secure remote access and maintenance practices for OT systems
• Proficiency in OT cybersecurity frameworks and compliance standards (e.g., NIST CSF, ISA/IEC 62443, NERC CIP, DoD requirements)
• Experience with vulnerability management, including assessments, scanning tools (e.g., ACAS, Nessus, Qualys), and POA&M tracking
• Ability to perform OT risk assessments and implement risk-based mitigation strategies aligned with operational constraints
• Experience with system hardening, patch management, configuration baselines, and change management processes
• Capability to develop incident response plans, conduct forensic analysis, and deploy/tune OT security monitoring solutions
• Strong analytical, reporting, and communication skills, including developing cybersecurity documentation, dashboards, and executive briefings
• Seven (7) years experience
• IAT II or higher certification
• ICS300, relevant operation technology or ICS certification
• Forescout DLA Computing Environment
• Minimum Clearance: Secret

Nice To Haves

• Be a positive, self-motivated, and proactive person with the ability to adapt to change and tolerate stressful situations
• Candidate must communicate effectively with team members, team lead, management, and government customer
• Must have the ability and desire to research and develop creative solutions to unique problems with minimal supervision

Responsibilities

• Provides support on specialized information assurance challenges within operational technology (OT) environments by executing a range of routine project tasks.
• Integrates OT processes and methodologies with information systems to address complex system-wide and cybersecurity-related issues.
• Evaluates and analyzes information security requirements while applying structured, analytical approaches to improve workflow, organizational efficiency, and planning.
• Contributes security engineering expertise across the full system lifecycle, including planning, design, development, testing, demonstration, and integration of OT systems.