OT Security Engineer

An exciting DHS Customer is on contract to provide division-wide support for Federal Information Security Modernization Act (FISMA) compliance, execution of the Risk Management Framework (RMF) process to achieve and maintain Authority to Operate (ATO) security authorizations, and deliver cyber security compliance for DHS operational mission systems. We are looking for personnel to support our DHS customer in achieving its mission of providing division-wide cyber security support for operational mission systems and assisting programs as they navigate the ATO process. The result of these efforts will be that the systems meet all the requirements for ATO approval before they are officially submitted to the Office of Chief Information Officer (OCIO).

Job Summary

• Serve as the Cybersecurity Assessment Team's principal Operational Technology SME.
• Participate in the development and implementation of comprehensive Cybersecurity program strategies, including OT security engineering design review, vulnerability assessments, penetration testing, and incident response planning.
• Provide technical expertise and guidance to DHS on OT services security matters, including threat analysis, risk mitigation strategies, and secure network and systems design.
• Participate in the planning and performance of hands-on technical assessments of OT systems and infrastructure. This includes the identification of in-scope technologies, application of industry-standard assessment strategies and available tools into system assessment plans, identifying vulnerabilities, and recommendation of corrective actions.
• Support the development and implementation of secure OT policies and assessment procedures, ensuring compliance with federal regulations and best practices.
• Collaborate with engineering teams and other government stakeholders to integrate OT security into infrastructure design, sustainment, and incident response planning.
• Stay current with emerging related security threats and technologies, providing ongoing awareness to DHS personnel and continual enhancement of program assessment procedures and security engineering considerations.

Qualifications

• 12+ years of direct experience in OT engineering and security within the DoD/Federal Government.
• Experience within the Intelligence Community and Law Enforcement is a strong plus.
• Demonstrated expertise in OT systems and security technologies, including Platform IT, industrial control systems and applications, special purpose and non-standard communications and network infrastructure devices.
• Strong understanding of OT security engineering principles and assessment references such as NIST SP 800-82 and ISA/IEC 62443
• Familiarity with the CISA Cybersecurity Alerts & Advisories information portal
• Proven ability to communicate complex technical concepts to non-technical audiences.
• Excellent written and verbal communication skills. Ability to work independently and as part of a team.

Education

Bachelor's degree or higher in Cyber Security plus CRISC, GISP, CASP, CISSP, or other advanced security-related certifications.

GISCP or other industry ICS security-related certification is a plus.

Additional relevant experience may be considered in lieu of a degree.