Senior ICS/OT Cyber Security Engineer

Job Description:

We are seeking a highly skilled Senior ICS/OT Cybersecurity Engineer to join our team. This role requires expertise in securing Industrial Control Systems (ICS) and Operational Technology (OT) environments, as well as proficiency in various scripting languages and industry-standard security tools. The ideal candidate will have a strong background in cybersecurity with a primary focus on defense, complemented by offensive security knowledge.

• Set up and manage ICS/OT virtual lab environments for internal development and customer facing production use cases
• Design, implement, and maintain security tools for virtual ICS/OT environments
• Design and collaborate on vulnerability scenarios and analyses of virtual ICS/OT systems
• Develop and maintain best practices and procedures for integration of ICS/OT devices into virtual lab environments
• Collaborate with IT and OT teams to ensure seamless integration of hardware in the loop implementations
• Stay current with emerging threats and vulnerabilities in the ICS/OT space
• Provide technical guidance and training to team members and stakeholders
• Translate complex customer needs into actionable SimSpace platform capabilities and vice versa

What are the qualifications to apply? To be successful, you need to have:

• Bachelor's degree in Computer Science, Cybersecurity, or related field
• 5+ years of experience in cybersecurity, with at least 2 years focusing on ICS/OT security
• Strong understanding of ICS/OT systems, components, and their operational purposes
• Proficiency in scripting languages, including Python, PowerShell, and Bash
• Extensive experience with defensive security tools and methodologies for ICS/OT environments
• Knowledge of offensive security tools and techniques applicable to ICS/OT systems
• Familiarity with industry standards and regulations (e.g., NIST, IEC 62443, NERC CIP)
• Experience with automation technologies (Ansible, Puppet, Chef)
• Conversant in ICS/OT networking protocols such as Modbus, DNP3, CAN bus, and their integrations into TCP/IP networks.
• Excellent problem-solving and communication skills, with the ability to work effectively in a cross-functional team environment
• Familiar with virtualization technologies and concepts (e.g. VMware, HyperV, OpenStack)

The best candidates will also have the following qualifications:

• Relevant certifications (e.g., GIAC GICSP, CompTIA PenTest+, CISSP)
• Experience with SCADA systems, PLCs, and other industrial control components
• Knowledge of the MITRE ATT&CK matrix for ICS
• Skilled in common cyber security technologies (e.g., firewalls, IDSs, SIEMs)
• Background in IT/OT convergence and securing IoT devices
• Familiar with container technologies and concepts (e.g., Kubernetes, Docker)
• Hands on experience with Fortiphyd or other virtual ICS environments

Key skills:

• ICS/OT security
• Vulnerability assessment
• Incident response
• Network security monitoring
• Scripting (Python, PowerShell, Bash)
• Lab environment setup
• Risk analysis
• Security tool proficiency (both defensive and offensive)

This position offers an exciting opportunity to work at the forefront of ICS/OT cybersecurity, protecting critical infrastructure and industrial processes. The successful candidate will play a crucial role in our organization's contribution to the evolving field of industrial cybersecurity.