Job Details

Industrial CyberSecurity Consultant - & Co.

Burns & McDonnell

Location

Norfolk, VA

About 1898 & Co.

1898 & Co. is a business, technology, and security solutions consultancy where experience and foresight come together to unlock lasting advancements. We innovate today to fuel our clients' future growth, catalyzing insights that drive more intelligent decisions, improve performance, and maximize value. As part of Burns & McDonnell, we draw on more than 120 years of deep and broad experience in complex industries as we envision and enable the future for our clients.

Job Overview

The Industrial Cybersecurity Consultant will be a treasured member of the 1898 & Co. Security & Risk Consulting practice. The mission is to serve humanity by improving the safety, security, and reliability of the world's critical infrastructure – improving risk management through resiliency, situational awareness, and preparedness. The Consultant will execute significant portions of projects addressing the security of Operational Technology (OT) systems such as Industrial Control Systems (ICS), Supervisory Control and Data Acquisition (SCADA), and Programmable Logic Controllers (PLC).

Job Duties:

1. Plan and Execute engagements with Federal Clients in support of the Risk Management Framework and obtaining Authority to Operate Facility-Related Control Systems.
2. Generate cybersecurity artifacts in support of the ATO process (Control Listings, Dataflow Diagrams, Plans of Action and Milestones).
3. Perform hands-on implementation of cybersecurity controls (hardening) of IT and OT systems.
4. Conduct vulnerability assessments of OT networks for cybersecurity, risk management, and/or compliance purposes.
5. Execute the planning, design, development, and implementation of technical controls, procedures, and policies associated with cybersecurity compliance and/or regulatory standards.
6. Maintain the highest level of integrity, protecting the confidentiality and security of all clients and project information.
7. Identify and diagnose operational issues and implement design alterations to address these issues.
8. Resolve technical issues, analyze implications to the client's business, and communicate them with applicable stakeholders.
9. Develop policies & procedures for secure process control network design and technical recommendations for implementing security controls.
10. Work collaboratively with other groups and divisions inside of 1898 & Co. and Burns & McDonnell.
11. All other duties as assigned.

Qualifications

Bachelor's Degree in Cybersecurity, Computer Science, Computer Engineering, Electrical Engineering, or a related technical field and 3 years experience in cybersecurity. Additional applicable years of experience may be considered in lieu of the degree requirement.

Advanced knowledge of security principles and a firm knowledge of cybersecurity technologies.

Certified Information Systems Security Professional (CISSP) is preferred.

Minimum 3 years of experience with NIST RMF activities associated with obtaining an ATO.

Experience with security engineering principles, various cybersecurity assessment methodologies, and system life-cycle practices.

Strong written and oral communication skills, analytical and critical thinking skills.

Ability to operate under pressure and tight deadlines.

Demonstrate capability to make sound decisions based on good security practices and principles.

Travel

Yes, 25 % of the Time

Job Hire Type

Experienced