Operational Technology Cybersecurity Engineer

Key Role:

Contribute as a vital member of a multidisciplinary team comprising engineers and cybersecurity professionals. Support Booz Allen’s Commercial Operational Technology (OT) capability. Support risk evaluations in Industrial Control Systems (ICS) and Supervisory Control and Data Acquisition (SCADA) environments. Validate security controls, propose improvements in network architecture and engineering, develop risk management framework (RMF) documentation, and perform administrative duties. Work in diverse sectors, such as building control systems, utilities, automotive, life sciences, and energy systems.

Basic Qualifications:

• 3+ years of experience with ICS technology and cybersecurity

• Experience with various industry standards and federal guidance to securing ICS and SCADA systems, including NIST CSF, NIST 800-37, NIST 800-82, NIST 800-53, IEC 62443, or ISO

• Experience writing and providing reviews and updates to security plans

• Experience assisting engineers in developing and maintaining security measures to ensure and improve the organization's security posture

• Experience identifying and communicating security exposures, incidents, or noncompliance situations to the information systems security manager or appropriate group

• Experience with various vendors and types of ICS and SCADA equipment and network protocols

• Ability to analyze and suggest recommended improvements to ICS programs and systems to meet industry standards and best practices

• Ability to travel up to 25% of the time

• Bachelor's degree in Computer Science or Engineering

Additional Qualifications:

• Experience analyzing security risk assessment tool results

• Experience evaluating security vulnerabilities and developing mitigation strategies for networking systems

• Experience analyzing cybersecurity policies and producing documentation for system accreditations

• Experience with Windows, UNIX, and Linux operating systems

• Experience with networking concepts and technologies, including TCP/IP, routers, switches, and network-connected devices

• Experience with qualitative risk assessments

• Possession of excellent research and analytical skills

• Possession of excellent verbal and written communication skills

• Master's degree in Computer Science or Engineering

• Certified Automation Professional (CAP), Certified Control Systems Technician (CCTS), Global Industrial Cyber Security Professional (GICSP), or ISO 27001 Auditor Certifications 

EEO Commitment

We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.