Cybersecurity Engineer

About Commonwealth Fusion Systems: 
Commonwealth Fusion Systems is on a mission to deliver the urgent transition to fusion energy.
Combining decades of research, top talent and new technologies, we’re designing and building commercially viable fusion power plants. And working with policymakers and suppliers to build the energy industry of the future. 
We’re in the best position to make it happen. Since 2018, we’ve raised over $2 billion in capital – more than any other fusion energy company in the U.S.
Now we’re looking for more thinkers, doers, builders, and makers to join us. People who’ll bring new perspectives, solve tough problems, and thrive as part of a team. 
If that’s you and this role fits, we want to hear from you.
Join the power movement as a Cybersecurity Engineer
The Cybersecurity Engineer reports to the Director of Cybersecurity and is responsible for the security of operational technology (OT), industrial controls (ICS) systems and infrastructure at CFS. Working collaboratively with internal IT and OT teams, the Security Engineer (OT) plays a key role in maintaining and advancing the OT cybersecurity program to secure OT/ICS operations. They will analyze, recommend, and coordinate the implementation of network, systems, access and other processes/controls needed to ensure that OT operations are properly secured, with a particular focus on Industrial control systems. The position provides systems administration and monitoring for related cyber physical security platforms. As part of the cybersecurity team, the incumbent may also assist with ongoing IT cybersecurity operations, provide security advice to advance the cybersecurity program, and help assess new systems and applications before they are implemented.

What you'll do:

• In partnership with IT and OT engineers, recommend and implement security controls specific to OT environments, including those for firewalls, intrusion detection/prevention systems (IDS/IPS), OT cybersecurity platforms, and access controls
• Continuously monitor OT vulnerabilities and threats using specialized tools and techniques
• Develop and maintain security policies and procedures for OT security best practices
• Respond to security incidents efficiently and effectively, minimizing damage and
• restoring operations
• Maintain current knowledge of new products and industry trends, and recommend enhancements and purchases that allow CFS to maintain a healthy and functional environment
• Provide technical consulting to management, business users, and technical associates to ensure that applications and platforms are secure
• Implement and maintain a security by design process with OT business units in order to
• effectively architect, design, and operate security controls and countermeasures; document the operation, use, and expected outputs of these systems
• Analyze and recommend security controls and procedures in business processes related to use of information systems and assets, and provide oversight to ensure compliance and alignment with security standards/frameworks (IEC 62443, NIST 800-82, and other relevant standards)
• Help promote a culture of cybersecurity awareness via outreach and training
• As part of the Cybersecurity team, contribute to the monitoring and administration of IT cybersecurity tools

What we’re looking for:

• Bachelor’s degree in Cybersecurity, Computer Science or equivalent experience
• Relevant certification in the Cybersecurity field (CISSP preferred)
• Solid understanding of Industrial Control System (ICS) security principles and best practices (e.g., IEC 62443, NIST, NERC CIP)
• Working knowledge of SCADA/HMI systems
• Proven experience implementing and administering OT controls
• Experience collaborating with OT and IT teams to ensure secure integration
• Ability to work in a fast-paced environment and prioritize tasks/projects
• Excellent analytical and problem solving skills, and attention to detail
• Evidence of personal focus on continuous learning

Bonus points for:

• 3 plus years experience in Operational Technology, (ICS, IIoT security)
• SANS Institute Industrial Control Systems Security (GICSP) certification or (GRID) certification
• ISA Security Certified Automation Professional (CAP)
• IEC62443 Cybersecurity specialist
• Experience with ignition for inductive automation systems, knowledge of Siemens, Rockwell, Beckhoff OT technologies/protocols (Mobus, OPC, S7, etc.)

Must-have requirements:

• Ability to type, stand, and sit for extended periods of time
• Willingness to occasionally travel or work required nights/weekends/on-call
• Work in a facility that contains industrial hazards including heat, cold, noise, fumes, strong magnets, lead (Pb), high voltage, high current, pressure systems, and cryogenics

#LI-Hybrid
At CFS, we excel in fast-paced environments, driven by our values of integrity, execution, impact, and self-critique. As we grow, we’re eager to bring on mission-driven folks who offer diverse perspectives and fresh ways to tackle challenges.
We value diversity deeply and are proud to be an equal opportunity employer by choice. We consider all qualified applicants equally, regardless of race, color, national origin, ancestry, citizenship status, protected veteran status, religion, physical or mental disability, marital status, sex, sexual orientation, gender identity or expression, age, or any other basis protected by law.