OT Consultant

You are:

• Very good knowledge of security principles and firm knowledge of cybersecurity technologies, as well as industry\-recognized certifications, such as - CISSP, CISM, CISA, CEH, GICSP, IEC 62443, etc.

• Experienced with security engineering principles, various cybersecurity assessment methodologies, security control implementation, and validation, and system life\-cycle practices

• Able to demonstrate you have advanced knowledge of networks and control systems utilized by critical infrastructure sectors, is preferred

• Able to demonstrate you understand business principles and operational security practices specific to engineering and/or security consulting

• Proven knowledgeable with industry good practice, such as IEC 62443 (3-3, 3-2), NIST CSF, NIST 800-82r2, ONG-C2M2, NERC-CIP

• Experienced with physical cabling for network communications and control system input/output

• Knowledgeable with - Security, Orchestration, Automation & Response \(SOAR\) solutions- OT asset inventory w/ change detection solutions- Vulnerability Management solutions- Identity and Access Control solutions- Zero Trust Security solutions- OT network & communications monitoring solutions+ Knowledge of the Purdue model (ISA95)

• Knowledgeable with - Cybersecurity controls, specifically those relating to firewalls, identity, and access control, authentication, and authorization, anti\-virus/anti\-malware, patch management, network, and system hardening, SIEM implementation, and/or tuning, and logging

• Knowledge with legacy and modern computer networking and telecommunications

You have:

• Minimum of bachelor’s degree in a technical field

• 3+ years of industrial cybersecurity experience

• Additional applicable years of experience may be considered in lieu of degree requirements

• Cybersecurity, Industrial Cybersecurity, Cyber\-Physical Systems, Computer Science or Information Systems, Computer Engineering, Electrical Engineering, or another related technical field with appropriate experience

• Strong written and oral communication skills

• Strong analytical and critical thinking skills

• Ability to operate under pressure and under tight deadlines, to operate onsite within industrial, corporate, and government work settings

• Ability to present complex technical issues and their impact in an easy-to-understand manner

These would be a plus:

• If you have tenacious problem-solving skills, are an unselfish collaborator, Intellectual curiosity and are dedicated to continuous improvement

• If you have industry\-recognized certifications, such as - CISSP, CISM, CISA, CEH, GICSP, IEC 62443, etc.

• You can demonstrable name recognition in OT / ICS / SCADA cybersecurity