Cybersecurity and Network Security Engineer

Evolver Federal is looking for a Cybersecurity and Network Security Engineer to join our team supporting our federal client located onsite in Bethesda, MD.

This position requires a hybrid work environment with onsite work 3-5 days per week in Bethesda, MD depending on the requirements of the program

Responsibilities:

Industrial Control Systems/Operational Technology/Internet of Things (ICS/OT/IoT) Cybersecurity and Network Security Engineer support in assessing, improving, and maintaining the cybersecurity posture of NIH ICS/OT/IoT environments to mitigate cyber security risks (e.g., insider and external threats, intentional and accidental).

This position's responsibilities include the audit of ICS/OT environments and performing risk/vulnerability assessments. This role also includes developing NIH specific cybersecurity roadmaps that prioritize the remediation of cyber threats, based on the likelihood of occurrence and magnitude of cost/consequence of a security incident. This position will create mitigation plans for clients to remediate vulnerabilities and will provide support during the remediation efforts. The ICS/OT/IoT Cybersecurity and Network Security Engineer shall assist in reviewing and developing Industrial Cybersecurity programs, security policies, plans, and provide guidance and industry best practices related to cybersecurity to help NIH improve their existing OT cyber security programs.

Basic Qualifications:

• Bachelor's Degree in Engineering (Electrical, Mechanical, Chemical, or similar), Computer Science, or similar scientific / technical field
• Certified Information Systems Security Professional (CISSP)
• 5 years of experience with cybersecurity frameworks for ICS/OT environments (ISA-99/IEC 62443, NIST SP 800-82, CIS, Perdue Reference Model etc.)
• 5 years of experience with OT network communication protocols (e.g., Ethernet/IP, CIP, Modbus, OPC, etc.) and industrial networking topologies (e.g., ring, star, etc.)
• 5 years of hands on experience assessing, designing, and implementing ICS/OT network architectures
• 5 years of experience analyzing, designing, and deploying complex Ethernet/IP architecture and communication technologies
• 2 years of experience with Nozomi Cyber-Physical System (CPS)

Preferred Qualifications:

• Certified SCADA Security Architect (CSSA)
• GIAC certifications (e.g., GICSP, GRID, Critical Infrastructure Protection)
• ISA/IEC 62443 Cybersecurity Certificates
• Networking certifications (e.g., CCNA, CCNP, JNCIP-ENT, etc.)
• Cybersecurity certification (e.g., CEH, CISA, CISM, CCSP, etc.)
• Understanding of MITRE ATT&CKS for ICS or NERC CIP frameworks
• Understanding of general cybersecurity frameworks (ISO IEC 27001/27002, ISO 15408, NIST Cybersecurity Framework (CSF), NIST SP800-53)
• A working knowledge of industrial control systems (e.g., DCS, PLCs, SCADA, etc.)
• Ability to perform vulnerability / penetration testing in ICS/OT environment, and/or threat hunting
• Prior experience Control System Engineer or SCADA Engineer working in manufacturing environments or power generation facilities
• Certified professional engineer

Evolver Federal is an equal opportunity employer and welcomes all job seekers. It is the policy of Evolver Federal not to discriminate based on race, color, ancestry, religion, gender, age, national origin, gender identity or expression, sexual orientation, genetic factors, pregnancy, physical or mental disability, military/veteran status, or any other factor protected by law.

Actual salary will depend on factors such as skills, qualifications, experience, market and work location. Evolver Federal offers competitive benefits, including health, dental and vision insurance, 401(k), flexible spending account, and paid leave (including PTO and parental leave) in accordance with our applicable plans and policies.