Cybersecurity and Network Security Engineer

Overview

On Site
Depends on Experience
Full Time

Skills

CISSP
ICS/OT

Job Details

Job Title Cybersecurity and Network Security Engineer

Duration Full time Permanent

Location Bethesda, MD

Overview:-

Industrial Control Systems/Operational Technology/Internet of Things (ICS/OT/IoT) Cybersecurity and Network Security Engineer support in assessing, improving, and maintaining the cybersecurity posture of NIH ICS/OT/IoT environments to mitigate cyber security risks (e.g., insider and external threats, intentional and accidental).

This position s responsibilities include the audit of ICS/OT environments and performing risk/vulnerability assessments. This role also includes developing NIH specific cybersecurity roadmaps that prioritize the remediation of cyber threats, based on the likelihood of occurrence and magnitude of cost/consequence of a security incident. This position will create mitigation plans for clients to remediate vulnerabilities and will provide support during the remediation efforts. The ICS/OT/IoT Cybersecurity and Network Security Engineer shall assist in reviewing and developing Industrial Cybersecurity programs, security policies, plans, and provide guidance and industry best practices related to cybersecurity to help NIH improve their existing OT cyber security programs.

Qualifications:-

Responsibilities for this job include but are not limited to:

Taking inventory of client s hardware & software assets and assessing those assets for security vulnerabilities, obsolescence, and other risks

Reviewing network architectures and determining if good practices are being followed (e.g., the zones & conduits concept, proper network segmentation, use of Industrial DMZ, etc.); and providing recommendations to comply with applicable cybersecurity framework

Reviewing security products utilized (e.g., firewalls, IDS, IPS) and determining if they are configured properly

Deploying network infrastructure devices (e.g., switches, routers, etc.), security appliances (e.g., firewalls, IDS, etc.), and virtualization solutions

Reviewing US government cyber security policies, plans, and procedures; assessing network monitoring capabilities; analyzing system logs, security events, and packet captures to identify security threats; and providing recommendations to comply with applicable cybersecurity framework

Reviewing administrative, technical, and cybersecurity controls and providing recommendations to mitigate the identified cyber security risks

Performing cyber security vulnerability and risk assessments within manufacturing and critical infrastructure environments to identify security risks and threats (e.g., unsecure remote access

points, suspicious remote connections, unauthorized devices on the network, etc.) and providing recommendations to remediate the identified issues

Creating detailed diagrams (e.g., network, cabling, server, rack, logical architecture, etc.), procedures, and plans (e.g., implementation, SAT, mitigation, etc.) as needed to support projects

Travel to the NIH sites as required

Required Experience :-

Certified Information Systems Security Professional (CISSP)

Degree in Engineering (Electrical, Mechanical, Chemical, or similar), Computer Science, or similar scientific / technical field

Strong understanding of cybersecurity frameworks for ICS/OT environments (ISA-99/IEC 62443, NIST SP 800-82, CIS, Perdue Reference Model etc.)

Strong understanding of OT network communication protocols (e.g., Ethernet/IP, CIP, Modbus, OPC, etc.) and industrial networking topologies (e.g., ring, star, etc.)

A minimum of Five (5) years hands on experience assessing, designing, and implementing ICS/OT network architectures

Demonstrated technical skills to analyze, design, and deploy complex Ethernet/IP architecture and communication technologies

Experience with Nazomi Cyber-Physical System (CPS)

Ideal Experience :-

Certified SCADA Security Architect (CSSA)

GIAC certifications (e.g., GICSP, GRID, Critical Infrastructure Protection)

ISA/IEC 62443 Cybersecurity Certificates

Networking certifications (e.g., CCNA, CCNP, JNCIP-ENT, etc.)

Cybersecurity certification (e.g., CEH, CISA, CISM, CCSP, etc.)

Understanding of MITRE ATT&CKS for ICS or NERC CIP frameworks

Understanding of general cybersecurity frameworks (ISO IEC 27001/27002, ISO 15408, NIST Cybersecurity Framework (CSF), NIST SP800-53)

A working knowledge of industrial control systems (e.g., DCS, PLCs, SCADA, etc.)

Ability to perform vulnerability / penetration testing in ICS/OT environment, and/or threat hunting

Prior experience Control System Engineer or SCADA Engineer working in manufacturing environments or power generation facilities

Certified professional engineer

The ICS/OT Cybersecurity and Network Security Engineer shall demonstrate:

High integrity

A willingness to go beyond the ordinary to meet and exceed client expectations

A desire for continual challenges and development

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.