Website Closedloop Communications
All candidates must have (minimally) a Top-Secret clearance with SCI eligibility.
(Preference: TS/SCI with a Full Scope Polygraph)
Performs duties of the Industrial Control Systems Representative and serves as subject matter expert for ICS security activities.
Has an in-depth knowledge of control systems security with relevant previous experience in a technical or consulting environment. Also has knowledge in the Energy domain.
Identify critical technologies or components supporting task critical assets;
Identify potential open source vulnerabilities existing within those technologies or components;
Identify classified threat intelligence demonstrating adversary intent and capability;
Observe and study network architecture to identify potential vulnerabilities;
Conduct packet capture analysis to identify anomalies in traffic moving across network; and
Provide subject matter expertise to analysis of cyber vulnerabilities of industrial control systems and the energy domain.
At least 5 years of experience with industrial control system cybersecurity, industrial control system design, and industrial networks, with experience designing, maintaining and supporting Process Control Domain network infrastructures – e.g. CCNA-, CCNP-type qualifications.
Experience in facility maintenance with demonstrated extensive knowledge of facilities systems and Information Assurance.
Have knowledge of one or more of the following: IEC 62443/ISA 99, ISO 27001, NIST SP 800-82, CPNI Good Practice.
Experience working with, protecting and administering critical industrial network infrastructures, with demonstrable experience working with automation vendors such as ABB, Siemens, Rockwell, Honeywell, Foxboro, Emerson, Yokogawa, etc.
Knowledge of industrial control systems (such as PLC, HMI, SCAD A & DCS) and protocols (such as OPC, Modbus TCP, Melsec, HART, Foundation Fieldbus).
Experience in safety-related control systems, including a working knowledge of IEC 61508 and IEC 61511 Functional Safety Standards.
Experience with multiple operating systems including Windows and Linux/UNIX.
Experience in Securing Industrial Wireless Networks and Industrial Internet of Things (IIOT) and monitoring packages such as SIEM, SOC and NOC.
EDUCATION: Bachelor’s Degree in information systems, computer science, or related technical field or five (5) years of additional equivalent experience to substitute for education
CERTIFICATIONS: Required: Global Industrial Cybersecurity Professional (GICSP) (Needs to be held within 6 months of start on contract.)
Desired: Certified Information Systems Security Professional (CISSP)