Senior Consultant – ICS Security

Possess an in-depth knowledge of Industrial Control Systems (ICS). Provide Subject Matter Expertise (SME) for ICS security activities.

Essential Duties and Responsibilities include the following:

1. SME for Siemens ICS products
2. Perform ICS security activities and contractor representative for ICS
3. Identify technologies or components to support critical assets
4. Identify open-source vulnerabilities for existing technologies or components
5. Identify threat intelligence demonstrating adversary intent
6. Review network architectures to identify potential vulnerabilities
7. Conduct packet capture analysis to identify anomalies in network traffic
8. Analyze vulnerabilities of ICS and in the energy domain
9. Respond to emergency situations, and perform pre-determined emergency actions to place the plant back in a safe condition
10. Assist in the performance of functional/operational tests to evaluate equipment/systems capability and reliability
11. Implement standard trade practices and procedures including appropriate safety precautions
12. Comply with all company safety requirements and programs

Required Knowledge/Skills and Experience:

1. At least 5 years of experience with Siemens ICS programming and industrial control system design
2. In-depth knowledge of control systems security with relevant previous experience in a technical or consulting environment
3. Experience in facility maintenance with knowledge of facilities systems and information assurance
4. Strong knowledge of Siemens PLCs as incorporated into Siemens Electrical Distribution Equipment and Industrial Control Systems
5. Knowledge of one or more of the following: IEC 62443/ISA 99, ISO 27001, NIST SP 800-82, CPNI good practice
6. Knowledge of industrial control systems and protocols such as object linking and embedding process control – open platform communications (OPC), ModBus, Melsec, HART, Foundation Fieldbus
7. Working knowledge of IEC 61508 and IEC 61511 functional safety standards
8. Experience with Windows and Linux/UNIX

Preferred Knowledge/Skills, Education, and Experience:

1. ICS cybersecurity experience with industrial networks including process control domain network infrastructures such as Cisco Certified Network Associate (CCNA)-, Cisco Certified Network Professional (CCNP)-type qualifications
2. Experience securing and monitoring industrial wireless networks (SIEM, SOC, NOC)
3. Understanding of the DoD Risk Management Framework (RMF) and Authorization to Operate (ATO) accreditation process for ICS related building systems
4. Strong knowledge of Encryption methodology as it relates to Industrial Control Systems
5. Knowledge of Siemens Medium Voltage Air Insulated and Gas Insulated Switchgear and controls
6. Experience protecting and administering industrial networks such as those from Siemens, ABB, Rockwell, Honeywell, Foxboro, Emerson, Yokogawa
7. Working knowledge of SCADA controls including OSI Monarch
8. Working knowledge of the IEEE 62443 Industrial Network and System Security Standards
9. Knowledge of continual monitoring of Industrial Control Processes for both safety and cybersecurity
10. Certified Information Systems Security Professional (CISSP)
11. CompTIA Security +
12. Prefer ten or more (10+) years of demonstrable experience in Heating, Ventilation and Air Conditioning (HVAC) Systems, programming Building Controls and other associated systems
13. Factory training on Siemens “Insight” software, and TEC startup & troubleshooting
14. Expert level knowledge of Siemens BAS including Apogee, Insight, and Desigo

Security Requirements:

1. Candidate must be a United States citizen with the ability to obtain and maintain a U.S. Government Security Clearance
2. Active Secret clearance or contingent based on the ability to be granted a Secret clearance prior to starting on contract
3. Ability to be upgraded to TS/SCI after starting on contract

Education:

1. Bachelor’s degree in information systems, computer science, or related technical field OR 5 years of relevant experience in lieu of degree
2. Global Industrial Cybersecurity Professional (GICSP) – needs to be held within 6 months of start on contract

Job Location:

City: Hanover
State: Maryland
Country: United States

Travel:

Approximately 75% at the contractor facilities in Hanover, MD and approximately 25% travel CONUS and OCONUS.

Applicants for this position may be required to prove that they have received the COVID-19 vaccine or demonstrate that they have a valid religious or medical reason not to be vaccinated.

Organization: Country Functions & Departments

Company: Siemens Government Technologies, Inc.

Experience Level: Mid-level Professional

Full / Part time: Full-time

Equal Employment Opportunity Statement
Siemens is an Equal Opportunity and Affirmative Action Employer encouraging diversity in the workplace. All qualified applicants will receive consideration for employment without regard to their race, color, creed, religion, national origin, citizenship status, ancestry, sex, age, physical or mental disability unrelated to ability, marital status, family responsibilities, pregnancy, genetic information, sexual orientation, gender expression, gender identity, transgender, sex stereotyping, order of protection status, protected veteran or military status, or an unfavorable discharge from military service, and other categories protected by federal, state or local law.

EEO is the Law
Applicants and employees are protected under Federal law from discrimination. To learn more, Click here .

Pay Transparency Non-Discrimination Provision
Siemens follows Executive Order 11246, including the Pay Transparency Nondiscrimination Provision. To learn more, Click here .

California Privacy Notice
California residents have the right to receive additional notices about their personal information. To learn more, here .