OT Cyber security Specialist

Key Responsibilities:

• Lead and/or assist technical and analytical Cyber security support activities for Facility Related Control Systems (FRCS), Operational Technology (OT) and Information Technology (IT) to develop, engineer and implement a cyber secure baseline.
• Assist the ISSM with initial engineering requirements to determine proper FIPS 199 system categorization and selection of security controls.
• Review and determine specific CNSS 1253 security controls applicable to the FRCS/OT/IT. Furthermore, define and determine cyber engineering requirements to meet the assigned CNSS 1253 controls throughout the entire lifecycle.
• Provide technical and analytical support while the FRCS/OT/IT system is being built or maintained.
• Implement security baseline measures such as STIGs, SRGs, OEM best build practices, etc.
• Perform accurate and measurable scanning of the FRCS/OT/IT systems and devices using tools such as ACAS.
• Design, develop and maintain required documentation to support the FRCS/OT throughout the lifecycle.
• Develop the FRCS/OT/IT self-assessment test plan and assist the ISSM in obtaining approval. Additionally, the ISSE will assist in the self-assessment as required by the ISSM.
• Assist the Validator as needed during the validation by providing necessary information, documentation, and onsite support.
• Assist the ISSM in mitigating and resolving vulnerabilities after completion of the validation.
• Provide life cycle support of the FRCS/OT/IT following approved USMC vulnerability management principles and procedures.
• Lead communications with Government stakeholders and provide advisory support.

Basic Qualifications:

• Bachelor's degree in Computer Science, Information Assurance, Information Security System Engineering plus a minimum of six (6) years of directly related experience with a minimum of two (2) of these years functioning in an FRCS/OT/IT/RMF role with exposure to diverse IT architectures within the DoD, demonstrating progressive growth of skills.
• Certification: CompTIA Sec+
• Ability to obtain a Government Common Access Card (CAC)
• Proven capability to independently initiate, track and manage tasks, with a high degree of detail, quality, and process orientated completion.
• Knowledge of DoDI 8510.01 policy and principles.
• Working knowledge of USMC Assessment & Authorization policies, practices, and toolsets.
• High level understanding of information security principles and risk assessment techniques associated to FRCS/OT/IT.
• Ability to use prior experience and knowledge to address new situations and incorporate new information; especially during interactions with clients.
• Willingness and ability to set priorities and deliver under tight deadlines in a heavy workload environment.
• Excellent communication skills, both written and verbal to clearly articulate ideas for senior leadership as well as technical staff consumption.
• Ability to work in teams, and establish and maintain cross-functional and working relationships.
• Proficient with Microsoft Office Suite of tools, including Word, Excel, and PowerPoint.

Preferred Qualifications:

• Experience working with DoD programs a significant plus
• Experience with USMC systems and RMF process
• Experience with industrial control systems
• Certification(s): CISSP, CISM, CEH, GICSP