OT/ICS Cybersecurity Engineer - Mid (managed services)

Job Posting: OT/ICS Cybersecurity Engineer - Mid

Are you interested in working at the cutting edge of industrial cybersecurity? Does securing high criticality operational technology systems and working with a team of cyber professionals motivate you? Are you ready to take your career in Cybersecurity of Operational Technology and Industrial Control Systems to the next level with one of the largest technology and engineering firms in the world? As the OT/ICS Cybersecurity Engineer - Mid, you’ll work at the forefront of contemporary industrial systems to secure these systems from design through deployment and into ongoing operations and lifecycle maintenance. Jacobs designs and builds the world’s infrastructure, and you’ll play a key role in protecting industrial systems that enable our client’s most important programs.

As the OT/ICS Cybersecurity Engineer - Mid, you will work with a team of cybersecurity professionals that provide support across the Jacobs delivery lifecycle. This role is primarily focused on supporting ongoing managed services and operational cybersecurity activities, while also contributing to design and assessment efforts. From supporting ongoing operational cybersecurity activities to ensuring design compliance with standards and providing cybersecurity assessments, you’ll identify risk and provide mitigation measures that protect our clients from the most dangerous forms of cyber-attacks. You will support or implement cybersecurity solutions to be consistent with NIST, NERC CIP and other contemporary cybersecurity standards in ICS environments. You’ll understand the cybersecurity needs of large infrastructure programs and support the development and implementation of cybersecurity solutions, including integration of third-party technologies that ensure that system and network data is visible and secure. In this role, you’ll work with both sales and operations teams to embed cybersecurity and risk reduction into new contract opportunities as well as active programs. You’ll work in close coordination with SCADA instrumentation and controls teams to design and integrate SCADA and OT with contemporary security architectures. From design through commissioning and into ongoing operations of large infrastructure, you’ll put your hands on experience with ICS cybersecurity to work at Jacobs.

Are you ready to be part of our team of ICS cybersecurity professionals at the cutting edge of SCADA and cybersecurity? At Jacobs, we are building a more connected and sustainable world. Come join us as we engineer and secure networks at the heart of today’s global infrastructure.

Location: Remote in the United States with ~20% travel to client sites

Responsibilities:

Primary responsibilities focus on the ongoing operation, maintenance, and support of OT cybersecurity environments within managed services engagements, with additional responsibilities supporting design and assessment activities.

• Perform ongoing operations and maintenance (O&M) activities for OT cybersecurity environments, including system monitoring, patching (including validation and coordinated deployment), upgrades, and lifecycle management
• Support change management processes, including planning, testing, and implementation of changes to OT cybersecurity systems in controlled environments
• Support vulnerability management processes, including coordination of scans, risk prioritization and remediation tracking and coordination
• Monitor, triage, and tune alerts from OT security tools to improve detection fidelity and reduce false positives
• Support and maintain secure remote access solutions (VPN and modern alternatives) for OT environments
• Maintain and validate backup and recovery processes for critical OT systems
• Provide break-fix support and troubleshooting for OT cybersecurity infrastructure
• Support cybersecurity design of OT networks through compliance with appropriate security standards
• Provide cybersecurity assessments of OT/ICS across Jacobs markets with analysis of current state, mitigation, and solution implementation
• Support integration and ongoing sustainment of switching, servers, firewalls, virtual machines, and other operational technology with proper security standards
• Travel to project sites to provide support of ICS networks, manage, maintain, and troubleshoot converged platforms, virtualization, networks, security platforms and various other OT/IoT technologies
• May participate in after-hours maintenance windows or escalation support depending on client contract requirements.

Requirements:

• Experience working in high-availability or mission-critical OT environments
• Experience supporting and maintaining production OT environments in an operations or managed services capacity
• 3+ years of experience in OT/ICS security with experience contributing to or supporting engagements
• Experience with OT network monitoring and data collection tools
• Technical background with hands-on experience supporting OT cybersecurity operations, with the ability to perform security reviews and assessments of OT security and cybersecurity risk landscapes
• Strong understanding of networking fundamentals including routing, switching, VLANs, segmentation, and firewall policy management alongside network segmentation aligned to Purdue Model architectures
• Strong troubleshooting skills across networking, systems, and security infrastructure
• Hands-on system administration experience including Active Directory, DNS, WSUS, backup systems, and virtualization platforms (VMWare, Nutanix, Hyper-V, Scale, Proxmox, etc.)
• Experience supporting secure remote access solutions (VPN and modern alternatives such as ZTNA)
• Familiarity with IEC-62443 and other industrial cybersecurity standards
• Knowledge of the Purdue Enterprise Reference Architecture
• Experience with vulnerability management processes and tools in OT environments
• Knowledge of Zero Trust Architecture

Preferred:

• IAT Level II Certification (Security+, GICSP)
• Cisco CCNA, Fortinet NSE-4, JNCIA or equivalent network certification
• Expertise in MITRE ATT&CK and ATT&CK for ICS Frameworks
• Hands-on experience programming ICS vendor Human Machine Interface (HMI) equipment as well as Programmable Logic Controllers (PLCs)
• Experience with Industrial Internet of Things and edge computing
• Working knowledge of NIST SP 800 series guidelines
• Knowledge of DNP, Modbus, SEL, IEC-61850 protocols - serial & IP based
• Experience working in managed services or 24x7 operational support environments
• Familiarity with IT/OT service management practices (incident, change, problem management)
• Experience balancing operational support with project-based design or assessment work

Jacobs is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, religion, creed, color, national origin, ancestry, sex (including pregnancy, childbirth, breastfeeding, or medical conditions related to pregnancy, childbirth, or breastfeeding), age, medical condition, marital or domestic partner status, sexual orientation, gender, gender identity, gender expression and transgender status, mental disability or physical disability, genetic information, military or veteran status, citizenship, low-income status or any other status or characteristic protected by applicable law. Learn more about your rights under Federal EEO laws and supplemental language.