Operational Technology Security Engineer

• Support planning, design, development, testing, integration, and security of OT systems.
• Analyze and implement OT cybersecurity requirements and controls.
• Conduct vulnerability assessments across OT and IT systems, networks, applications, and databases.
• Develop, maintain, and validate cybersecurity documentation and artifacts.
• Manage and track POA&M entries, including remediation actions and timelines.
• Perform OT-specific risk assessments and recommend mitigation strategies.
• Support DoD cybersecurity inspections and ensure environment readiness.
• Deploy and tune OT security monitoring solutions including IDS, IPS, and anomaly detection.
• Develop and implement OT-specific incident response plans.
• Manage software and firmware updates while minimizing operational disruption.
• Generate cybersecurity reports, analytics, and trend analysis for leadership.
• Bridge IT and OT cybersecurity practices to ensure aligned protections.
• Provide technical recommendations to engineers, operators, and leadership.
• Support compliance with industry and regulatory cybersecurity standards.
• Build automated workflows for vulnerability management and reporting.

• Minimum seven years of experience in OT cybersecurity or a related field.
• Experience supporting DoD or federal cybersecurity environments (preferred).
• Hands-on experience with industrial control systems and OT environments.
• Strong knowledge of OT systems including SCADA, ICS, DCS, PLCs, HMIs, RTUs, and field devices.
• Experience with OT communication protocols such as Modbus/TCP, DNP3, BACnet, and IEC 61850.
• Understanding of secure OT network architectures including segmentation, firewalls, and IDS/IPS.
• Knowledge of secure remote access solutions for OT environments.
• Experience with vulnerability scanning tools such as ACAS, Nessus, Qualys, Forescout, and EyeInspect.
• Familiarity with cybersecurity frameworks including NIST CSF, ISA/IEC 62443, and NERC CIP.
• Understanding of DoD cybersecurity requirements including STIGs, IAVMs, and configuration guides.
• Experience with patch management and change management processes.
• Ability to conduct forensic analysis within OT environments.
• Proficiency with Microsoft Excel, Access, Power BI, and Power Platform.
• Strong analytical, problem-solving, and research skills.
• Excellent written and verbal communication skills.
• Ability to work independently and in team environments.
• Active DoD Secret Clearance.
• Training module or course completion in Forescout., * One of the following certifications: 300 - ICS Cybersecurity; AWS Certified Solutions Architect - Associate; GIAC Certified Windows Security Administrator (GCWN); Infoblox Core DDI Configuration and Administration; ISA Certified Control System; Microsoft Certified: Azure Administrator Associate; Microsoft Certified Solutions Associate Windows Server 2016; Microsoft 365 Certified: Messaging Administrator Associate; MS 2016 Active Directory Identity and Networking; Oracle Cloud Infrastructure Foundations 2020 Certified Associate; OCI Cloud Infrastructure Foundations Associate 2025 Exam.
• And one of the following certifications: CCNA Security; CompTIA CySA+; GICSP; CompTIA Security+ CE; CND; SSCP.

Due to federal security clearance requirements, applicant must be a United States Citizen with an active Secret clearance. This is a full-time, permanent opportunity, offering a competitive salary and comprehensive benefits package. Qualified applicants must be willing and able to work on a w2 basis.

Salary: $110,000 - $135,000/ yr. w2, Skills, experience, and other compensable factors will be considered when determining pay rate. The pay range provided in this posting reflects a W2 hourly rate; other employment options may be available that may result in pay outside of the provided range.

W2 employees of Eliassen Group who are regularly scheduled to work 30 or more hours per week are eligible for the following benefits: medical (choice of 3 plans), dental, vision, pre-tax accounts, other voluntary benefits including life and disability insurance, 401(k) with match, and sick time if required by law in the worked-in state/locality.

If anyone reaches out to you about an open position connected with Eliassen Group, please ensure that you are working directly with us by confirming the following:

· When you work with Eliassen Group, all email communication will come from an Eliassen.com address, never Gmail, Yahoo, etc.

Eliassen Group is a strategic consulting firm that helps organizations reach further and achieve more through our technology, business advisory, and life sciences solutions. For nearly 40 years, we have combined exceptional people, deep domain expertise, and intelligent capabilities to expand our clients' capacity and accelerate meaningful outcomes. We are driven by a purpose to positively impact the lives of our employees, clients, consultants, and the communities we serve.