Cyber Security Specialist

A large Engineering customer of Marathon TS is seeking an experienced Cyber Security Specialist to join their dynamic team. Position Responsibilities: • Conduct ICS/SCADA system inventories following guidance including, but not limited to U.S. Army ICS Inventory Methodology and Unified Facilities Criteria (UFC) 4-010-06, Cybersecurity of Facility-Related Control Systems. • Assist in the development and verification of documentation necessary to complete the DoD RMF assessment and authorization process. • Implement Implementation of DoD Security Technical Implementation Guides (STIGs) on traditional Information Technology (IT) and Operational Technology (OT) systems. • Conduct vulnerability scanning and document system vulnerabilities. • Work in a team environment alongside other cybersecurity engineers and Risk Management Framework (RMF) analysts.

Additional Preferred Qualifications: • 5+ years of experience working with industry and government agencies on the design of ICS platforms and integrated ICS systems • Strongly preferred: Meet the Department of Defense Directive (DoDD) 8570.01 "Information Assurance Training, Certification, and Workforce Management" and DoD 8570-M "Information Assurance Workforce Improvement Program" requirements for IAM (Information Assurance Manager) Level 3, IAT (Information Assurance Technical) Level 3, OR IASAE (Information Assurance System Architect and Engineer) Level 3 • Familiarity with various industry ICS products • Experience implementing a variety of security assessment tools • Implementation of DoD Security Technical Implementation Guides (STIGs) • Security Readiness Review (SRR) Tools (scripts and OVAL Benchmarks, ACAS, Wireshark) • Excellent understanding of the DoD RMF lifecycle and NIST 800-53 controls implementation • Strong written and verbal communication skills Ability to coordinate with and support multiple team members, vendors, and government customers • bility to identify, maintain, and troubleshoot HMI components • bility to identify, maintain, and troubleshoot control network components • bility to interpret drawings both mechanical and electrical • bility to identify, maintain, and utilize SCADA systems and KPI's • bility to train others with lesser skills • bility to access all levels and areas of the facility • Working knowledge of EMS/SCADA or other operational control systems. • Knowledge of SCADA protocols like Modbus, IEC 60870-5-101 or 104, IEC 61850 and DNP3 and other major SCADA protocols

#CJJOBS