Cyber Security Specialist

Cyber Security Specialist

A large Engineering customer of Marathon TS is seeking an experienced Cyber Security Specialist to join their dynamic team.

Position Responsibilities:

• Conduct ICS/SCADA system inventories following guidance including, but not limited to U.S. Army ICS Inventory Methodology and Unified Facilities Criteria (UFC) 4-010-06, Cybersecurity of Facility-Related Control Systems.
• Assist in the development and verification of documentation necessary to complete the DoD RMF assessment and authorization process.
• Implement Implementation of DoD Security Technical Implementation Guides (STIGs) on traditional Information Technology (IT) and Operational Technology (OT) systems.
• Conduct vulnerability scanning and document system vulnerabilities.
• Work in a team environment alongside other cybersecurity engineers and Risk Management Framework (RMF) analysts.

Additional Preferred Qualifications:

• 5+ years of experience working with industry and government agencies on the design of ICS platforms and integrated ICS systems
• Meet the Department of Defense Directive (DoDD) 8570.01 "Information Assurance Training, Certification, and Workforce Management" and DoD 8570-M "Information Assurance Workforce Improvement Program" requirements for IAM (Information Assurance Manager) Level 3, IAT (Information Assurance Technical) Level 3, OR IASAE (Information Assurance System Architect and Engineer) Level 3
• Familiarity with various industry ICS products
• Experience implementing a variety of security assessment tools
• Implementation of DoD Security Technical Implementation Guides (STIGs)
• Security Readiness Review (SRR) Tools (scripts and OVAL Benchmarks, ACAS, Wireshark)
• Excellent understanding of the DoD RMF lifecycle and NIST 800-53 controls implementation
• Strong written and verbal communication skills Ability to coordinate with and support multiple team members, vendors, and government customers
• Ability to identify, maintain, and troubleshoot HMI components
• Ability to identify, maintain, and troubleshoot control network components
• Ability to interpret drawings both mechanical and electrical
• Ability to identify, maintain, and utilize SCADA systems and KPI's
• Ability to train others with lesser skills
• Ability to access all levels and areas of the facility
• Working knowledge of EMS/SCADA or other operational control systems.
• Knowledge of SCADA protocols like Modbus, IEC 60870-5-101 or 104, IEC 61850 and DNP3 and other major SCADA protocols

Marathon TS is committed to the development of a creative, diverse and inclusive work environment. In order to provide equal employment and advancement opportunities to all individuals, employment decisions at Marathon TS will be based on merit, qualifications, and abilities. Marathon TS does not discriminate against any person because of race, color, creed, religion, sex, national origin, disability, age or any other characteristic protected by law (referred to as "protected status").