Industrial Control System (ICS) Cybersecurity Engineer

The MITRE Corporation

Why choose between doing meaningful work and having a fulfilling life? At MITRE, you can have both. Thats because MITRE people are committed to tackling our nations toughest challenges—and were committed to the long-term well-being of our employees. MITRE is different from most technology companies. We are a not-for-profit corporation chartered to work for the public interest, with no commercial conflicts to influence what we do. The R&D centers we operate for the government create lasting impact in fields as diverse as cybersecurity, healthcare, aviation, defense, and enterprise transformation. Were making a difference every day—working for a safer, healthier, and more secure nation and world. Our workplace reflects our values. We offer competitive benefits, exceptional professional development opportunities, and a culture of innovation that embraces diversity, inclusion, flexibility, collaboration, and career growth. If this sounds like the choice you want to make, then choose MITRE—and make a difference with us.

Department Summary:

The Critical Infrastructure Assessments, Analytics, and Resiliency (L541) department provides experience from the cross-section of engineering disciplines and cybersecurity to our government and industry partners. Our team is made up of Operational Technology (OT) SMEs, Detection Engineers, Embedded Device Specialists, Mobile Cybersecurity Experts, and more. We improve our nation’s cybersecurity posture by developing MITRE technologies (e.g., ATT&CK for ICS, ATT&CK for Mobile, Caldera for OT), assessing critical infrastructure (e.g., Infrastructure Susceptibility Analysis), and collaborating with our government sponsors to perform research, maintain labs, and influence policy.

Roles and Responsibilities:

We are seeking a principal level OT/ICS cybersecurity technical expert with 10 years of industry experience or equivalent. This team works closely with our government and critical infrastructure sponsors and their stakeholders to improve the cybersecurity of mission critical operational technology systems. A collaborative approach and interest in building relationships based on an understanding our sponsors’ unique missions, constraints, and opportunities is as important as specific technical skills working within OT environments. We are looking for candidates with both a breadth of cyber experience and a depth of knowledge in one or more areas listed below for direct application to our sponsors’ problems:

Working directly with government and critical infrastructure operators to develop requirements for new cyber protection technologies, perform applied research and development activities, develop operational pilots, and assist in transition to operational use.

Advising decision makers on recommended actions to implement secure, resilient, and safe architectures for operational environments, focused on power generation and water/wastewater industry environments.

Developing and operationalizing cyber sensor and analytic architectures to enable more efficient and effective OT cybersecurity operations, threat-hunting, and forensic analysis. Execute technical and programmatic duties in the delivery and integration of cyber technologies into stakeholder environments.

Manage and lead technical project efforts to deliver successful outcomes to sponsor challenges. Work directly with the technical management team to develop staff through leadership and mentorship.

Conducting cyber mission dependency, criticality, mission failure, and adversary cyberattack scenario analyses to inform design of OT resilient architectures, focused on architectures in power generation and water/wastewater industry environments.

Researching, developing, operationalizing, evaluating, and improving OT defensive tactics, techniques, and procedures (TTPs) for detecting and responding to cyber threats, and

Developing and performing attack emulation and deception operations.

Basic Qualifications:

Typically requires a minimum of 10 years of related experience with a Bachelor’s degree; or 8 years and a Master’s degree; or a PhD with 5 years’ experience; or equivalent combination of related education and work experience.

Bachelors in one of the following disciplines: Chemical Engineering, Computer Engineering, Electrical Engineering, Systems Engineering or similar technical field.

Experience developing and operationalizing cyber sensor and analytic architectures to enable more efficient and effective OT cybersecurity operations, threat-hunting, and forensic analysis. Execute technical and programmatic duties in the delivery and integration of cyber technologies into stakeholder environments

Experience in conducting cyber mission dependency, criticality, mission failure, and adversary cyberattack scenario analyses to inform design of OT resilient architectures, focused on architectures in power generation and water/wastewater industry environments.

Applicants selected for this position will be subject to a government security investigation and must meet eligibility requirements for access to classified information.

This position requires a minimum of 50% hybrid on-site.

Preferred Qualifications:

Hands-on experience with programming PLCs, field instrumentation, in an operational or lab environment.

Hands-on experience with configuring industrial networks and maintaining a domain in an operational or lab environment.

Experience in the power generation and water/wastewater industries.

Experience designing or modifying OT systems.

Experience with OT network monitoring.

Experience with OT adversary emulation.

Experience with embedded system firmware or real-time operating systems.

Familiarity with cybersecurity policies and standards, including: NIST SP 800-82, NERC-CIP, DoD Zero Trust Strategy, IEC 62443.

Experience working with federal departments and agencies or their stakeholders (e.g., state/local/tribal/territorial governments) and critical infrastructure organizations (especially electric, gas or water utilities).

This requisition requires the candidate to have a minimum of the following clearance(s):

None

This requisition requires the hired candidate to have or obtain, within one year from the date of hire, the following clearance(s):

Top Secret

Salary compensation range and midpoint:

$168,500 – $210,500 – $252,500 Annual

Work Location Type:

Hybrid

MITRE is proud to be an equal opportunity employer. MITRE recruits, employs, trains, compensates, and promotes regardless of age; ancestry; color; family medical or genetic information; gender identity and expression; marital, military, or veteran status; national and ethnic origin; physical or mental disability; political affiliation; pregnancy; race; religion; sex; sexual orientation; and any other protected characteristics. For further information please visit the Equal Employment Opportunity Commission website EEO is the Law Poster (https://www.eeoc.gov/sites/default/files/2022-10/22-088EEOCKnowYourRights1020.pdf) and Pay Transparency (https://www.dol.gov/sites/dolgov/files/OFCCP/pdf/pay-transp%20EnglishformattedESQA508c.pdf) .

MITRE intends to maintain a website that is fully accessible to all individuals. If you are unable to search or apply for jobs and would like to request a reasonable accommodation for any part of MITRE’s employment process, please email recruitinghelp@mitre.org .

Copyright © 2024, The MITRE Corporation. All rights reserved. MITRE is a registered trademark of The MITRE Corporation. Material on this site may be copied and distributed with permission only.

Benefits information may be found here (https://careers.mitre.org/us/en/benefits)

Show Full Vacancy