By Light HQ

OT Cyber Security Specialist

Job Locations US-TX | US-Remote w/ Travel
Posted Date 2 weeks ago(11/15/2022 1:51 PM)
# of Openings


This is a hands-on, technical security assessor / analyst position requiring experience in OT/ICS environments, intermediate knowledge of Windows and Linux OS systems. Controls Systems architectures such as PLC, SCADA, and DCS.  Supports the security assessment of deployed systems through hands-on execution of tools and best-practice techniques, including manual and automated verification scans against defined component baselines.


Assists with determining the security and configuration status of a variety of system components including: system documentation, Linux and Windows operating systems; Industrial Controls Systems; system support components, Virtual Environments, and Network Infrastructure. There are also often “one-off” components requiring development of baseline security configurations, hence technical curiosity and a desire to learn and innovate are beneficial.


Using a Risk Management Framework and customer-defined security control catalog, map system and configuration anomalies to specific NIST security controls, along with specific remediation. Write accurate, cogent and defensible descriptions of security configuration status as well as succinct and defensible suggested remediation.


  • Perform comprehensive and executive assessment package creation for delivery to government and commercial customers. 
  • Implement and report on various cybersecurity compliance standards, ISA/IEC-62443, NIST, API 1164, NERC-CIP
  • Performs security control assessment on various platforms using NIST security control assessment.
  • Leverage the MITRE ATT&CK and D3FEND frameworks for bespoke assessments and Threat modeling.
  • Maintain a firm understanding of adversarial TTP’s being used against industrial controls systems and operational technology.
  • Review assessment reports, policies, procedures, and guides
  • Communicate with system and network administrators to guide them in the mitigation and/or resolution of vulnerabilities.
  • Prepare documentation to include Risk Acceptance memorandums justify the acceptance of a vulnerability

Required Experience/Qualifications

·       Working knowledge (and hands on) of various assessment tools that may include Nozomi, Nessus, Nmap and related testing tools

·       5+ years of security related experience or equivalent

·       General services in support of completing RMF type assessments

·       Ability to discern application and systems dependencies and structure

·       Technical understanding of networking and associated protocols

·       Application security principles and experience

·       Understanding of Threat Modeling of a system

·       General understanding of cybersecurity controls used to mitigate vulnerabilities.

·       Experience working with OT/ICS environments

Preferred Experience/Qualifications

·       Ability to develop and understand custom scripts (Python, Linux Bash and Windows PowerShell or equivalent)

·       Vulnerability assessment experience

·       Knowledge of Industrial Control Systems, Operational Technology, and/or SCADA systems.

·       GICSP, OCSP, GPEN, or CISSP certification

Special Requirements/Security Clearance

  • Up to 50% travel. Primary travel will be within the United States with the possibility of travel outside of the USA.
  • Must be able to pass a background check, drug, and alcohol screening.
  • Valid driver’s license with clean driving record for the past 3 years.
  • No employer sponsorship of U.S. residency or work authorization with this role.
  • Military Veterans are highly encouraged to apply.


Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed