Get Into Energy Jobs

Job Information

Sacramento Municipal Utility District OT Cybersecurity Engineer (Open Until Filled) in Sacramento, California

null

Posting/Working Title:

OT Cybersecurity Engineer (Open Until Filled)

Department:

Information Technology

No. of Openings:

1

Purpose:

Lead position in supporting SMUDs efforts to integrate IT and OT cybersecurity into repeatable and measurable processes. This position will work with OT Engineering to develop solutions that that will increase SMUDs capabilities around detecting, protecting, and responding to malicious activity of OT assets. Core responsibilities will center around testing, implementing, deploying, maintaining, reviewing, and administrating the infrastructure.

Official SMUD Title: Cyber Security Engineer

SMUD is looking to fill this vacancies at either the Senior or Principal level based on Candidate pool.

Salary expectations will be discussed with top candidates following initial interview.

Desired Skills:

· Knowledge of BCP and DR programs

· Knowledge of FedRAMP, PCI DSS, and SOC2

· Knowledge of NERC CIP and other compliance frameworks

· Extensive knowledge with networking and virtualization technologies

· Collaborate with control system SMEs and operational staff to design, implement and support the security of ICS networked systems,

· Designing, configuring, standardizing and implementing cybersecurity compensating controls for OT devices and application such as RTUs, PLCs, DCS, MES and SCADA.

· Knowledge of Distributed Energy Resources or Smart Grid technologies

· Ability to interpret and translate customer requirements into operational capabilities.

· Knowledge of Industrial networking technologies, protocols, protection methodology.

Job Code:

50167112 CYBER SECURITY ENGR (J)

Desirable Qualifications:

Any of the skills of the other specialist (Engineering, Governance, Risk Management, Compliance) and OT Security experience to support a cross functional team concept.

Base Salary Annual Low:

DOQ

Base Salary Annual High:

DOQ

Selection Process:

N/A

Pay Scale Group:

PAS0059O

Minimum Qualifications:

Education

Senior : Bachelor's degree in Cybersecurity, Information Security, Information Technology or closely related field (i.e Computer Science, Systems Engineering, Electrical Engineering) or 9 year's equivalent experience.

Principal : Bachelor's degree in Cybersecurity, Information Security, Information Technology or closely related field (i.e Computer Science, Systems Engineering, Electrical Engineering) or 12 year's equivalent experience.

Experience:

Senior : Five (5+) or more years of progressively relevant professional or technical experience in cybersecurity and/or information security.

Principal: Seven (7+) or more years progressively relevant professional or technical experience in cybersecurity and/or information security.

Knowledge Of:

Principles and practices of cybersecurity and information technology systems. Principles and practices of system security engineering, design, development, analysis, testing and security administration. Methods and techniques of evaluating security and privacy requirements and developing secure solutions for SMUD systems. Methods and techniques of developing data security, integrity, backup and recovery processes. Project management methodologies. Principles and practices of systems and procedures analysis and design. English composition and business writing and vocabulary standards; methods and techniques for report preparation and writing; methods and techniques for record keeping; modern office practices and procedures.

Skill To:•

Problem solve, analytical and troubleshooting capabilities; ability to learn new skills quickly with minimal guidance; ability to achieve project schedules and milestones; work in a team environment with aggressive deadlines and multiple priorities while staying a team player; facilitation and presentation skills; strong verbal and written communication skills as well as strong interpersonal skills; ability to listen, learn, speak up, and mentor; attention to detail; skill to work with different groups and diverse projects as a partner; skill to perform privacy and/or security reviews including regulatory and industry assessments, risk analyses, information inventory and data mapping, vendor management security assessments, and additional privacy or cybersecurity compliance related projects.

Position Type:

Regular - Full Time

Major Duties & Responsibilities:

  • Responsible for the design, development, implementation, and/or integration of SMUDs security architecture, system, or system components for use within IT and OT environments. Ensures that the architecture and design of SMUDs IT and OT are functional and secure.

  • Provides network and systems security engineering, design engineering, security tests and evaluations, and risk assessments for OT and enterprise level IT systems, including risk management, vulnerability assessments, security assessments, strategy and project development, network architecture designs, and monitoring solutions.

  • Enhance enterprise cybersecurity program by developing technical security requirements and technical security control implementation guidance for IT/OT network infrastructure to include hardware, software, and services.

  • Applies technical experience and knowledge on routing, switching, MPLS, SONET/SDH, Frame/Relay, Telecommunications, Wireless (Microwave amd LTE) and Radio technologies. 5. Maintain skills implementing and/or operating security and networking technologies: Application Security Scanners, Endpoint Protection, Remote Connection, Network Protection, Data Loss Prevention, File Integrity Monitoring, Security Auditing amd Logging, Vulnerability Management, and Virtual Private Networking technologies such as IPSEC, SSL/TLS, SSH, site to site and network to network.

  • Advise on the design and innovative integration of cybersecurity toolsets to enable more automated discovery, remediation, and alerting of network and device vulnerabilities as a means of improving the security posture, to include security solutions utilized in SCADA/Control systems environments, applying working knowledge of ICCP, DNP3, MODBUS and other common IEC utility protocols such as IEC-60870-5, IEC-61850.

  • Maintain technical knowledge of TCP/IP, DNS, SMTP, HTTP, FTP, SNMP, Active Directory, LDAP, Ethernet, Wireless LAN, and other WAN/LAN Protocols. 8. Apply knowledge and functional experience with IDS/IPS, WAF, ADC, firewall, VPN across a wide range of complex architectures, platforms and mediums.

  • Review and/or monitor network and system activity and analyze evidence of suspicious behavior to identify and report events that occur or might occur within the network to protect information, information systems, and networks from threats.

  • Other related duties as assigned

Introduction:

Do you want a rewarding career in an exciting field, where your cybersecurity skills help defend critical infrastructure? Do you want to join the first utility in the world who has adopted a strategy to be carbon zero by 2030?

SMUD’s Cybersecurity employees are a team of innovative professionals with a passion for doing what SMUD does best - keeping the lights on for our community, and we’re looking for people who want to come operate in an inclusive atmosphere where collaboration and continuous improvement are our core to how we operate.

DirectEmployers