Remote Information System Administrator - Information System Security Engineer
Published date: 2025/03/20
- Location: Arlington, Virginia, United States
The individual in this role will be responsible for conducting information system administration and information system security engineering activities hands-on at the job sites in the field and remotely at their home office.
Our team works closely with Government stakeholders to improve the cybersecurity of various OT systems through the adherence to the NIST Risk Management Framework (RMF) process. An ideal applicant will be familiar with the Steps of the RMF process and have hands on experience satisfying the requirements of each Step in the RMF process for the Army, Navy, and Air Force customers. Since this position will interface directly with customer stakeholders and independent assessors, prior experience supporting audits and establishing positive professional relationships is necessary.
Responsibilities:
•Working directly with the U.S Federal Government, independent assessors, system owners, and industrial control system operators to perform cybersecurity tasks and prepare documentation to either achieve or maintain the secure posture for each control system.
•Working collaboratively with all stakeholders to implement, operate, and maintain secure, resilient, and safe architectures for each control system.
•Hardening industrial control devices in accordance with DISA Security Technical Implementation Guides (STIGs), while utilizing Security Content Automation Protocol (SCAP) and/or Evaluate STIG tools.
•Scanning industrial control systems for vulnerabilities utilizing tools such as Tenable Nessus, Security Center, or equivalent.
•Managing on-site access control, operator authentication and authorization.
•Conducting periodic backups on industrial control systems and testing of the backups.
•Analyzing event logs for suspicious activity and generating reports.
•Providing quarterly on-site continuous monitoring services for the ICS.
•Generating cybersecurity documentation utilizing templates prescribed by the Government, including but not limited to categorization forms, system descriptions, hardware and software lists, network diagrams, ports/protocols/services management lists, security plans, system level continuous monitoring plans, plan of actions and milestones, standard operating procedures (SOPs).
•Establishing and maintaining control system configuration baselines, as well as following the change control process to implement necessary changes and updates throughout the life of the system.
•Managing control system packages and workflows within Enterprise Mission Assurance Support Service (eMASS).
•Working with system installers, owners, and operators to patch devices to remediate vulnerability findings and address security controls necessary to mitigate the vulnerabilities to an acceptable level of risk.
•Generating and updating Plans of Action and Milestones (POAMs).
•Developing and maintaining RMF policies addressing non-technical NIST controls.
•Supporting tests of Contingency Plan, Incident Response Plan, as well as penetration testing.
•Evaluating methods for improvement of ICS defensive tactics to strengthen secure posture in a cost-effective manner.
Requirements:
•Bachelor’s degree or equivalent combination of related education and work experience.
•Minimum of 5 years of professional experience in engineering, administration, and security of information and operational technology and ICS.
•This position requires approximately 60% travel to job sites.
•An equivalent of IAT Level II/IAM Level II DoD 8140 (DoDD 8570) Approved Baseline Certifications from a nationally recognized organization
•Valid U.S Passport
Preferred Qualifications:
•Hands-on experience with Industrial Control System types such as Building Automation/Control Systems (BAS/BCS), Energy Management and Control Systems (EMCS), Utility Control Systems (UCS), Utility Monitoring and Control Systems (UMCS), and Electronic Security Systems (ESS). More specifically the systems controlling: HVAC, Battery Storage, Solar/Photovoltaic, Power Plants, SCADA systems, cogeneration/trigeneration control systems, physical security and access management systems, electronic security and surveillance systems.
•Hands-on experience with Siemens hardware and control systems, including Desigo CC platform, SiPass, SICAM SCADA, Surveillance VMS.
•Experience working in an Industrial Operational Technology Environment
•Knowledge in areas such as network design, Windows Domain setup expertise, security and group policy setup
•Hands-on experience with OT devices in Industrial Control Systems, such as controllers, PLCs, data loggers, inverters, and other field instrumentation, in an operational or lab environment.
•Hands-on experience with IT components of the ICS, such as network switches, routers, firewalls, servers, workstations, HMIs, etc in an operational or lab environment.
•Hands-on experience with configuring industrial networks and maintaining a domain in an operational or lab environment.
•Experience designing or modifying OT system architecture.
•Experience with OT network monitoring.
•Familiarity with cybersecurity policies and standards, including but not limited to: NIST SP 800-37, NIST SP 800-53, NIST SP 800-82, UFC 4-010-06, UFGS 25 05 11, UFGS 25 08 10, UFGS 25 08 11.00 20, UFGS 25 10 10, DoDi 8510.01.
•Strong customer service focus and experience working with stakeholders in a collaborative fashion, resulting in positive feedback and development of strong professional relationships.
Travel:
•Remote employment, with regular international and domestic travel in support of U.S facilities. Travel is estimated to be up to 60%.
Security Clearance:
•Candidate must be a United States Citizen with the ability to obtain and maintain an U.S. Government Secret Security Clearance within one year from date of hire
You’ll benefit from:
•Siemens offers a variety of health and wellness benefits to our employees. Details regarding our benefits can be found here: https://www.benefitsquickstart.com/siemens/index.html
•The salary range for this position is $100,100.00 to $135,100.00. An annual incentive target also is part of the compensation package for this position. The actual wage offered may be lower or higher depending on budget and candidate experience, knowledge, skills, qualifications, and premium geographic location.
Related listings
-
Platform EngineersIT Jobs New York City (New York) 2025/03/25Applications for this role will be accepted on an ongoing basis. ADP Technology Services, Inc. seeks Platform Engineers in our New York City, NY location. Are you empathetic to client needs and inspired by transformation and impacting the lives o... -
Senior Business Systems Analyst - Order to Revenue/Finance SystemsIT Jobs Austin (Texas) 2025/03/22What if you could use your analytical skills to impact the way communities’ hospitals, homes, sports stadiums, and schools across the world are built? Construction impacts the lives of nearly everyone in the world, and yet it’s also one of the world’...
-
IT SOX Compliance ManagerIT Jobs Austin (Texas) 2025/03/22We’re looking for an IT SOX Compliance Manager to join Procore’s Product & Technology Team. Procore software solutions aim to improve the lives of everyone in construction and the people within Product & Technology are the driving force behin...
Useful information
- Avoid scams by acting locally or paying with PayPal
- Never pay with Western Union, Moneygram or other anonymous payment services
- Don't buy or sell outside of your country. Don't accept cashier cheques from outside your country
- This site is never involved in any transaction, and does not handle payments, shipping, guarantee transactions, provide escrow services, or offer "buyer protection" or "seller certification"