Industrial Cybersecurity Consultant Job Details | Black & Veatch Family of Companies - Black & Veatch
Virginia Beach, VA
About the Job
Industrial Cybersecurity Consultant
Date: Dec 17, 2024
Location:
US
Company: Black & Veatch Family of Companies
Together, we own our company, our future, and our shared success.
As an employee-owned company, our people _are_ Black & Veatch. We put them at the center of everything we do and empower them to grow, explore new possibilities and use their diverse talents and perspectives to solve humanity's biggest challenges in an ever-evolving world. With over 100 years of innovation in sustainable infrastructure and our expertise in engineering, procurement, consulting and construction, together we are building a world of difference.
Company : Black & Veatch Corporation
Req Id : 106520
Opportunity Type : Staff
Relocation eligible : No
Full time/Part time : Full-Time
Project Only Hire : No
Visa Sponsorship Available: No
Why Black and Veatch
_Recognized by Glassdoor as a 2023 Top 100 place to work_ , Black & Veatch allows you to lend your talent and perspective to humanity’s biggest challenges in a flexible environment where you are empowered to grow and explore new possibilities. We offer competitive compensation; 401K match and benefits that start day 1. Our hybrid environment allows you to balance your work and personal life.
At Black & Veatch, you own your career with purpose and meaning. You are empowered to grow and explore new possibilities at every step of your career journey. Bring your big ideas knowing you are safe to be who you are and speak up with concerns or questions and put your diverse talents and perspectives to use.
The Opportunity
The Industrial Cybersecurity Analyst contributes to technical consulting projects and implementation services for critical infrastructure clients. The Industrial Cybersecurity Analyst leverages their technical and industry knowledge of OT networks and industrial cybersecurity to contribute to the completion of multiple engagement phases. In this role, you will assess/support clients’ security posture, develop recommendations to enhance their programs and technologies, and implement recommendations outlined in master plans. This role blends technical capabilities with analysis and technical support.
The role requires a wide range of duties, including onsite/online assessments, compliance and standards reviews, security architecture analyses, plan development, and technology implementation and integration. The role also supporting our Industrial Cyber Security Lead in analysis, risk management workshops, as well as the ability to write a customer maturity analysis.
The Industrial Cybersecurity Analyst demonstrates capabilities with minimal level of oversight from more senior level professionals. The scope and size of projects they contribute to are generally medium to large or they may own a small to moderate portion of a larger project.
The Team
Black & Veatch’s Strategic Advisory & Lifecycle Resiliency Services are an integrated portfolio of strategic consulting and operation resiliency services that apply across the client’s entire investment-to-operations lifecycle commitments. Included are Strategic Advisory, Industrial Cybersecurity, and Operating Assets.
Key Responsibilities
Technical Consulting and Implementation Capabilities:
+ Assess people, process, and technical dimensions of client cybersecurity posture.
+ Develops and write master plans that combine analyses, reviews, and recommendations of client industrial cyber programs, technologies, and networks.
+ Assist workshops, data collection, tabletop exercises and client interviews.
+ Assist asset and vulnerability scanning of customer networks, including the installation of scanning and monitoring technologies.
+ Assist walk-downs of client sites to assess cyber and physical security postures.
+ Applies industrial cybersecurity standards and regulatory requirements (e.g., NERC CIP, NIST, IE62443) to customer programs.
+ Assist technical (e.g., segmentation, hardening, technology integration) and programmatic (e.g., policies, response plans) implementation of master plans and recommendations.
+ Contributes to quality review on own engagements.
+ Develop applicable knowledge bases by using best practices to redefine tools and techniques. Outline specific performance measures, targets, and goals to articulate the business case for realized efficiencies or added value.
+ Challenge client’s current strategy and direction through persuasive discussions. Define competitive advantage and achievable value to the client through use of the strategic change components and metrics. Formulate issue-based hypotheses and develop analytical plan for testing. Contribute to analysis of impact of strategic changes by defining linkages and interdependencies.
+ Utilize specialized knowledge to produce complex work products and solutions across all phases of an engagement.
+ Anticipate and resolve technical problems with minimal technical assistance from others.
+ Develop, present, and defend conclusions, recommendations, and implementation plans.
+ Identify technical issues impacting an engagement and proposes solutions.
+ Analyze and apply best practices knowledge of the industry.
+ Contribute to the development of service packages as part of the team’s service offerings.
Management Responsibilities
Individual Contributor
Minimum Qualifications
+ Bachelor's Degree or relevant work experience
+ 7+ years experience in a business/consulting environment
+ All applicants must be able to complete pre-employment onboarding requirements (if selected) which may include any/all of the following: criminal/civil background check, drug screen, and motor vehicle records search, in compliance with any applicable laws and regulations.
Preferred Qualifications
+ Experience at customer sites
+ Proven experience with OT penetration testing and/or red teaming
+ Experience with OT Security-by-design and/or new OT in construction
+ Proven ability to install monitoring technologies (e.g., Nozomi, Dragos, Tenable, Claroty)
+ Experience scoping technical projects.
+ Proven ability to assess security architectures of OT networks.
+ Direct experience in planning and facilitating risk workshops, table-top exercises, and other client-facing work sessions.
+ Experience conducting maturity and technical assessments.
+ Proven team leadership and management experience
+ Graduate degree preferred.
Certifications
+ Other relevant cybersecurity certifications (e.g., Nozomi, Fortinet, Dragos, Tenable) – preferred
+ CompTIA Security+ SANS Certificate in relevant to OT Cyber Security such as GICSP, GICP, ACS, GSEC, GRID, GCIH, CEH, CISM
+ CISSP
+ ISA/IEC 62443 suite of certifications
Work Environment/Physical Demands
+ Office environment with a hybrid work schedule (3 days in office and 2 days remote) or client site
+ Work involves frequent finger/hand manipulation in using a keyboard and mouse.
+ Work may involve stairs, walking, long moments of standing.
Salary Plan
CST: Consulting
Job Grade
004
Black & Veatch endeavors to makeaccessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process because of a disability, please contact the Employee Relations Department at +1-913-359-1622 or via our. This contact information is for disability accommodation requests only; you may not use this contact information to inquire about the status of applications. General inquiries about the status of applications will not be returned.
Black & Veatch is committed to being an employer of choice by creating a valuable work experience that keeps our people engaged, productive, safe and healthy.
Our comprehensive benefits portfolio is a key component of this commitment and offers an array of health care benefits including but not limited to medical, dental and vision insurances along with disability and a robust wellness program.
To support a healthy work-life balance, we offer flexible work schedules, paid vacation and holiday time, sick time, and dependent sick time.
A variety of additional benefits are available to our professionals, including a company-matched 401k plan, adoption reimbursement, tuition reimbursement, vendor discounts, an employment referral program, AD&D insurance, pre-taxed accounts, voluntary legal plan and the B&V Credit Union. Professionals may also be eligible for a performance-based bonus program.
We are proud to be a 100 percent ESOP-owned company. As employee-owners, our professionals are empowered to drive not only their personal growth, but the company's long-term achievements - and they share in the financial rewards of the success through stock ownership.
By valuing diverse voices and perspectives, we cultivate an authentically inclusive environment for professionals and are able to provide innovative and effective solutions for clients.
BVH, Inc., its subsidiaries and its affiliated companies, complies with all Equal Employment Opportunity (EEO) affirmative action laws and regulations. Black & Veatch does not discriminate on the basis of age, race, religion, color, sex, national origin, marital status, genetic information, sexual orientation, gender Identity and expression, disability, veteran status, pregnancy status or other status protected by law.
For our EEO Policy Statement, please click. If you’d like more information on your EEO rights under the law, please clickand.
Notice to External Search Firms : Black & Veatch does not accept unsolicited resumes and will not be obligated to pay a placement fee for unsolicited resumes. Black & Veatch Talent Acquisition engages with search firms directly for hiring needs.
Job Segment: Engineer, Engineering
Date: Dec 17, 2024
Location:
US
Company: Black & Veatch Family of Companies
Together, we own our company, our future, and our shared success.
As an employee-owned company, our people _are_ Black & Veatch. We put them at the center of everything we do and empower them to grow, explore new possibilities and use their diverse talents and perspectives to solve humanity's biggest challenges in an ever-evolving world. With over 100 years of innovation in sustainable infrastructure and our expertise in engineering, procurement, consulting and construction, together we are building a world of difference.
Company : Black & Veatch Corporation
Req Id : 106520
Opportunity Type : Staff
Relocation eligible : No
Full time/Part time : Full-Time
Project Only Hire : No
Visa Sponsorship Available: No
Why Black and Veatch
_Recognized by Glassdoor as a 2023 Top 100 place to work_ , Black & Veatch allows you to lend your talent and perspective to humanity’s biggest challenges in a flexible environment where you are empowered to grow and explore new possibilities. We offer competitive compensation; 401K match and benefits that start day 1. Our hybrid environment allows you to balance your work and personal life.
At Black & Veatch, you own your career with purpose and meaning. You are empowered to grow and explore new possibilities at every step of your career journey. Bring your big ideas knowing you are safe to be who you are and speak up with concerns or questions and put your diverse talents and perspectives to use.
The Opportunity
The Industrial Cybersecurity Analyst contributes to technical consulting projects and implementation services for critical infrastructure clients. The Industrial Cybersecurity Analyst leverages their technical and industry knowledge of OT networks and industrial cybersecurity to contribute to the completion of multiple engagement phases. In this role, you will assess/support clients’ security posture, develop recommendations to enhance their programs and technologies, and implement recommendations outlined in master plans. This role blends technical capabilities with analysis and technical support.
The role requires a wide range of duties, including onsite/online assessments, compliance and standards reviews, security architecture analyses, plan development, and technology implementation and integration. The role also supporting our Industrial Cyber Security Lead in analysis, risk management workshops, as well as the ability to write a customer maturity analysis.
The Industrial Cybersecurity Analyst demonstrates capabilities with minimal level of oversight from more senior level professionals. The scope and size of projects they contribute to are generally medium to large or they may own a small to moderate portion of a larger project.
The Team
Black & Veatch’s Strategic Advisory & Lifecycle Resiliency Services are an integrated portfolio of strategic consulting and operation resiliency services that apply across the client’s entire investment-to-operations lifecycle commitments. Included are Strategic Advisory, Industrial Cybersecurity, and Operating Assets.
Key Responsibilities
Technical Consulting and Implementation Capabilities:
+ Assess people, process, and technical dimensions of client cybersecurity posture.
+ Develops and write master plans that combine analyses, reviews, and recommendations of client industrial cyber programs, technologies, and networks.
+ Assist workshops, data collection, tabletop exercises and client interviews.
+ Assist asset and vulnerability scanning of customer networks, including the installation of scanning and monitoring technologies.
+ Assist walk-downs of client sites to assess cyber and physical security postures.
+ Applies industrial cybersecurity standards and regulatory requirements (e.g., NERC CIP, NIST, IE62443) to customer programs.
+ Assist technical (e.g., segmentation, hardening, technology integration) and programmatic (e.g., policies, response plans) implementation of master plans and recommendations.
+ Contributes to quality review on own engagements.
+ Develop applicable knowledge bases by using best practices to redefine tools and techniques. Outline specific performance measures, targets, and goals to articulate the business case for realized efficiencies or added value.
+ Challenge client’s current strategy and direction through persuasive discussions. Define competitive advantage and achievable value to the client through use of the strategic change components and metrics. Formulate issue-based hypotheses and develop analytical plan for testing. Contribute to analysis of impact of strategic changes by defining linkages and interdependencies.
+ Utilize specialized knowledge to produce complex work products and solutions across all phases of an engagement.
+ Anticipate and resolve technical problems with minimal technical assistance from others.
+ Develop, present, and defend conclusions, recommendations, and implementation plans.
+ Identify technical issues impacting an engagement and proposes solutions.
+ Analyze and apply best practices knowledge of the industry.
+ Contribute to the development of service packages as part of the team’s service offerings.
Management Responsibilities
Individual Contributor
Minimum Qualifications
+ Bachelor's Degree or relevant work experience
+ 7+ years experience in a business/consulting environment
+ All applicants must be able to complete pre-employment onboarding requirements (if selected) which may include any/all of the following: criminal/civil background check, drug screen, and motor vehicle records search, in compliance with any applicable laws and regulations.
Preferred Qualifications
+ Experience at customer sites
+ Proven experience with OT penetration testing and/or red teaming
+ Experience with OT Security-by-design and/or new OT in construction
+ Proven ability to install monitoring technologies (e.g., Nozomi, Dragos, Tenable, Claroty)
+ Experience scoping technical projects.
+ Proven ability to assess security architectures of OT networks.
+ Direct experience in planning and facilitating risk workshops, table-top exercises, and other client-facing work sessions.
+ Experience conducting maturity and technical assessments.
+ Proven team leadership and management experience
+ Graduate degree preferred.
Certifications
+ Other relevant cybersecurity certifications (e.g., Nozomi, Fortinet, Dragos, Tenable) – preferred
+ CompTIA Security+ SANS Certificate in relevant to OT Cyber Security such as GICSP, GICP, ACS, GSEC, GRID, GCIH, CEH, CISM
+ CISSP
+ ISA/IEC 62443 suite of certifications
Work Environment/Physical Demands
+ Office environment with a hybrid work schedule (3 days in office and 2 days remote) or client site
+ Work involves frequent finger/hand manipulation in using a keyboard and mouse.
+ Work may involve stairs, walking, long moments of standing.
Salary Plan
CST: Consulting
Job Grade
004
Black & Veatch endeavors to makeaccessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process because of a disability, please contact the Employee Relations Department at +1-913-359-1622 or via our. This contact information is for disability accommodation requests only; you may not use this contact information to inquire about the status of applications. General inquiries about the status of applications will not be returned.
Black & Veatch is committed to being an employer of choice by creating a valuable work experience that keeps our people engaged, productive, safe and healthy.
Our comprehensive benefits portfolio is a key component of this commitment and offers an array of health care benefits including but not limited to medical, dental and vision insurances along with disability and a robust wellness program.
To support a healthy work-life balance, we offer flexible work schedules, paid vacation and holiday time, sick time, and dependent sick time.
A variety of additional benefits are available to our professionals, including a company-matched 401k plan, adoption reimbursement, tuition reimbursement, vendor discounts, an employment referral program, AD&D insurance, pre-taxed accounts, voluntary legal plan and the B&V Credit Union. Professionals may also be eligible for a performance-based bonus program.
We are proud to be a 100 percent ESOP-owned company. As employee-owners, our professionals are empowered to drive not only their personal growth, but the company's long-term achievements - and they share in the financial rewards of the success through stock ownership.
By valuing diverse voices and perspectives, we cultivate an authentically inclusive environment for professionals and are able to provide innovative and effective solutions for clients.
BVH, Inc., its subsidiaries and its affiliated companies, complies with all Equal Employment Opportunity (EEO) affirmative action laws and regulations. Black & Veatch does not discriminate on the basis of age, race, religion, color, sex, national origin, marital status, genetic information, sexual orientation, gender Identity and expression, disability, veteran status, pregnancy status or other status protected by law.
For our EEO Policy Statement, please click. If you’d like more information on your EEO rights under the law, please clickand.
Notice to External Search Firms : Black & Veatch does not accept unsolicited resumes and will not be obligated to pay a placement fee for unsolicited resumes. Black & Veatch Talent Acquisition engages with search firms directly for hiring needs.
Job Segment: Engineer, Engineering
Source : Black & Veatch