• In partnership with IT, implement and administer security controls specific to OT environments, including those for firewalls, intrusion detection/prevention systems (IDS/IPS), OT cybersecurity platforms, and access controls
• Continuously monitor OT vulnerabilities and threats using specialized tools and techniques
• Develop and maintain security policies and procedures for OT security best practices
• Respond and collaborate to security incidents efficiently and effectively, minimizing damage and restoring operations
• Contribute to the administration of IT cybersecurity tools (SIEM, DLP, IAM, PAM, EPP/EDR, MDM, etc.)
• Maintain current knowledge of new products and industry trends, and recommend enhancements and purchases that allow CFS to maintain a healthy and functional environment
• Provides technical consulting to management, business users, and technical associates to ensure that applications and platforms are secure
• Implement and maintain a security by design process with OT business units in order to effectively architect, design, and operate security controls and countermeasures; document the operation, use, and expected outputs of these systems
• Analyze and recommend security controls and procedures in business processes related to use of information systems and assets, and provide oversight to ensure compliance and alignment with security standards/frameworks (IEC 62443, NIST 800-82, and other relevant standards)
• Helps promote a culture of cybersecurity awareness via outreach and training

Required Qualifications:

• Bachelor's degree in Cybersecurity, Computer Science or equivalent experience
• Relevant certification in the Cybersecurity field (CISSP preferred)
• 5 years experience in Operational Technology, (ICS, IIoT security)
• Strong understanding of Industrial Control System (ICS) security principles and best practices (e.g., IEC 62443, NIST, NERC CIP)
• Working knowledge of SCADA/HMI systems
• Proven experience implementing and administering OT security controls
• Experience collaborating with OT and IT teams to ensure secure integration
• Ability to work in a fast-paced environment and prioritize tasks/projects
• Experience with OT security incident response
• Excellent analytical and problem solving skills, and attention to detail
• Evidence of personal focus on continuous learning

Preferred Qualifications:

• SANS Institute Industrial Control Systems Security (GICSP) certification or (GRID) certification
• ISA Security Certified Automation
• Professional (CAP)
• IEC62443 Cybersecurity specialist
• Experience with ignition for inductive automation systems, knowledge of Siemens, Rockwell, Beckhoff OT technologies/protocols (Modbus, OPC, S7, etc.)
• Ability to type, stand, and sit for extended periods of time
• Willingness to occasionally travel or work required nights/weekends/on-call
• Work in a facility that contains industrial hazards including heat, cold, noise, fumes, strong magnets, lead (Pb), high voltage, high current, pressure systems, and cryogenics
• #LI-Hybrid

CFS team members thrive in a fast-paced, dynamic environment and have demonstrated exceptional results through a range of different pursuits. We all tightly align with our company values of integrity, execution, impact and self-critique. As we grow, we are looking to add talented people who are mission driven and bring diverse perspectives and new ways of solving problems.

At CFS, we deeply value diversity and are an equal opportunity employer by choice. We consider all qualified applicants equally for employment. We do not discriminate on the basis of race, color, national origin, ancestry, citizenship status, protected veteran status, religion, physical or mental disability, marital status, sex, sexual orientation, gender identity or expression, age, or any other basis protected by law, ordinance, or regulation.