Operational Technology Security Engineer

Enterprise Solutions and Management (ESM) is a rapidly growing government contractor that provides strategic IT services that meet mission needs for Defense and Federal customers. We are hiring an Operational Technology Security Engineer for an exciting opportunity.

Job Description and Responsibilities

Provides support on specialized information assurance challenges within operational technology (OT) environments by executing a range of routine project tasks. Integrates OT processes and methodologies with information systems to address complex system-wide and cybersecurity-related issues. Evaluates and analyzes information security requirements while applying structured, analytical approaches to improve workflow, organizational efficiency, and planning. Contributes security engineering expertise across the full system lifecycle, including planning, design, development, testing, demonstration, and integration of OT systems.

Required Knowledge, Skills and Abilities (KSA)

• Expertise in OT communication protocols (e.g., Modbus/TCP, EtherNet/IP, IEC 61850, DNP3, BACnet) and industrial networking
• Strong understanding of OT environments, including SCADA, ICS, DCS, PLCs, HMIs, RTUs, and field devices
• Knowledge of secure OT network architecture, including segmentation, firewalls, IDS/IPS, and monitoring solutions
• Experience with secure remote access and maintenance practices for OT systems
• Proficiency in OT cybersecurity frameworks and compliance standards (e.g., NIST CSF, ISA/IEC 62443, NERC CIP, DoD requirements)
• Experience with vulnerability management, including assessments, scanning tools (e.g., ACAS, Nessus, Qualys), and POA&M tracking
• Ability to perform OT risk assessments and implement risk-based mitigation strategies aligned with operational constraints
• Experience with system hardening, patch management, configuration baselines, and change management processes
• Capability to develop incident response plans, conduct forensic analysis, and deploy/tune OT security monitoring solutions
• Strong analytical, reporting, and communication skills, including developing cybersecurity documentation, dashboards, and executive briefings

Desired KSA

• Be a positive, self-motivated, and proactive person with the ability to adapt to change and tolerate stressful situations
• Candidate must communicate effectively with team members, team lead, management, and government customer
• Must have the ability and desire to research and develop creative solutions to unique problems with minimal supervision

Minimum Training, Education, and Certifications

• Seven (7) years experience
• IAT II or higher certification
• ICS300, relevant operation technology or ICS certification
• Forescout DLA Computing Environment

Minimum Clearance

• Secret

Physical Requirements

• Required to stand, walk and sit; communicate verbally both in person and by telephone; use hands to finger, handle or feel objects or controls; reach with hands and arms. Specific vision abilities required by this job include close vision, distance vision, depth perception, color vision and the ability to adjust focus.
• Physical demands associated with this position include extensive walking (including stairs) throughout offices and between buildings. May require use of public transportation, personal or Government vehicle to drive to local and/or remote office locations

Additional Requirements

• Other duties as assigned

ESM provides equal employment opportunity to all individuals regardless of race, color, creed, religion, gender, age, sexual orientation, national origin or ancestry, disability, genetic information, veteran status, gender identification or any other characteristic protected by state, federal or local law.