Cybersecurity Engineer

We power, cool, protect and connect the technology of the world's well-known hyperscalers, cloud providers and large enterprises. Our data centers have evolved in innovative ways to deliver dramatic gains in reliability, efficiency and sustainability in flexible environments that can scale as quickly as the market demands.

This role involves getting your hands dirty and helping to design, build, and maintain cybersecurity infrastructure in a modern data center. You will be part of a team responsible for protecting a rapidly expanding global enterprise.

• Audit the Industrial Control System / Operational Technology (ICS/OT) environment and perform risk/vulnerability assessments leading to the development of an enterprise strategy/design plan.

• Lead implementation (hands-on configuration) of the cybersecurity ICS/OT systems.

• Research, classification, and root cause analysis of security events that occur within the environment.

• Conducting cyber mission dependency, criticality, mission failure, and adversary cyberattack scenario analyses to inform design of OT resilient architectures.

• Developing and operationalizing OT defensive tactics, techniques, and procedures (TTPs) for detecting and responding to cyber threats.

• Collaborating with different departments to remediate and validate remediation of the vulnerabilities or identified issues.

• Maintain and create documentation as needed.

• Perform assessments against best practices and industry benchmarks including participating in audits.

• Bachelor's degree in Cybersecurity, Computer Science, Engineering, or related focused technical training or 4 additional years of engineering experience that may have been acquired in the military or public sectors.

• 3 years of experience performing security assessments in an OT environment.

• Strong understanding of cybersecurity frameworks for ICS/OT environments.

• Strong understanding of OT network communication protocols and industrial networking topologies.

• Familiarity with NIST (National Institute of Standards and Technology) Special Publication Revision 2, Computer Security Incident Handling Guide.

• Familiarity with NIST (National Institute of Standards and Technology) Special Publication 800-82.

• Comprehensive knowledge of internet protocols, firewalls, proxies, and intrusion detection/prevention systems.

• Familiarity/Knowledge of the Perdue Enterprise Reference Architecture (PERA).

• Certifications for SANS (SysAdmin, Audit, Network and Security) GIAC (Global Information Assurance Certification) Global Industrial Cyber Security Professional (GICSP), GIAC Response and Industrial Defense (GRID), Critical Infrastructure Protection are preferable.

• Certified SCADA Security Architect (CSSA) preferable.

• Understanding of MITRE ATT&CKS for ICS or NERC CIP (North American Electric Reliability Corporation Critical Infrastructure Plan) frameworks.

• Understanding of general cybersecurity frameworks (ISO IEC 27001/27002, ISO 15408, NIST Cybersecurity Framework (CSF), NIST SP800-53), and Guide to Industrial Control Systems (ICS) Security (NIST SP800-82).

• A working knowledge of industrial control systems (e.g., Distributed Control System (DCS), Programmable Logic Controller (PLCs), Supervisory Control and Data Acquisition (SCADA), etc.).

• Demonstrable understanding of project/program management techniques and methods.

• Strong Microsoft Excel skills required.

• Excellent written and verbal communication skills with transparent and timely communication.

• Security Certifications such as ISC2 Certified Information Systems Security Professional (CISSP), CompTIA Security+, CompTIA Network + or ISACA Certified Information Security Manager (CISM)

• ISA/IEC 62443 Cybersecurity Certificates preferable

• EC Council Certified Ethical Hacker (CEH), or Formal IT Security/Network Certification such as SANS GIAC Certified Intrusion Analyst (GCIA), SANS GIAC Network Forensic Analyst (GNFA)

• Data Center experience is strongly preferred, but not required

• Experience with one or more of the following:

  • Building Management Systems (BMS)

  • Mobile

  • Architectures including Windows or Linux server software and technologies

  • HA and redundancy configurations

  • Cloud and virtualization software and services

  • Hyper scaling

We operate with No Ego and No Arrogance. We work to build each other up and support one another, appreciating each other's strengths and respecting each other's weaknesses. We find joy in our work and each other, actively seeking opportunities to inject fun into what we do. Our hard and efficient work is rewarded with an above market total compensation package. We offer a comprehensive suite of health and welfare, retirement, and paid leave benefits exceeding local expectations.

Throughout the year, the advantage of being part of the team is evident with an array of benefits, recognition, training and development, and the knowledge that your contribution adds value to the company and our community.

We are always keen to speak to people who connect with our mission and values.