Operational Technology (OT) Security Engineer

Operational Technology (OT) Security Engineer
Position Overview
We are seeking an experienced Operational Technology (OT) Security Engineer to support the protection and resilience of critical infrastructure systems within a Department of Defense (DoD) environment. This role focuses on securing industrial control systems (ICS), SCADA environments, and converged IT/OT networks, ensuring compliance with federal cybersecurity standards while maintaining operational continuity.
The ideal candidate will bring deep expertise in OT cybersecurity, risk management, vulnerability assessment, and compliance frameworks, along with the ability to operate effectively in mission-critical environments.

Hard Requirements (Must Have)

• Minimum seven (7) years of relevant OT Cybersecurity experience
• Active DoD Secret Clearance and eligibility for IT-II Non-Critical Sensitive (Tier 3 / T3) clearance
• ICS/OT Cybersecurity Certification (e.g., ICS300 or equivalent industrial cybersecurity certification)
• Forescout training/course completion
• DLA Computing Environment (CE) Certification - Must possess one of the approved certifications:
  • ICS Cybersecurity (300-level)
  • AWS Certified Solutions Architect - Associate
  • GIAC Certified Windows Security Administrator (GCWN)
  • Infoblox Core DDI Configuration and Administration
  • ISA Certified Control System
  • Microsoft Certified: Azure Administrator Associate
  • Microsoft Certified Solutions Associate (Windows Server 2016)
  • Microsoft 365 Messaging Administrator Associate
  • MS Active Directory Identity & Networking (2016)
  • Oracle Cloud Infrastructure Foundations (2020 or 2025 Associate)
• DoD 8570 IAT Level II Certification - Must possess one of the following:
  • CCNA Security
  • CySA+
  • GICSP
  • CompTIA Security+ CE
  • Certified Network Defender (CND)
  • SSCP

Key Responsibilities

• Secure and maintain OT environments including SCADA, ICS, DCS, PLCs, HMIs, RTUs, and field devices
• Conduct vulnerability assessments across OT and IT systems using tools such as Nessus, ACAS, Qualys, Forescout Technologies, and EyeInspect
• Develop, maintain, and validate cybersecurity documentation and artifacts
• Manage and track POA&M entries, ensuring remediation actions are documented and milestones are met
• Perform OT-specific risk assessments and recommend mitigation strategies aligned to operational constraints
• Support DoD cybersecurity inspections and compliance initiatives
• Deploy and tune OT security monitoring and anomaly detection solutions
• Develop and implement incident response plans tailored to OT environments
• Support secure configuration baselines, system hardening, and compliance enforcement
• Coordinate patching and firmware updates while minimizing operational disruption
• Generate audit-ready reports and brief technical findings to leadership

Required Technical Expertise

• OT communication protocols (e.g., Modbus/TCP, DNP3, BACnet, IEC 61850, EtherNet/IP, ICCP)
• OT architectures including segmentation, firewalls, IDS/IPS, and network monitoring
• Secure remote access technologies for OT environments
• Vulnerability management, asset visibility, and scanning platforms
• OT cybersecurity frameworks such as:
  • National Institute of Standards and Technology (NIST CSF)
  • ISA/IEC 62443
  • NERC CIP
• DoD cybersecurity requirements including STIGs, IAVMs, and configuration guidance
• Incident response, forensic techniques, and threat detection in OT systems
• Enterprise patch management and change management processes

Desired Skills & Capabilities

• Experience bridging IT and OT cybersecurity requirements
• Ability to translate technical risks into actionable recommendations
• Strong analytical and problem-solving skills
• Proficiency with tools such as Microsoft Excel, Access, Power BI, and Power Platform
• Experience developing automation workflows for compliance and remediation
• Understanding of supply chain and vendor risk in OT environments
• Strong written and verbal communication skills, including briefing senior leadership
• Ability to work independently and within cross-functional teams

Work Environment

• Support to a DoD operational environment
• May require interaction with both engineering and mission operations teams
• Emphasis on maintaining system availability while implementing cybersecurity controls

#cjjobs
Marathon TS is committed to the development of a creative, diverse and inclusive work environment. In order to provide equal employment and advancement opportunities to all individuals, employment decisions at Marathon TS will be based on merit, qualifications, and abilities. Marathon TS does not discriminate against any person because of race, color, creed, religion, sex, national origin, disability, age or any other characteristic protected by law (referred to as "protected status ").