Jobs · Information Technology · Maryland

Operational Technology (OT) Cybersecurity Engineer

WSP in the U.S. · Baltimore, MD · 3 wk ago
HybridInformation Technology$102k–$185k/yrFull-time

Core Technical Responsibilities

  • Conduct OT cybersecurity risk assessments, threat modeling, and vulnerability evaluations aligned with IEC 62443, TS 50701, NIST 800-82/53, and relevant transit/rail standards.
  • Review supplier/OEM cybersecurity documentation such as SSPs, IRAs, DCRAs, zoning/conduit models, SBOM/HBOM, and patch management plans.
  • Support secure OT system and network architecture development including segmentation, DMZ design, boundary protection, and access control strategies.
  • Aid in OT asset inventory, system baselining, and network visibility activities to improve cybersecurity situational awareness.
  • Develop and recommend mitigation strategies, corrective actions, and cybersecurity controls for identified risks and vulnerabilities.
  • Support cybersecurity testing, commissioning, and configuration validation for OT systems, including controllers, network devices, and field hardware.

Project Support Responsibilities

  • Contribute to cybersecurity procurement documentation including scopes, requirements, and acceptance criteria.
  • Develop cybersecurity master plans, monitoring strategies, and operational security documentation.
  • Participate in OT tabletop exercises and incident response activities in coordination with client teams.

Collaboration & Coordination

  • Work collaboratively with engineering, systems integration, operations, and safety teams across project life cycles.
  • Provide clear technical documentation and contribute to stakeholder communication as required.

Required Qualifications

  • Bachelor’s degree in engineering, cybersecurity, computer science, or a related field.
  • 7-10+ years of OT cybersecurity experience, including 3+ years in transit, rail, or critical infrastructure environments.
  • Hands-on experience with rail/transit OT systems (CBTC, SCADA, PLCs, traction power, tunnel ventilation, fire/life safety, fleet charging, V2I/V2X, and related systems).
  • Deep knowledge of relevant cybersecurity standards including IEC 62443, TS50701, IEC 63452, NIST 800-82/53, ISO frameworks, UNECE, TS, and APTA guidelines.
  • Demonstrated expertise in threat modeling, penetration testing, and OT network security; experience securing OTA, remote diagnostics, and air-gapped environments.
  • Familiarity with OT security tools and monitoring technologies (e.g., Nozomi, Claroty, Dragos, protocol analysis tools).
  • Professional certifications such as CISSP, GICSP, ISA/IEC, and/or CompTIA Security+.
  • Strong communication, stakeholder engagement, and technical writing skills for client-facing environments.
  • Experience supporting cybersecurity-related compliance for U.S. transit regulatory bodies (FTA, FRA, TSA).
  • Ability to work independently and collaboratively across disciplines, delivering cybersecurity solutions in complex operational environments.
  • Understanding of OT logging, telemetry, and secure event collection requirements used to support monitoring, detection, and incident response.

Preferred Qualifications

  • Master’s degree in systems engineering or cybersecurity.
  • Demonstrated success in management consulting or advisory roles.
  • Long-standing experience in the cybersecurity sector with a preference within the Transportation market.
  • Successful candidates will be able to confidently speak, lead client-facing meetings, and attend prominent industry committees.
  • Specifically, system familiarity should include SCADA, PLCs, and industrial systems used in transit infrastructure.
  • Specific examples and lessons learned from cybersecurity projects showcasing understanding of the latest frameworks and standards, threat detection and prevention best practices.
  • Knowledge of secure development lifecycle and supply-chain cybersecurity practices (e.g., IEC 62443-4-1, firmware integrity, component assurance).

Similar jobs