ICS​/OT Security Engineer III

Join to apply for the ICS/OT Security Engineer III role at TRISO-X.

4 days ago – Be among the first 25 applicants.

This role is responsible for the development and execution of cyber security engineering strategies and activities in support of plant design and engineering teams. This role integrates the cyber security philosophy into the design of plant information and operational technology systems and is responsible for implementation and assessment of cyber security systems, supports the cyber security assessments of Xe-100 systems, and recommends solutions to cyber security issues.

• Collaborate in strategic security relationships between internal resources and external entities to fully secure information, computer, network, and processing systems, including government, customers, vendors, and partner organizations.
• Apply industry experience to architect, develop, implement, maintain, and oversee cybersecurity tools and policies to protect X-energy business and plant operations information systems, including cloud governance and security.
• Where necessary, provide advanced support to help troubleshoot complex issues and architect new solutions.
• Construct and exploit threat intelligence to detect, respond, and defeat advanced persistent threats (APTs).
• Produce reports on all activities and incidents to help maintain day-to-day status, develop, and report on trends, and provide focus and situational awareness on all issues.
• Identify and remediate control weaknesses.
• Review data with firewall administrators, engineering, system administrators, and other appropriate groups to determine the risk of security events.
• Perform intermediate level information security analysis work.
• Develop plans to safeguard computer/server/network configurations and data files against accidental or unauthorized modification, destruction, or disclosure and to meet emergency data processing needs.
• Perform and review technical risk assessments of new and existing applications.
• Research, evaluate, and recommend systems and procedures to prevent, detect, containment, and correct data security breaches.
• Maintain professional demeanor and behavior at all times in all forms of communication.
• Perform other duties as assigned by manager.

• Typically, five plus years of progressive experience in cybersecurity, network security or related experience.
• Experience in OT cybersecurity architecture design and strategy within the Power Generation, Gas and Electric business (specifically Industrial Control Systems) (Preferred)
• Ability to lead and execute the OT cybersecurity strategy for OT business areas (Preferred)
• In-depth knowledge of OT cybersecurity architecture that supports various components of NIST cybersecurity framework capabilities, such as cybersecurity engineering, vulnerability management, identity management, threat intel, prediction and detection, as well as response and recovery (Preferred)
• Expertise with OT domain specific cybersecurity vendors and tools, security evaluation processes and assessing risk & developing mitigation plans (Preferred).
• Must have direct knowledge and experience managing cybersecurity tools such as NDR, EDR, and SIEM.
• GICSP, GCIH, GPEN, CISSP, or equivalent, or other specific training or experience in cyber security operations, design, and engineering.
• Familiarity with standard principles and practices of cybersecurity design for safeguarded plants and facilities.
• Networking/IT systems engineering background and experience.
• Knowledge of Federal requirements for Cyber security for Critical Infrastructure Protection (CIP).
• Knowledge of IEEE and IEC standards related to cyber security in embedded system and control systems.
• Proficiency in developing and reviewing threat assessments and using results of those assessments to develop comprehensive cyber security designs.
• Proficiency developing cybersecurity programs, procedures, and processes.
• Understanding of nuclear engineering, licensing, regulatory, quality, and safety requirements preferred.
• Knowledge or experience in software engineering, software development, or utilization of a software development toolset.

Oak Ridge, TN (outside of Knoxville)

Potential 10% for project assignment or headquarters visit.

8:00am‑5:00pm Monday through Friday

4 days a week in office

As required by Maryland and other applicable state law, X Energy, LLC (X-energy) lists the expected compensation range for a publicly advertised job opportunity based upon the job requirements (e.g. education/training, experience, skill sets, etc.). Individual candidates who meet the job requirements for the posted position will be offered a salary within this range based on their respective levels of education/training, experience, and other qualifications unique to them.

Salary ranges may vary based on the specific office location and region referenced in the posting to take into consideration…