Cyber Security SME

Position Overview: We are seeking a Cyber Security Subject Matter Expert (SME) to join our Instrumentation and Controls (I&C) design group. This dual-role position involves providing both design and Cyber Security Program compliance support for projects managed within the I&C design department.

Primary Responsibilities:

• Provide I&C Design project support by evaluating technical designs to ensure compliance with the Cyber Security Program.
• Stay updated on evolving cyber processes and interface with site and fleet cyber organizations to maintain project design compliance.
• Support Instrumentation and Control Engineering and Cyber Security Program through document preparation, reviews, and hands-on equipment support.
• Implement support for complex digital design activities, ensuring proper installation, configuration, testing, and cyber compliance.
• Obtain necessary qualifications to support network systems, components, and activities as required by site/fleet leadership.

Cyber Security Specialist Responsibilities:

• Develop and review Cyber Security Plan documents and support digital projects.
• Perform Cyber Security Direct and Indirect Assessments for Critical Digital Assets (CDA).
• Develop Access Control Forms and support CDA Walkdown plans.
• Support procedure AD-EG-ALL-1931 for Digital Asset (DA)/CDA list documentation.
• Update Equipment Database (EDB) for hardware and software tags.
• Determine CDA capabilities and coordinate projects.
• Create baseline documentation for all CDAs and complete Configuration Control Summary (CCS) sheets.
• Extract information from baselines, images, SIEM or IDS reports, and plant drawings.
• Run vulnerability scanners against CDAs and document physical connections.
• Interface with other DPS SMEs and perform back-ups of CDAs.
• Document security controls mitigated by Monitoring Systems and Cyber Procedures.
• Assist in scanning/managing Portable Media and Mobile Devices.
• Perform wireless scans/walkdowns and maintain, troubleshoot, and patch systems within the Digital Process systems group.
• Support Operating Experience (OE) actions from cyber security inspections and audits.
• Harden Windows and Linux workstations and servers.
• Review industry guidance for cyber security and apply principles to critical systems and CDAs.
• Review cyber security policies, standards, and procedures.
• Provide design inputs and SME reviews for digital cyber attributes of activities.
• Perform hands-on keyboard activities on site digital equipment in accordance with approved site procedures.
• Perform work management administrative activities and testing on digital equipment.

Basic Qualifications:

• Bachelor’s degree in Electrical Engineering, Computer Engineering, Computer Science, or Information Technology, or equivalent work experience.
• 10 years of industry experience.
• Ability to obtain and maintain unescorted access to a nuclear facility (General Employee Training, Radiation Worker Training, Security Clearance checks, and subject to the site’s Fitness for Duty Program).
• Strong oral and written communication skills within a professional environment.
• Skilled in researching engineering and design issues, evaluating alternatives, making sound recommendations, and preparing and presenting recommendations.
• Ability to work effectively in a team environment.