Nuclear Regulatory Cyber Security Engineer

Position: Nuclear Regulatory Cyber Security Engineer

Location: Remote – (will require some travel to headquarters in Rockville, MD or plant locations)

Travel Expectations: 10% (as needed for project assignment)

Pay Range: 150K to 189K B.O.E.

Hours: Standard office hours are 8:00am ET to 5:00pm ET, Monday -Friday

Benefits: Day 1 robust benefits package that includes a 401K plan with employer match,

Medical/Dental /Vision Insurance, Life and Disability Insurance, Paid Time Off, and a

Tuition Reimbursement/Professional Development policy that supports the

continuing education of our employees. Relocation assistance available for

qualified candidates

JOB DESCRIPTION

This position leads the development and execution of cyber security engineering strategies and activities in support of the modular nuclear plant design and engineering teams. This role integrates the cyber security philosophy into the design of plant information and operational technology systems and is responsible for implementation and assessment of cyber security systems, supports the cyber security assessments of the reactor, and recommends solutions to cyber security issues. Experience with nuclear regulations is required (e.g. NEI 08-09; RG 5.71).

JOB REQUIREMENTS

• Bachelor’s degree in related field from an accredited institution is preferred and will be credited as five years of relevant experience. A Masters adds 2 additional years.
• Experience with nuclear cyber security regulations (e.g. NEI 08-09; RG 5.71).
• Typically, 15 total plus years of relevant experience in cybersecurity, network security, or related experience.
• One or more of the following qualifications is required: Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), GIAC (Global Information Assurance Certification), Certified Incident Handler GCIH, GIAC Certified Penetration Tester (GPEN), Global Industrial Cybersecurity Professional (GICSP) or equivalent.
• Must have expert knowledge and experience managing cybersecurity tools such as NDR, EDR, and SIEM.
• Previous work experience with Splunk is preferred.
• Experience with industrial control systems and operational technology is highly desired.
• Identity and Access Management technologies including Federation, Multi-Factor Authentication (MFA), and Public Key Infrastructure (PKI).
• Cloud technologies to include AWS, Azure, Docker, Kubernetes, and DevSecOps.
• Networking, Firewall, and software-defined networking.
• Integration of cybersecurity tools to support an Enterprise level Cybersecurity program.
• Leveraging Artificial Intelligence (AI), Machine Learning (ML), and Orchestration to secure the environment.