1898 Co. is a business, technology, and security solutions consultancy where experience and foresight come together to unlock lasting advancements. We innovate today to fuel our clients’ future growth, catalyzing insights that drive smarter decisions, improve performance, and maximize value. As part of Burns McDonnell, we draw on more than 120 years of deep and broad experience in complex industries as we envision and enable the future for our clients.

The Industrial Cybersecurity Consultant will be a treasured member of the 1898 Co. Security Risk Consulting practice. The 1898 Co. Security Risk Consulting practice is a premier OT/ICS/SCADA cybersecurity consulting practice whose mission is to serve humanity by improving the safety, security, and reliability of the world’s critical infrastructure – improving risk management through resiliency, situational awareness, and preparedness. The Industrial CybersecurityConsultant will be committed to will independently execute significant portions of projects addressing the security of Operational Technology (OT) systems consisting of Industrial Control Systems (ICS), Supervisory Control and Data Acquisition (SCADA), Programmable Logic Controllers (PLC), Discrete Process Control (DPC) systems, etc.

The Industrial Cybersecurity Consultant supports the execution of projects consisting of a variety of assessments (e.g., GAP/Maturity, Vulnerability, Risk, Threat, Firewall, etc.); secure architecture, design, and implementation of OT networks, solution implementation, and operations, respond and recover related services (incident response planning, disaster recovery planning, business continuity planning). The Industrial Cybersecurity Consultant will support cybersecurity programs at client sites across North America utilizing NERC CIP and the National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF), NIST Risk Management Framework (RMF), NIST 800-53, NIST SP800-82, NIST 800-30, DFARS, CMMC, and other key industry best practices and standards.

Job Duties:

Execute the planning, design, development, and implementation of technical controls, procedures, and policies associated with cybersecurity compliance and/or regulatory standards.Maintain the highest level of integrity, protecting the confidentiality and security of all clients and project information.Identify and diagnose operational issues and implement design alterations to address these issues.Conduct vulnerability assessments of OT networks for cybersecurity, risk management, and/or compliance purposes.Perform detailed, post-event analysis of unusual events, and direct needed procedure or process changes in response.Pursue, obtain, and maintain industry-recognized certifications related to cybersecurity such as ethical hacking, penetration testing, network engineering, Industrial Control System (ICS), Supervisory Control and Data Acquisition (SCADA), risk management, and others, as necessary.Resolve technical issues, analyze implications to the client’s business, and be able to communicate them with applicable stakeholders within the business.Develop policies procedures for secure process control network design, technical and design recommendations for implementing firewalls, unidirectional gateways, zero trust design, and other network security controls.Compiles technical documentation of network traffic as well as firewalls services/solutions, including explanations and diagrams.Work collaboratively with other groups and divisions inside of 1898 Co. and Burns McDonnell.All other duties as assigned.