DescriptionDo you love to develop and implement proofs-of-concept and prototype solutions to protect industrial control systems?
Are you searching for important work in defending U.S. critical infrastructure from persistent threats?
Are you passionate about analyzing and mitigating vulnerabilities in control systems?
If so, we're looking for someone like you to join our team at APL.
We are seeking an Industrial Control Systems (ICS) Security Research Engineer to help us create game-changing capabilities that enable U.S. infrastructure to be robust in the face of complex threats and determined adversaries. As a member of our team, you’ll contribute to shaping premier research facilities such as our CYPRESS Laboratory and provide expertise to DoD, DHS, and other sponsor programs. You will be joining a hardworking group of engineers and scientists who design, build, and invent capabilities to advance the state of the art in ICS resilience. We are passionate about continuously deploying our work into operational facilities to truly support our sponsors’ missions. We strive to foster an environment of creativity, diversity, and boldness, empowering our staff to design, develop and pursue solutions in their own unique ways.
As an ICS security research engineer...
- Your primary responsibility will be leading interdisciplinary teams to design and engineer cutting edge resilience solutions for industrial control systems.
- You will reverse engineer control system network protocols and engage in red teaming exercises
and adversary emulation. - You will work closely with teammates to test, deploy, maintain, and enhance software integrated with ICS testbeds.
- You will develop and present proposals, briefings, and reports to technical specialists, collaborators, and sponsors to influence important decisions.
QualificationsYou meet our minimum qualifications for the job if you...
- Possess a Bachelor's in computer science, computer engineering, electrical engineering, cybersecurity, information assurance, control and automation engineering, or other field related to the duties as described above.
- Have 8+ years of experience working with ICS devices, Supervisory Control and Data Acquisition (SCADA) technology, HMIs, cybersecurity, and risk management frameworks.
- Are skilled in designing automation control systems from customer specifications and installing, maintaining, servicing, testing, and troubleshooting local and field control devices, ICS hardware, and ICS software.
- Have working knowledge of networking concepts and technologies (TCP/IP, routers, switches, and network-connected devices, etc.), network security, virtualization, Software Defined Networking (SDN), embedded system firmware, real-time operating systems, or ICS protocols (Modbus, S7, BACnet, DNP3, OPC, CAN Bus, Profinet, Ethernet IP, etc.).
- Are deeply knowledgeable of industrial control systems environments, architectures, risks, threats, vulnerabilities, and frameworks.
- Have experience working with federal departments and agencies or their stakeholders (e.g., state/local/tribal/territorial governments) and critical infrastructure organizations (especially electric, gas, or water utilities).
- Can obtain an Interim Secret level security clearance by your start date and can ultimately obtain a Secret level clearance. If selected, you will be subject to a government security clearance investigation and must meet the requirements for access to classified information. Eligibility requirements include U.S. citizenship.
You'll go above and beyond our minimum requirements if you...
- Possess an MS, or PhD in computer science, computer engineering, electrical engineering, cybersecurity, information assurance, control and automation engineering, or related technical field.
- Have experience with policies, industry standards and federal guidelines to securing ICS and SCADA systems, such as NIST CSF, NIST 800-37, NIST 800-82, NIST 800-53, IEC 62443, or ISO.
- Possess Certified Automation Professional (CAP), Certified Control Systems Technician (CCTS), Global Industrial Cyber Security Professional (GICSP), ISO 27001 Auditor, or other ICS-related certification.
Why work at APL?
The Johns Hopkins University Applied Physics Laboratory (APL) brings world-class expertise to our nation’s most critical defense, security, space and science challenges. While we are dedicated to solving complex challenges and pioneering new technologies, what makes us truly outstanding is our culture. We offer a vibrant, welcoming atmosphere where you can bring your authentic self to work, continue to grow, and build strong connections with inspiring teammates.
At APL, we celebrate our differences and encourage creativity and bold, new ideas. Our employees enjoy generous benefits, including a robust education assistance program, unparalleled retirement contributions, and a healthy work/life balance. APL’s campus is located in the Baltimore-Washington metro area. Learn more about our career opportunities at http://www.jhuapl.edu/careers.
About UsAPL is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, creed, color, religion, sex, gender identity or expression, sexual orientation, national origin, age, physical or mental disability, genetic information, veteran status, occupation, marital or familial status, political opinion, personal appearance, or any other characteristic protected by applicable law.
APL is committed to promoting an innovative environment that embraces diversity, encourages creativity, and supports inclusion of new ideas. In doing so, we are committed to providing reasonable accommodation to individuals of all abilities, including those with disabilities. If you require a reasonable accommodation to participate in any part of the hiring process, please contact Accommodations@jhuapl.edu. Only by ensuring that everyone’s voice is heard are we empowered to be bold, do great things, and make the world a better place.
The referenced pay range is based on JHU APL’s good faith belief at the time of posting. Actual compensation may vary based on factors such as geographic location, work experience, market conditions, education/training and skill level with consideration for internal parity. For salaried employees scheduled to work less than 40 hours per week, annual salary will be prorated based on the number of hours worked. APL may offer bonuses or other forms of compensation per internal policy and/or contractual designation. Additional compensation may be provided in the form of a sign-on bonus, relocation benefits, locality allowance or discretionary payments for exceptional performance. APL provides eligible staff with a comprehensive benefits package including retirement plans, paid time off, medical, dental, vision, life insurance, short-term disability, long-term disability, flexible spending accounts, education assistance, and training and development. Applications are accepted on a rolling basis.
Minimum Rate$90,000 Annually
Maximum Rate$330,000 Annually