OT Security Consultant- Remote (Anywhere in the U.S.)

As an Operational Technology (OT) Security Consultant, your primary responsibilities revolve around performing challenging and complex OT services, sharing knowledge with team members, and contributing to growth and improvement. The OT Security Consultant is a member of the OT Team. OT Security Consultants are encouraged to interact with the OT Leadership Team and contribute to the OT Practice's future success. GuidePoint Security’s OT service offerings are perpetually evolving in response to emerging threats and diverse client needs. Your creativity and expertise will assist the Practice in adapting to this rapidly changing environment.

Role Requirements

• Deliver OT professional services, including but not limited to OT Network Security and Design Implementation Reviews, Validated Architecture and Design Reviews (VADR), OT Embedded Engineer services, and a variety of Custom Services

• Author comprehensive services deliverables that are proficiently tailored to both technical and managerial audiences and fully detail the technical execution, core deficiencies, business impact, and realistic remediation strategies

• Contribute to marketing initiatives via activities such as publishing research, speaking at industry conferences, authoring blog articles and whitepapers, and hosting webinars

• Perpetually strengthen relevant skills, knowledge, and abilities to stay at the forefront of the information security industry

• Foster strong client relationships and represent GuidePoint well by providing interactive and collaborative support, information, and guidance to ensure delivery of maximum value

• Maintain a strong desire to learn, adapt, and improve along with a rapidly-growing company

• Perform other duties as assigned

Education, Credentials, and Experience

• Knowledge of ISA/IEC 62443, NIST-CSF, NERC CIP, NIST 800-82, etc.

• Knowledge of the Purdue Model Framework

• InfoSec community involvement, such as conference speaking, blog/whitepaper authoring, and podcast speaking/producing experience, is strongly preferred

• Minimum of three (3) years of experience performing security services related to OT

• Minimum of two (2) years of experience in an enterprise-level consulting services role

• Over five (5+) combined years of IT, networking, and information security experience is strongly preferred

• Operational Technology Penetration Testing experience is preferred

• Global Industrial Cyber Security Professional (GICSP) or GIAC Response and Industrial Defense (GRID) certification is preferred

Knowledge, Skills, and Abilities

While it may not be feasible to satisfy every desired attribute listed below perfectly, the OT Security Consultant is expected to possess the vast majority of these attributes:

• Able to be lead consultant with technical oversight

• May need occasional assistance from a senior team member during report review meetings when describing more complex scenarios

• Writes reports that typically require a fair amount of re-writing/edits before delivery to clients

• Performs tasks in a timely manor (e.g., timesheets, reports, weekly status reports) and can communicate issues efficiently if any arise

• Ability to handle tricky client/project situations with assistance from senior team member

• Strong knowledge of OT related attacks