Senior Cybersecurity Engineer - Industrial Controls

About Commonwealth Fusion Systems:

Commonwealth Fusion Systems is on a mission to deliver the urgent transition to fusion energy.

Combining decades of research, top talent and new technologies, we’re designing and building commercially viable fusion power plants. And working with policymakers and suppliers to build the energy industry of the future.

We’re in the best position to make it happen. Since 2018, we’ve raised over $2 billion in capital – more than any other fusion energy company in the U.S.

Now we’re looking for more thinkers, doers, builders, and makers to join us. People who’ll bring new perspectives, solve tough problems, and thrive as part of a team.

If that’s you and this role fits, we want to hear from you.

Join the power movement as a Senior Cybersecurity Engineer

The Senior Cybersecurity Engineer- Industrial Controls reports to the Director of Cybersecurity and is responsible for the security of operational technology (OT), industrial controls (ICS) systems and infrastructure at CFS. Working collaboratively with internal IT and OT teams, the Senior Cybersecurity Engineer-Industrial Controls plays a key role in implementing and maintaining a comprehensive OT cybersecurity program to secure operations. They will implement and administer networks, systems, and processes/controls needed to ensure that operations are properly secured, with a particular focus on Industrial control systems. The position also provides systems administration for ongoing IT cybersecurity operations, security advice to advance the cybersecurity program, and helps assess new systems and applications before they are implemented.

What you'll do:

• In partnership with IT, implement and administer security controls specific to OT environments, including those for firewalls, intrusion detection/prevention systems (IDS/IPS) and access controls
• Continuously monitor OT vulnerabilities and threats using specialized tools and techniques, such as CPS platforms
• Develop and maintain security policies and procedures for OT security best practices
• Respond and collaborate to security incidents efficiently and effectively, minimizing damage and restoring operations
• Contribute to the administration of IT cybersecurity tools that are related to OT/ICS cybersecurity(SIEM, IAM, PAM, EPP/EDR, etc.)
• Maintain current knowledge of new products and industry trends, and recommend enhancements and purchases that allow CFS to maintain a healthy and functional environment
• Provide technical consulting to management, business users, and technical associates to ensure that applications and platforms are secure
• Implement and maintain a security by design process with OT business units in order to effectively architect, design, and operate security controls and countermeasures; document the operation, use, and expected outputs of these systems
• Analyze and recommend security controls and procedures in business processes related to use of information systems and assets, and provide oversight to ensure compliance and alignment with security standards/frameworks (IEC 62443, NIST 800-82, and other relevant standards)
• Help promote a culture of cybersecurity awareness via outreach and training

What we’re looking for:

• Bachelor’s degree in Cybersecurity, Computer Science or equivalent experience
• Relevant certification in the Cybersecurity field (CISSP preferred)
• 5 years of Cybersecurity industrial controls experience
• Understanding of Industrial Control System (ICS) security principles and best practices (e.g., IEC 62443, NIST, NERC CIP)
• Knowledge of SCADA/HMI systems
• Proven experience implementing and administering security controls
• Ability to work in a fast-paced environment and prioritize tasks/projects
• Excellent analytical and problem solving skills, and attention to detail
• Evidence of personal focus on continuous learning

Bonus points for:

• 3 plus years experience in Operational Technology, (ICS, IIoT security)
• Experience collaborating with OT and IT teams to ensure secure integration
• Experience with OT security incident response
• SANS Institute Industrial Control Systems Security (GICSP) certification or (GRID) certification
• ISA Security Certified Automation
• Professional (CAP)
• IEC62443 Cybersecurity specialist
• Experience with ignition for inductive automation systems, knowledge of Siemens, Rockwell, Beckhoff OT technologies/protocols (Mobus, OPC, S7, etc.)

Must-have requirements:

• Ability to type, stand, and sit for extended periods of time
• Willingness to occasionally travel or work required nights/weekends/on-call
• Work in a facility that contains industrial hazards including heat, cold, noise, fumes, strong magnets, lead (Pb), high voltage, high current, pressure systems, and cryogenics