Cybersecurity & SCADAOT Systems Specialist

Cybersecurity & SCADA/OT Systems Specialist

Digital Transformation Operational Technology & Cybersecurity

Location: Centreville VA (On-site required for OT systems)
Preferred Training: DHS CISA Water Sector training

Position Overview

The Cybersecurity & SCADA/OT Systems Specialist provides expert consulting services supporting the Authoritys operational technology (OT) infrastructure and cybersecurity posture. This role bridges SCADA system administration and OT cybersecurity assessment activities ensuring secure and reliable operations across the Authoritys AVEVA-based SCADA environment and PI System data historian.

The specialist will conduct cybersecurity assessments aligned with NIST SP 800-53 and NIST SP 800-82 frameworks support OT network security improvements and help integrate operational data with enterprise systems including CMMS GIS LIMS and Power BI platforms. The ideal candidate has strong hands-on experience with AVEVA platforms and demonstrated expertise performing cybersecurity assessments within industrial control systems or critical infrastructure environments.

Key Responsibilities

SCADA / OT Systems Administration

• Provide administration configuration and troubleshooting support for AVEVA System Platform (Application Server / InTouch HMI) and AVEVA PI System components including PI Data Archive Asset Framework PI Vision and PI Analytics.
• Develop integrations that provide operational data feeds to reporting platforms including Power BI and enterprise dashboards.
• Support development of predictive and proactive process control models using PI Analytics and event frames.
• Implement digital twin scenarios for operational testing and optimization.
• Manage SCADA change control processes including testing version management and documentation.
• Integrate SCADA data with enterprise systems including CMMS (Oracle JD Edwards) LIMS (Clinisys) and GIS (ArcGIS).

Cybersecurity Assessment & Risk Management

• Conduct IT/OT cybersecurity assessments using NIST SP 800-53 and NIST SP 800-82 frameworks with reference to ISA/IEC 62443.
• Inventory OT assets including PLCs RTUs HMIs historians and network infrastructure.
• Identify vulnerabilities related to network segmentation unsupported software remote access risks and supply chain exposures.
• Develop risk registers and remediation roadmaps aligned with operational risk tolerance.
• Recommend OT network architecture improvements such as DMZ implementation and Purdue Model alignment.

Policy Governance & Security Programs

• Develop cybersecurity policies and standards for OT environments including patch management incident response remote access and removable media policies.
• Provide cybersecurity awareness training tailored for OT operators and maintenance personnel.
• Support IT governance initiatives including vendor evaluation criteria and lifecycle management standards.
• Monitor cybersecurity advisories from organizations such as CISA WaterISAC and EPA.

Incident Response & Security Monitoring

• Develop or review OT incident response plans including ransomware and operational disruption scenarios.
• Conduct tabletop exercises with operations and IT teams.
• Support evaluation and implementation of OT security monitoring platforms (e.g. Dragos Claroty Nozomi).

Documentation & Reporting

• Produce technical assessments architecture diagrams and executive reports.
• Maintain configuration documentation for SCADA and OT systems.
• Provide status updates and cybersecurity posture reports to leadership and governance committees.

Required Qualifications

• 7 years of professional experience across SCADA/OT systems and cybersecurity.
• 3 years of hands-on experience with AVEVA System Platform and AVEVA PI System.
• Experience conducting OT cybersecurity assessments using NIST SP 800-82 NIST SP 800-53 or ISA/IEC 62443.
• Strong knowledge of OT network architecture and industrial protocols such as Modbus DNP3 and OPC-UA.
• Experience identifying cybersecurity vulnerabilities in ICS/SCADA environments.
• Strong written communication skills with the ability to produce technical and executive-level reports.
• Experience supporting critical infrastructure sectors such as water wastewater or energy.

Preferred Qualifications

• AVEVA System Platform or PI System certification.
• Cybersecurity certifications such as GICSP CISSP or CISM.
• ISA/IEC 62443 cybersecurity certificate program completion.
• DHS CISA water sector cybersecurity training.
• Experience implementing OT monitoring platforms such as Dragos Claroty or Nozomi.
• Familiarity with EPA cybersecurity guidance and AWIA risk assessment requirements.
• Experience developing digital twin models for industrial process optimization.

Key Technical Skills

• AVEVA System Platform (Application Server / InTouch HMI)
• AVEVA PI System (Data Archive Asset Framework PI Vision Analytics)
• NIST SP 800-53 / NIST SP 800-82
• ISA/IEC 62443
• OT Network Architecture
• Industrial Protocols (Modbus DNP3 OPC-UA)
• ICS Risk Assessment
• Microsoft Power BI / PI DataLink
• Incident Response Planning
• OT Security Monitoring Platforms
• Technical Report Writing

Working Conditions

Work will primarily be performed on-site at the Authoritys facilities in Centreville Virginia due to the operational technology environment. Contractors must comply with all safety workplace conduct and security policies. All deliverables and documentation become property of the Authority upon final acceptance.