Physical, Embedded, and Control Systems Security - Leadership
Company: Department of Homeland Security
Location: Idaho Falls
Posted on: May 4, 2024
Job Description:
The Department of Homeland Security (DHS) is recruiting
professionals to support a range of leadership roles in Physical,
Embedded, and Control Systems Security (PECSS) as well as those
focused on Senior ICS Manager, ICS Security Lead, Physical Security
Manager, and Senior Embedded Systems Cybersecurity Engineer. All
positions are in the DHS Cybersecurity Service.Cybersecurity
Service (DHS-CS) uses a multi-phase assessment process to qualify
applicants seeking employment through the DHS-CS. Given the
ever-advancing nature of cybersecurity and the ongoing need for
cybersecurity talent, DHS-CS uses "Talent Pools" to pull qualified
applicants (i.e., individuals who have successfully completed the
multi-phase assessment process for their capability and career
track/level) for consideration for these jobs.
This announcement is being used to fill the Physical, Embedded, and
Control Systems Security (PECSS) Talent Pool. By applying to this
job announcement, you are opting to be part of the DHS-CS Talent
Pool for ongoing consideration for employment for relevant open
jobs and will remain eligible for consideration for up to one year
from the date of completion.
There are a variety of Physical, Embedded, and Control Systems
Security (PECSS) opportunities across the Department, including
supporting several specialized programs at the DHS Office of
Strategy, Policy, and Plans (PLCY), the Cybersecurity and
Infrastructure Security Agency (CISA) , DHS Office of the Chief
Information Officer (OCIO) , and the Federal Emergency Management
Agency (FEMA) . Depending on your career level and role, DHS
Cybersecurity Service employees in the Leadership Career Track,
with a technical capability in Physical, Embedded, and Control
Systems Security (PECSS), may apply their expertise to perform a
range of tasks, including:
- Overseeing and/or leading Department best practices, security
guidance, and/or documentation of "purpose-built interconnected
systems," such as industrial control systems (ICS), physical
systems, and embedded systems
- Customizing communications for different levels of leadership
and different target audiences regarding designs, protocols, and
physical configurations of "purpose-built interconnected systems,"
such as industrial control systems (ICS), physical systems, and
embedded systems -And defining and/or implementing comprehensive
countermeasures to detect threats and maintain the overall
cybersecurity posture of these systems
- Leading and/or overseeing the development and tracking of
technical and nontechnical risk and vulnerability assessments of
Information and Operational Technology (IOT) environments, such as
ICS/Supervisory Control and Data Acquisition (SCADA)/Distributed
Control Systems (DCS), local computing environment, network and
infrastructure, enclave boundary, supporting infrastructure, and
application
- Assisting DHS leadership in making strategy or policy decisions
for securing and assessing information and IOT environments and
influencing and defending policy and program decisions
- Actively engaging with stakeholders from multiple organizations
to monitor and lead the design/build/configure/operate/maintain
cycle of interconnected systems, and proactively increasing
security situational awareness of, and minimizing risks to, DHS
and/or Federal-wide physical or embedded systems and facilities
(e.g., heating, ventilation, and air conditioning (HVAC),
telecommunications, wireless technologies
- Preparing, overseeing, and/or organizing collaborative efforts
for assessing effectiveness of security controls through
penetration testing, vulnerability scanning, or security
architecture review on enterprise network or control systems assets
to improve understanding of organizational and/or National
cybersecurity risks
- Collaborating with internal and external DHS stakeholders
and/or National experts in the global control systems community to
architect and design enterprise cybersecurity solutions and
facilitate implementation of security standards
- Leading a team(s) in cybersecurity risk assessment, automated
information sharing, threat analysis, vulnerability management, and
network defense to enable holistic, integrated views of security
threats to an organization, the Department, or the Nation's
security posture
- Overseeing assignments and projects and providing ongoing
guidance and assistance ensuring conformance to applicable
technical standards, policies, or procedures This position is in
the Leadership Track across a range of career levels. Employees in
this career track generally:
- Have between 5-15 years of cybersecurity work experience.
- Have between 0-5 years of cybersecurity leadership
experience.
- Are capable of serving as a seasoned cybersecurity manager who
oversees multiple DHS or Federal cybersecurity programs or DHS
organizations, including employees and contract resources, through
subordinate managers. DHS Cybersecurity Service employees with a
technical capability in Physical, Embedded, and Control Systems
Security will generally apply their expertise to:
- Understand designs, protocols, and physical configurations of
purpose-built interconnected systems such as industrial control
systems, physical systems, and embedded systems.
- Define and implement comprehensive countermeasures to detect
threats and maintain the overall cybersecurity posture of these
systems. DHS Cybersecurity Service employees start at career levels
and salaries matching their experience and expertise. In recruiting
for this opportunity, DHS may hire employees at higher or lower
career levels and associated salaries. To learn more about DHS
Cybersecurity Service career tracks and levels, visit our
application portal .
This position is focused on Physical, Embedded, and Control Systems
Security (PECSS).
DHS Cybersecurity Service jobs are structured cybersecurity
specializations - called technical capabilities. To learn more
about technical capabilities, visit our application portal .
DESIRED CERTIFICATION:
- Certified Information Systems Security Professional
(CISSP)
- Global Industrial Cyber Security Professional (GICSP)
- Security+
- ISA/IEC Cybersecurity Risk Assessment Specialist DESIRED
TOOLS/INDUSTRY EXPERIENCE:
- Tools: Wireshark, Nmap, Tenable, Defender for IoT, Kali, Cobalt
Strike, Splunk Technologies, network infrastructure, boundary
protection devices, enterprise LAN/WAN, ICS/SCADA
- Industries: FCEB Enterprise, SLTT, ICS/OT environments of
critical infrastructure sectors
Keywords: Department of Homeland Security, Pocatello , Physical, Embedded, and Control Systems Security - Leadership, Other , Idaho Falls, Idaho
Didn't find what you're looking for? Search again!
Loading more jobs...