Role: Cybersecurity Engineer
Location: Los Angeles, CA (Hybrid)
Duration: 12+ Months Contract (Possible Extension)
Pay Rate: $70 to $90
Job Summary: We are seeking a highly experienced Cybersecurity Consultant to support the Client’s utility-scale cybersecurity initiatives. This role involves leading the design and implementation of security frameworks such as Zero Trust, conducting vulnerability assessments, and delivering both technical and training services tailored for complex IT and OT/ICS environments in electric and water utility sectors.
Key Responsibilities:
- Design and deploy Zero Trust Architecture with focus on identity-based access control, network segmentation, continuous monitoring, and integration into utility-scale infrastructure.
- Develop and implement ransomware response policies aligned with NIST and CISA guidelines for both IT and OT/ICS environments.
- Conduct cybersecurity posture assessments, including vulnerability assessments, penetration testing, and develop remediation plans (DRP, IRP, Contingency Plans).
- Lead incident response efforts including forensic analysis, breach containment, and regulatory compliance for records management and data classification.
- Deliver Governance, Risk, and Compliance (GRC) strategies including technology roadmaps, organizational change management, and long-term cybersecurity plans.
- Deliver on-site training for IT, OT, IoT security, secure development, and social engineering awareness.
- Provide one-on-one mentoring in SCADA/non-SCADA security, penetration testing, and secure architecture design.
- Design and lead lab-based, hands-on training simulations for corporate and SCADA environments.
- Prepare technical deliverables including risk assessments, remediation plans, training documentation, and lab configuration manuals.
- Provide project management oversight, including weekly status updates, monthly risk/issue analysis, and QA on deliverables.
- Compile final project reports summarizing outcomes, key findings, and strategic recommendations.
Minimum Qualifications:
- 7+ years of professional experience in cybersecurity program development, vulnerability assessments, and incident response.
- Proven experience working in electric and/or water utility sectors, with expertise in OT/ICS systems and infrastructure.
- Demonstrated ability to implement Zero Trust, GRC frameworks, and mitigation strategies for advanced cyber threats.
- Experience with regulatory standards such as NIST, CISA, and other utility-specific compliance frameworks.
- Strong interpersonal and communication skills to interface with utility staff, executives, and technical teams.
Preferred Qualifications:
- Certifications such as CISSP, GICSP, CISA, CEH, OSCP, or similar.
- Experience working with SCADA systems, IoT/IIoT security, and hybrid cloud architectures.
- Prior experience with large public utilities.
