FM Corporation is hiring: Cybersecurity Research Engineer Expert in Norwood

Established nearly two centuries ago, FM is a leading mutual insurance company whose capital, scientific research capability, and engineering expertise are solely dedicated to property risk management and the resilience of its policyholder-owners. These owners, who believe that the majority of property loss is preventable, represent many of the world's largest organizations, including one of every four Fortune 500 companies. They work with FM to better understand the hazards that can impact their business continuity in order to make cost-effective risk management decisions, combining property loss prevention with insurance protection.

Join Our Team as a Cybersecurity Research Engineer Expert - Unleash Your Potential in Groundbreaking Security Research!

Are you ready to embark on an exciting journey at the intersection of technology and innovation?

We are looking for a dynamic and highly motivated Cybersecurity Research Engineer to elevate our Operational Technology (OT) and Industrial Internet of Things (IIoT) security research initiatives to new heights. This role offers you the chance to make your mark in the rapidly evolving field of cybersecurity while working hands-on in a state-of-the-art lab environment. Your expertise in experimentation, technical skills, and communication will truly shine here.

What You'll Do:

• Innovate and Secure: Design, deploy, and secure advanced lab-based IT/OT/IIoT environments.
• Dive Deep into Protocols: Showcase your mastery of industrial protocols such as Modbus, DNP3, OPC UA, and BACnet.
• Connect and Protect: Work with cellular-based IIoT gateways and ICS field components, mastering network intricacies from Layer 2/3 switches to firewalls.
• Operate Across Platforms: Exhibit versatility in Windows, Linux (including Kali, Gentoo), and cloud environments.
• Virtualize and Automate: Manage and deploy virtualization platforms like VMware vCenter, Proxmox, as well as container technologies (Docker/Kubernetes).
• Analyze and Defend: Utilize SIEM tools like Splunk for actionable threat intelligence and simulate attack techniques employing the MITRE ATT&CK framework.
• Govern and Report: Implement cybersecurity governance frameworks (NIST SP 800-53, ISO 27001) and create compelling research reports and technical white papers.
• Communicate with Impact: Deliver presentations that convert complex technical content into clear business insights.

What You Bring:

• Education & Experience: A Master's degree in Cybersecurity or a related field, with proven experience in IT, OT/ICS, and IIoT security research or engineering.
• Technical Mastery: Expertise in SIEM, Dragos Platform, OpenCTI, and frameworks like NIST 800-53 and ISA/IEC 62443.
• Communication Excellence: Exceptional written, visual, and verbal communication skills to effectively convey complex findings.
• Scripting Savvy: Strong scripting abilities in Python, Bash, or PowerShell.

Preferred Qualifications:

• Experience with cyber ranges or cyber-physical testbeds.
• Security certifications such as GICSP, GREM, GCIA, OSCP, PCNSA.
• Familiarity with threat intel pipelines using Splunk, Logstash, MISP, or the ELK stack.

Why You'll Love Working Here:

• Cutting-Edge Research: Engage in cybersecurity innovation, addressing real-world challenges with impactful solutions.
• Collaborative Environment: Thrive in a fast-paced, international setting where cooperation and creativity are essential.
• Growth Opportunities: Enjoy continuous learning and development to expand your skills and advance your career.
• Impactful Work: Play a crucial role in safeguarding the future of industrial and operational technology.

Personal Attributes:

• Organized & Self-Directed: Manage lab operations with precision and autonomy.
• Adaptable: Embrace the fast-paced nature of research and technological evolution.
• Ethical & Integrity-Driven: Uphold the highest standards of cybersecurity ethics and scientific integrity.

If you’re ready to make a meaningful impact and advance your career in cybersecurity research, we want to hear from you! Apply now and join a team dedicated to pioneering the future of cybersecurity.

Compensation, grade, and job title will be determined based on qualifications, experience, and technical skill set.

The position is eligible to participate in FM's comprehensive Total Rewards program, including an incentive plan, generous health and well-being programs, a 401(k) and pension plan, career development opportunities, tuition reimbursement, flexible working conditions, and paid time off allowances, among other benefits.

FM is an Equal Opportunity Employer and is committed to attracting, developing, and retaining a diverse workforce.