Logo
Alluvial Concepts (Macro Pros)

OT Security Architect (Hybrid)

Alluvial Concepts (Macro Pros), WorkFromHome

Save Job

OT Security Architect (Hybrid) at Alluvial Concepts (Macro Pros)

Macro Pros has an immediate opening for a Senior OT Cybersecurity Architect / Engineer to lead the design and implementation of cybersecurity solutions for Operational Technology (OT) environments, including building automation, utilities, and critical facilities systems. The position will be supporting our client in Bethesda, Maryland. Interested candidates must currently reside in metro Washington, D.C. and be willing to work on-site in Bethesda 3 days a week. Open to US Citizens only.

Key Responsibilities

  • Architecture & Design
    • Develop and maintain OT/IT security reference architectures, patterns, and standards.
    • Design secure network and system architectures for OT environments (segmentation, access control, monitoring, remote access).
    • Review proposed OT and facilities projects for cybersecurity impacts and recommend design changes.
  • Stakeholder Engagement & Strategy
    • Work with facilities, biomedical/clinical engineering, program offices, and other customers to understand pain points, mission needs, and long‑term objectives.
    • Translate business and operational requirements into actionable OT cybersecurity roadmaps and prioritized initiatives.
    • Present recommendations and solution options to technical and non‑technical leadership.
  • Advancing Cybersecurity Posture
    • Identify gaps and opportunities to mature OT security capabilities (e.g., asset visibility, monitoring, access management, incident response).
    • Recommend and help implement OT security tools and platforms (e.g., OT monitoring, asset discovery, vulnerability management).
    • Develop and maintain OT security standards, baselines, and configuration guidance aligned with NIH and federal policy.
  • Multi‑Functional IT & Security Coordination
    • Coordinate with network services, system services, identity/access management, and cybersecurity operations on cross‑cutting initiatives.
    • Guide remediation efforts for OT‑related vulnerabilities and weaknesses, ensuring solutions are feasible for operations.
    • Support the integration of OT systems into enterprise security services (logging, SIEM, vulnerability scanning, ticketing).
  • Policy, Compliance, and Governance
    • Interpret and apply NIST and federal frameworks (e.g., NIST CSF, NIST SP 800‑82, 800‑53, RMF, FISMA, FedRAMP where applicable) to OT environments.
    • Contribute to policies, procedures, and standards that govern OT cybersecurity.
    • Support audits, assessments, and authorization activities with architectural input and documentation.

Basic Qualifications

  • Bachelor’s degree in cybersecurity, computer science, engineering (mechanical, electrical, controls, systems), information technology, or related field; OR equivalent combination of education and experience.
  • Significant experience (typically 7+ years) in cybersecurity, OT/ICS, or closely related fields, including:
    • Designing or engineering secure network and system architectures.
    • Hands‑on work with OT/ICS or building/facility systems or close integration of IT security with OT environments.
  • Demonstrated experience leading multi‑functional technical initiatives (e.g., vulnerability remediation campaigns, segmentation projects, tool deployments).
  • Strong knowledge of networking and security concepts (segmentation, zero trust concepts, identity/access management, monitoring, incident response).
  • Proven ability to engage with stakeholders to elicit requirements, explain tradeoffs, and gain consensus on solution approaches.
  • Excellent written and verbal communication skills, including technical documentation and executive‑ready presentations.

Preferred Qualifications

  • Deep familiarity with OT/industrial systems (BAS/BMS, power/backup systems, utilities, lab facility controls) and associated protocols (e.g., BACnet, Modbus).
  • Experience with OT security platforms and cyber‑physical systems tooling (e.g., Nozomi, Dragos, Claroty).
  • In‑depth experience with federal security frameworks and processes, including NIST CSF, NIST SP 800‑82, NIST SP 800‑53, RMF, FISMA, and FedRAMP.
  • Relevant advanced certifications, such as CISSP, CISM, GICSP, GRID, or comparable OT/cybersecurity credentials.
  • Experience defining security roadmaps, standards, and patterns in a large or complex organization (federal or healthcare preferred).

Work Environment

  • Must be willing to go onsite in Bethesda at least three days per week.
  • Occasional off‑hours work to support changes, maintenance windows, or incident response.
  • Regular access to mechanical rooms, plants, labs, and clinical areas with adherence to safety procedures and PPE requirements.

Additional Details

  • Seniority level: Director
  • Employment type: Contract
  • Job function: Information Technology
  • Industries: Government Administration

#J-18808-Ljbffr