Industrial Cybersecurity Analyst - & Co. (Washington DC)

Industrial Cybersecurity Analyst - 1898 & Co. (Washington DC) Join to apply for the Industrial Cybersecurity Analyst - 1898 & Co. (Washington DC) role at 1898 & Co. Description The Industrial Cybersecurity Analyst will assist with projects addressing Information Technology (IT) and Industrial Control System security. The 1898 & Co. Security & Risk Consulting practice is a premier OT/ICS/SCADA cybersecurity consulting practice whose mission is to serve humanity by improving the safety, security, and reliability of the world's critical infrastructure - enhancing risk management through resiliency, situational awareness, and preparedness. The Industrial Cybersecurity Analyst supports project execution including network penetration testing, web application security testing, vulnerability assessments, secure system design, and cybersecurity program development at client sites across various industries, utilizing frameworks like NIST CSF and RMF. Assist with planning, designing, developing, and implementing technical controls, procedures, and policies to ensure cybersecurity compliance and regulatory standards. Maintain high integrity by protecting client and project information confidentiality and security. Help develop policies, procedures, secure network designs, and technical recommendations for firewalls and other security controls. Document technical artifacts such as control listings, dataflow diagrams, and POA&Ms. Provide technical documentation of network traffic, firewall services, and solutions with explanations and diagrams. Support hands-on implementation and hardening of OT/IT systems, including servers, workstations, switches, and PLCs. Address operational issues and implement design modifications as needed. Participate in penetration testing and vulnerability assessments for compliance and security. Conduct post-event analysis and recommend procedural or process changes. Communicate technical issues and their business implications to other departments. Support uploading cybersecurity artifacts into government systems like eMASS for accreditation. Assist federal clients with RMF compliance efforts. Contribute to developing cybersecurity strategies and secure system architectures for industrial environments. Pursue and maintain relevant industry certifications (e.g., ethical hacking, ICS, SCADA). Stay informed about cybersecurity capabilities of operating systems, networks, and vendor solutions. Attend technical conferences and participate in problem-solving activities. Collaborate across divisions to deliver cybersecurity services. Perform other assigned duties and adhere to policies and standards. Qualifications Bachelor's Degree in Cybersecurity, Computer Science, Electrical Engineering, or related field (applicable experience may substitute). Internship experience preferred. Basic understanding of cybersecurity principles, technologies, and certifications. Knowledge of vulnerability assessments, penetration testing, and related tools. Familiarity with cybersecurity controls, firewalls, access control, and logging. Knowledge of control systems used in utilities, manufacturing, and infrastructure sectors. Effective communication, analytical, and critical thinking skills. Ability to work under pressure in industrial, corporate, and government environments. Ability to obtain and maintain security clearances. Minimum GPA of 3.0 strongly preferred. Relevant campus or community involvement preferred. One year of experience with NIST RMF activities is preferred. This job posting will remain open until filled, with a minimum duration of 72 hours. Note: The original posting is active; the description has been refined for clarity and focus. #J-18808-Ljbffr