Control Systems Analyst with Security Clearance

"DESCRIPTION OF PROJECT AND TASKS:
The Contractor shall coordinate, consolidate, develop, and maintain CS governance, programmatic documents, action plan recommendations, task, and inquiry responses, perform analysis and provide recommendations, conduct open source and government research and development white papers and or slide presentations, and issue resolution action plans. Note: This task requires a Top Secret Clearance and a NATO Secret Clearance (TS/SCI) by the Pop start date under AF/A4C program management oversight.
Provide detailed updates to leadership and stakeholders by participating in meetings/forums and coordinating, consolidating, and developing associated meeting materials (e.g., slides, after action reports, minutes).
Engage with DAF and DoD Functional Experts, leadership and stakeholders, to define collaborative CS processes, procedures, playbooks and execution requirements and presenting these materials in meetings, forums, and trainings.
Ensure CE CS Authorizing Official (AO) is apprised of AF CS to Risk Management Framework (RMF) program actions, current guidance, transition plans, operational trends, and impacts by tracking transition progress and report findings.
Coordinate, collaborate, review, edit, track, and maintain Authority to Operate (ATO) documents providing secure systems to operate CS on for approval by the AO.
Provide guidance and program oversight to CE enterprise users on execution and implementation of programs.
Utilize operational knowledge, coordinate, and collaborate with the AFCEC Government SME and other (CE and DAF Controls systems/OT oversight) DAF control systems functional stakeholders, i.e., logistics, medical, manufacturing, NCBR, depot, fuels, weapons/platforms, etc., to effectively and systematically integrate IT and OT and inform programmatic documents and execution.
Tracks DAF control system cyber assessment vulnerability mitigation progress, resourcing, and enters relevant data DAF and OSD stakeholders and into DAF and OSD databases Required skills/Level of Experience:
Bachelor degree from an accredited university in a facilities discipline (preferred understanding of mechanical or civil engineering disciplines) with a minimum of ten (10) years' experience in and substantial knowledge of Operational Technology integration, cyber security, and CS application. TS/SCI clearance required. PLEASE NOTE:
CANDIDATE MUST BE A U.S. CITIZEN w/ TS/SCI We are looking for candidates with familiarity with facility related control systems like building management systems or HVAC control systems and Operational Technology experience/expertise. The ideal candidate will have control systems background and an understanding of the cyber security environment, with preference on facilities control systems background. Individual should have headquarters or equivalent experience to understand how to develop policy and guidance as well as the ability to staff policies for senior Air Force approval. Air Force Civil Engineer experience (officer) would be helpful but not required. Control systems cybersecurity -
- Control system cybersecurity, also known as Industrial Control System (ICS) security or Operational Technology (OT) security, focuses on protecting the critical systems that control and monitor industrial processes from intentional or unintentional interference.
- Control system cybersecurity is a specialized branch of cybersecurity that safeguards the systems used in industrial automation and control, including Supervisory Control and Data Acquisition (SCADA) systems, Programmable Logic Controllers (PLCs), Distributed Control Systems (DCS), and Human-Machine Interfaces (HMIs). Information Technology versus Operational Technology : - Operational technology (OT) is the hardware and software that monitors and controls devices, processes, and infrastructure, and is used in industrial settings. IT combines technologies for networking, information processing, enterprise data centers, and cloud systems. OT devices control the physical world, while IT systems manage data and applications.
- IT experience would be system administrators and other similar experience
- OT will have more experience on the control systems Other possible search criteria (nice to haves):
Served as an Air Force fellow with Idaho National Labs (INL)
Worked at or with the Air Force Civil Engineer Center Operations Directorate (AFCEC/CO), Tyndall AFB, FL
Worked at or with the US Army Corps of Engineers Control System Cybersecurity Mandatory Center of Expertise (CSC-MCX), Huntsville, AL
Participated in a DoD Control systems Resilience Readiness Exercise (CRRE) Facilitated by MIT Lincoln Labs (MIT-LL)
Belonged to the non-profit organization, Building Cyber Security,
Obtained the Global Industrial Cyber Security Professional (GICSP) certification