Nuclear Cyber Security SME

Details:

ReNuke Services is seeking a Nuclear Cyber Security SME for our client"s site in Southport, NC.

DESCRIPTION:

This is an engineering position inside the Instrumentation and Controls (I&C) design group. This position has a dual role in providing Design and Cyber Security Program compliance support for projects managed in the I&C design department. This position"s primary role is to provide I&C Design project support. Evaluating technical designs to ensure compliance with Cyber Security Program. This requires staying tuned into changing cyder processes and interfacing with site and fleet cyber organizations to ensure project designs stay compliant in a changing environment. SMEs provide support to Instrumentation and Control Engineering as required and Cyber Security Program support to include Document Preparation, Reviews and hands-on related equipment support as required.
SMEs should have the background and skills necessary to provide implementation support for highly complex digital design activities. Ensuring proper installation, configuration, testing, and cyber compliance.

SMEs should have the background and skills necessary to obtain qualifications as required to allow support of certain network systems, components, and activities. These qualifications will need to be obtained at the discretion of the site/fleet Leadership.

Cyber Security Specialists SMEs require specific expertise in developing and reviewing Cyber Security Plan required documents and support digital projects including:
1. Perform Cyber Security Direct and Indirect Assessments for Critical Digital Assets (CDA)
2. Develop Access Control Forms
3. CDA Walkdown plans and walkdown support
4. Procedure AD-EG-ALL-1931 Digital Asset (DA)/Critical Digital Asset (CDA) list documentation support
5. Equipment Database (EDB) updates for hardware and software tags as required
6. CDA capability determination as required
7. Project Coordination
8. Creating baseline documentation for all CDAs
9. Completion of Configuration Control Summary (CCS) sheets which may require executing a Script to capture baseline data, such as running the EZ-Auditor or similar data collection tools.
10. Extracting information from baselines, images, Security Information & Event Management (SIEM) or Intrusion Detection System (IDS) reports and plant drawings
11. Running a vulnerability scanner against CDAs.
12. Taking pictures, documenting physical connections and other CDA physical data.
13. Interface with other DPS SMEs will be required.
14. Performing Back-ups of CDAs and documenting storage location.
15. Documenting security controls mitigated by the implementation of Monitoring Systems and the issuance of Cyber Procedures.
16. Assist in scanning/managing Portable Media and Mobile Devices.
17. Perform Wireless scans/walkdowns or equivalent process.
18. Perform Maintenance, troubleshooting, and patching of systems within the span of control of the Digital Process systems group, including defensive architecture equipment as defined.
19. Performance of Operating Experience (OE) actions to support evaluation and implementation resulting from cyber security inspections and audits.
20. Performance of hardening of Windows and Linux workstations and servers.
21. Review of industry guidance for cyber security and application of principles to critical systems and critical digital assets.
22. Review of cyber security policies, standards, and procedures in support of programmatic
requirements to meet cyber security Plan.
23. Provide design inputs and SME reviews to Design Engineering for digital cyber attributes of an activity.
24. Perform hands-on keyboard activities on site digital equipment in accordance with (IAW) approved site procedures.
25. Perform work management administrative activities.
26. Perform testing activities on digital equipment IAW approved processes.

In addition to preparing and reviewing the documents, SMEs will obtain Cyber Security Assessment Team (CSAT) approval, provide input to Engineering leadership team to identify and evaluate other tasks where appropriate.

DNJP20798 - NUCLEAR CYBER SECURITY SME - SOUTHPORT, NC - 7 MONTHS