Your expertise secures the control systems that power real-world operations. ABS Group is looking for a Principal Consultant to serve as the on-the-ground OT cybersecurity expert for a major industrial client, operating at the intersection of cybersecurity, control systems engineering, and regulatory compliance. You'll advise on ICS/DCS security controls, strengthen asset and vulnerability management programs, support MTSA compliance efforts, and drive program maturity - all while mentoring team members and identifying opportunities to grow the client relationship. The role offers a hybrid schedule (two weeks onsite in southeast Texas, two weeks remote) and a front-row seat to some of the most consequential cybersecurity work in industrial operations.
What You Will Do:
- Serve as the cybersecurity advisor and technical expert to the Control Systems team, ensuring quality services are delivered on schedule, within budget, and in alignment with customer requirements, including advising on security controls for ICS assets based on classification, criticality, and Purdue Model layer.
- Provide ICS cybersecurity support for capital projects, ongoing ICS cybersecurity program operations, and compliance efforts in support of safe and reliable industrial operations, with emphasis on OT cybersecurity requirements in Distributed Control System (DCS) environments.
- Support the execution and development of cybersecurity, control systems, and major capital projects, including providing frequent updates to the project manager and assisting with task definition, sequencing, duration estimating, and schedule development.
- Review project plans to understand scope, schedule, and assigned responsibilities, and participate in client and internal project team meetings.
- Act as a technical liaison between Cybersecurity, Control Systems, and other facility departments, translating technical requirements, risks, and priorities into clear actions for each stakeholder group.
- Monitor, maintain, troubleshoot, and improve control system software, hardware, and networks using cybersecurity program tools in DCS and segmented ICS network environments.
- Support and enhance OT cybersecurity systems and technologies, including endpoint security, patch management, logging, asset monitoring, access control, IDS, Active Directory Group Policy, firewall rules, and network configuration management.
- Review and support Splunk instances, including dashboards, data feeds, and functionality, to improve visibility, consistency, and program maturity.
- Maintain and improve asset management and vulnerability management programs, including validating asset and component data, improving visibility of in-scope assets, supporting workflows, and contributing to remediation and patching plans.
- Support development and implementation of the site cybersecurity framework, including policies, standards, guidelines, and procedures.
- Support regulatory and cybersecurity compliance activities, including MTSA cybersecurity efforts and mapping 33 CFR 101.650 controls to applicable IT/OT assets, using logs, events, and ticketing records as needed to demonstrate or maintain compliance, governance, and executive reporting.
- Participate in ICS security incident response, risk assessment activities, and development of cybersecurity Management of Change processes.
- Maintain control systems asset inventories, system architecture documentation, and other engineering records, ensuring documentation remains current, accurate, and aligned with approved changes, asset classifications, and applicable OT security requirements.
- Apply sound engineering practices, plant standards, and specifications in support of technical Management of Change, routine facility modifications, and capital project execution.
- Develop and prepare written documents, reports, presentations, design basis documents, preliminary estimates, schedules, and other project deliverables.
- Assist with research and data analysis, including customer, stakeholder, operational, and technical analyses as needed.
- Perform quality assurance on reports, presentations, and other project deliverables to ensure accuracy, completeness, and professional quality.
- Track and accurately report project hours.
- Work effectively with individuals at all organizational levels - including IT, Technology Security, Site Operations, Regulatory Affairs, and project teams - manage multiple assignments, meet agreed deadlines, and adapt to changing client priorities and business demands.
- Demonstrate a strong understanding of the business and identify opportunities to improve effectiveness, efficiency, and service delivery across the business unit.
- Maintain knowledge of ABS Group products and services, develop and maintain re
A
American Bureau of Shipping (ABS)