Job Information
IMRI Incident Response Engineer in Remote, United States
Incident Response Engineer
Apply Now!
Back to search
Location: Remote, Remote
Posted: 07/17/2024
Location Name: New York (Remote)
Wage Max: 75.00 Hourly
Wage Min: 65.00 Hourly
Position Type: Contract
COMPANY OVERVIEW
Join our award-winning team at Information Management Resources, Inc. (IMRI), a small business leader in the technology industry known for our commitment to innovation, excellence, and authenticity. Founded in 1992, IMRI has been at the forefront of delivering advanced cybersecurity and IT solutions, safeguarding organizations against evolving threats. We have built a reputation for our expertise in Cybersecurity, Digital Transformation, Strategic Business Consulting, and Staff Augmentation. Guided by our core values of innovation, excellence, and a solution-driven mindset, we have served a diverse portfolio of customers that includes federal agencies, state and local governments, and Fortune 1000 companies.
At IMRI, we recognize the integral part our employees play in our ongoing success. To support this, we offer a comprehensive benefits package, tailored to meet the individual needs of our employees. We are committed to promoting their overall well-being and equipping them with the necessary tools to flourish in their careers. We welcome you to be a part of our ongoing mission as we continue to navigate the digital landscape, committed to empowering organizations with our innovative solutions.
Job Description: Cybersecurity Engineer (Incident Response Readiness for OT Systems)
Location
This project is for 3-6 months Remote - US Based
Overview
We are seeking an experienced Cybersecurity Engineer specialized in assessing incident response readiness for Operational Technology (OT) systems. This role will involve in-depth evaluation and benchmarking against multiple IR frameworks including but not limited to NIST 800-61, ISO 27035, CIS Critical Security Controls, and the SANS Incident Response Process. The candidate will be an integral part of our cybersecurity efforts, driving improvements in our OT cyber defense mechanisms. The candidate must be an expert with specific knowledge of subway and rail technology, including signaling systems, CBTC (Communications-Based Train Control), Railware, and other relevant technology.
Responsibilities
Assess the existing incident response plans for OT systems in compliance with multiple guidelines such as NIST 800-61, ISO 27035, CIS Critical Security Controls, and the SANS Incident Response Process.
Perform comprehensive incident response readiness audits, which include simulated cyber-attacks, tabletop exercises, and documentation reviews.
Generate detailed assessment reports outlining the effectiveness, gaps, and maturity levels of existing incident response capabilities, offering both strategic and tactical recommendations for improvement.
Evaluate and tune incident detection and response tools such as IDS/IPS, SIEM, and other alerting mechanisms specific to OT environments.
Work collaboratively with OT and IT teams to implement suggested improvements and best practices for incident response, including coordination and communication protocols during an incident.
Design and deliver customized training modules for OT personnel on incident response protocols and procedures based on the frameworks mentioned above.
Remain up to date on the latest cybersecurity trends, vulnerabilities, and threat vectors specific to OT systems to ensure ongoing resilience and compliance.
Engage with external cybersecurity consultants and auditors for objective assessments and audits.
Ensure alignment of incident response plans with local, state, and federal regulations, as well as industry-specific compliance requirements.
Qualifications
Bachelor’s or Master’s degree in Cybersecurity, Computer Science, or a related field.
Minimum of 5-7 years of experience in cybersecurity with a strong focus on incident response readiness assessments.
At least 2-3 years of experience in working with Operational Technology (OT) systems including associated standards like IEC 62443.
Deep understanding of multiple IR frameworks including NIST 800-61, ISO 27035, CIS Critical Security Controls, and the SANS Incident Response Process.
Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Incident Handler (GCIH), or equivalent.
Strong understanding of OT protocols such as LONWORKS, MODBUS, DNP3, and S7.
Excellent communication skills and ability to work in collaborative environments.
Skills
Analytical mindset and superior problem-solving abilities.
Excellent verbal and written communication skills.
Familiarity with security monitoring tools like IDS/IPS, SIEM, etc.
Programming/scripting experience in languages such as Python, Shell scripting, or similar, is an asset.
Capacity to work effectively under pressure and manage crises.
Preferred Skills:
Experience working in the transportation industry, specifically within train, subway and rail environments.
Knowledge of rail safety standards and regulations.
Familiarity with advanced cybersecurity technologies and trends.
EQUAL EMPLOYMENT OPPORTUNITY
EEO/Affirmative Action Statement and Non-Discrimination Policy IMRI is an Equal Employment Opportunity employer committed to maintaining a non-discriminatory, diverse work environment. In accordance with Title VII of the Civil Rights Act of 1964, Section 503 of the Rehabilitation Act of 1973, Vietnam Era Veteran's Readjustment Assistance Act of 1974 (VEVRAA), Americans with Disabilities) (ADA), and other federal, state, and local anti-discrimination laws, IMRI does not unlawfully discriminate against any person on the basis of race, color, religion, sex, national origin, ancestry, genetic information, age, marital status, sexual orientation, physical or mental disability, or status as a special disabled veteran or other veteran. IMRI will take affirmative action to assure equal opportunity for employment is provided with regard to all personnel actions. This is including but not limited to: recruitment, selection, compensation, benefits, training, promotion, demotion, layoff, termination and all other terms and conditions of employment.
Apply Now!
