The Operational Technology (OT) Security Engineer is responsible for safeguarding and maintaining the cybersecurity posture of the Defense Logistics Agency’s (DLA) critical OT environments. This includes supporting industrial control systems (ICS), SCADA, DCS, PLCs, and other specialized systems essential to mission operations. The engineer integrates cybersecurity best practices, coordinates risk assessments, responds to incidents, and ensures strict adherence to DOD and federal cybersecurity standards.
Key Responsibilities:
Perform vulnerability assessments, configure security controls, and manage the security lifecycle for OT environments (NIPRNET, SIPRNET).
Collaborate with stakeholders, system owners, and engineering teams to remediate identified OT vulnerabilities.
Apply and maintain compliance with OT cybersecurity frameworks (NIST CSF, ISA/IEC 62443, NERC CIP).
Prepare and update required documentation—risk assessments, reports, SOPs, technical artifacts—according to DLA/DoD standards.
Oversee patch management, incident response, and OT change management processes.
Deploy, tune, and utilize OT security monitoring and threat detection tools.
Bridge IT and OT cybersecurity requirements, supporting configuration, segmentation, and access control.
Provide analytics and reporting on vulnerabilities and compliance for multiple audiences.
Assist with DLA cybersecurity inspections and ensure OT systems remain inspection-ready.
Research and implement OT device security best practices, including vendor and supply chain risk management.
Mentor or train team members on OT security topics as needed.
Required Skills
Required Experience
Minimum Qualifications:
Seven (7) years of OT or ICS cybersecurity experience.
Practical experience with OT protocols (Modbus/TCP, EtherNet/IP, IEC 61850, DNP3, BACnet, etc.).
Experience with SCADA, ICS, DCS, PLCs, HMIs, RTUs, field devices.
In-depth knowledge of secure OT network architectures and monitoring technologies.
Ability to develop and execute OT incident response and risk management strategies.
Experience conducting compliance reviews, remediation, and vulnerability assessments.
Skilled in deploying and using OT security monitoring tools.
Understanding of DoD cybersecurity requirements, STIGs, and regulatory frameworks for OT.
Strong communication skills; able to produce concise documentation and brief senior leaders.
Proficiency with Microsoft Excel, Access, Power BI, Power Platform, and leading OT/ICS scanning or management tools (ACAS, Nessus, Qualys, Forescout, EyeInspect).
Active DOD Secret Clearance and eligibility for IT-II Non-Critical Sensitive (Tier 3).
Certifications: ICS300 or equivalent OT/ICS cyber certification
Training module or course for: ACAS/Forescout
Place of Performance / Residence Requirements:
Primary Location: DLA main sites or approved alternate/off-site location:
DLA Disposition Services (Battle Creek, MI)
DLA Defense Supply Center (Columbus, OH)
DLA Dayton (WPAFB, Dayton, OH)
DLA Headquarters (Ft. Belvoir, VA)
DLA Distribution (New Cumberland, PA)
DLA Ogden Defense Depot (Ogden, UT)
DLA Troop Support (Philadelphia, PA)
DLA Aviation (Richmond, VA)
Residency: Engineer must live within 50 miles of any primary DLA location or an approved alternate worksite (subject to government approval).
Remote Work: Partial off-site/remote work permitted, provided the engineer is able to respond onsite as required and maintains residency within the 50-mile proximity requirement.
Assignment Flexibility: Work location may be modified by the government based on evolving mission needs.
Compliance:
The OT Security Engineer must maintain all security clearances, certifications, and fulfill all DOD/DLA cybersecurity, reporting, and remote work requirements throughout the term of employment.