Cyber Security Consulting Engineer – Transmission & Distribution Systems

We are seeking a seasoned Cyber Security Consulting Engineer to lead the development and integration of secure architectures for critical Transmission & Distribution (T&D) systems. As a recognized technical authority, you will define cybersecurity strategy across hardware, embedded systems, and software-defined platforms in modern electric grids—spanning protection, control, and energy management technologies. You will embed Security by Design and Cyber-Informed Engineering (CIE) principles throughout the product lifecycle, operating at the intersection of operational technology (OT) and information technology (IT). Your work will help drive regulatory compliance, product security, and support both R&D teams and utility customers in securing mission-critical infrastructure.

Key Responsibilities:

• Act as the cybersecurity design authority for T&D products, defining end-to-end architectures across hardware, firmware, and cloud-connected systems, advising on secure protocols, cryptography, authentication, and network hardening.
• Translate and implement global regulatory standards (IEC 62443, IEC 61850, IEC 62351, NERC CIP) into product requirements, and lead technical strategy planning, architecture reviews, and security certification efforts.
• Guide engineering teams through threat modeling, secure coding, SDLC best practices, and CIE adoption to mitigate cyber-physical risks affecting safety, reliability, or operations.
• Define and support embedded and software-based security features using C/C++, Python, and modern toolchains, while collaborating on penetration testing, fuzz testing, code reviews, and security simulations.
• Lead cross-functional initiatives with PSL, product management, compliance, field operations, and R&D to align cybersecurity objectives and ensure systems meet resilience and compliance expectations.
• Monitor cybersecurity trends, ICS/OT threat landscapes, and emerging technologies, recommending tools and methods to enhance product security posture.
• Partner with PSL, incident response and product security teams to support vulnerability remediation, post-incident analysis, and contribute to the creation of security documentation, including architecture specs, procedures, and training materials.
• Represent the company in industry forums, standards bodies, and technical panels, and contribute to white papers, patents, and technical publications supporting innovation and thought leadership.

Required Qualifications:

• Bachelor’s degree in engineering, Computer Science, Cybersecurity, or a related field.
• Minimum of 8 years of engineering experience, with 5 years focused on cybersecurity for embedded or software-defined systems.

Desired Characteristics:

• Professional certifications such as CISSP, GIAC (GPEN/GXPN), CEH, or ISA/IEC 62443 preferred.
• Proven ability to secure OT/ICS environments, preferably within the energy or utilities sector.
• Deep familiarity with industrial protocols (e.g., IEC 61850, DNP3, Modbus, IEEE 2030.5) and relevant cybersecurity standards.
• Experience in embedded system development (C/C++, RTOS), as well as Linux/Windows platforms.
• Strong hands-on background in PKI, identity management, network security appliances, and security monitoring.
• Proficient in threat modeling, risk/vulnerability assessment, and using forensic/security analysis tools.
• Excellent communication and stakeholder engagement skills, able to translate technical content for non-technical audiences.
• Exposure to quality improvement methodologies (e.g., Lean, Six Sigma) is a plus.
• Recognized as a thought leader through publications, patents, or industry involvement.
• Willingness to travel for customer engagements, conferences, and global collaboration.