Mid-Level OT/ICS SCADA Electrical Engineer
Job Title: Mid-Level OT/ICS Electrical Engineer – SCADA Lab (Virtualization & Automation Engineer)
Department: OT/ICS SCADA Lab
Location: San Antonio, TX
About the OT/ICS SCADA Lab:
The OT/ICS SCADA Lab is a dedicated facility focused on research, development, and testing of secure and resilient Operational Technology (OT) and Industrial Control Systems (ICS). We are committed to advancing the state-of-the-art in OT/ICS cybersecurity and virtualization. The Lab provides a dynamic environment for engineers to experiment with cutting-edge technologies, contribute to innovative solutions, and enhance the security posture of critical infrastructure.
Job Summary:
The Mid-Level OT/ICS Electrical Engineer will be an integral member of our OT/ICS SCADA Lab, contributing to the design, development, deployment, and maintenance of virtualized OT/ICS training and testing environments. This role requires a skilled and experienced engineer with solid expertise in virtualization technologies, infrastructure-as-code (Terraform and Ansible), network design, programming, and a good understanding of industrial control systems and cybersecurity principles. The ideal candidate will be able to work independently on assigned tasks, collaborate effectively within a team, and demonstrate a willingness to learn and grow within the lab. This position requires an engineer who can quickly become productive, leveraging their existing skills to meet the immediate needs of our projects while also expanding their knowledge and contributing to the long-term success of the lab.
Responsibilities:
· Virtualization & Network Design:
o Design and build virtualized OT/ICS environments using VMware ESXi, following established guidelines and best practices.
o Perform OSINT/open-web research on network topologies within Levels 1-3 of the Purdue Model. Understand, explain, and implement these topologies.
o Create and present detailed network diagrams of devices based on requirements; obtain sign-off on network plans from customers and planners, with guidance from senior engineers as needed.
o Configure virtual machine networking according to established network diagrams, ensuring proper segmentation and security.
o Package and export VMs as OVA files with ESXi hardware compatibility.
· Infrastructure-as-Code (IaC) & Automation:
o Develop and maintain Terraform scripts for provisioning and managing virtualized OT/ICS infrastructure, adhering to established coding standards and best practices.
o Create and utilize Ansible playbooks for configuration management and automated deployment of software and services within virtual machines, ensuring consistent configurations across environments.
o Implement automation workflows to streamline the creation, deployment, and maintenance of virtualized environments, seeking opportunities to improve efficiency and reduce manual effort.
· ICS System Integration:
o Integrate diverse virtualized industrial control system components, including sensors, actuators, PLCs, HMIs, and communication networks, ensuring seamless data exchange and control.
o Configure communication protocols (e.g., Modbus, DNP3, OPC) to enable interoperability between virtualized components, troubleshooting integration issues and seeking guidance from senior engineers as needed.
· Open-Source Research & Customization:
o Research and evaluate available open-source projects suitable for emulating OT/ICS hardware devices (PLCs, HMIs, Gateways, Connectors).
o Customize open-source code to create virtual devices and implement server-client relationships, enabling realistic simulation of ICS environments.
· Programming & Configuration:
o Proficient in Python development, developing and modifying software programs and scripts to configure control systems, implement control logic, acquire data, generate alarms, and create visualizations.
o Configure communication protocols and network settings to establish connections between control system components.
· System Maintenance & Troubleshooting:
o Perform regular system maintenance, including applying security patches and monitoring system performance.
o Diagnose and resolve complex issues related to virtualized environments, network connectivity, OT/ICS component integration, and cybersecurity, escalating complex issues to senior engineers as needed.
· Cybersecurity:
o Assess system vulnerabilities in virtualized OT/ICS environments, using both automated tools and manual techniques.
o Implement security controls to mitigate risks and protect against cyber threats, adhering to industry best practices and security standards.
o Monitor for potential security breaches and respond to security incidents, following established incident response procedures.
· System Documentation & Training:
o Document system configurations, procedures, and troubleshooting guides.
o Create technical documentation and user manuals to facilitate system maintenance and support.
o Provide training to operators and required personnel on the proper use and maintenance of control systems.
· Compliance & Standards:
o Ensure that virtualized OT/ICS environments comply with relevant industry standards, regulations, and safety guidelines.
o Stay updated with industry best practices and emerging technologies to ensure the control systems meet the latest requirements.
Required Skills & Experience:
· Bachelor of Science degree in Electrical Engineering, Computer Engineering, or a related technical field.
· Minimum of 3-5 years of relevant experience working with OT/ICS systems, with a focus on virtualization and automation.
· Practical experience building and configuring ICS virtualized training ranges.
· Solid working knowledge of ESXi virtualized software and VMWARE to build and configure Virtual Machines (VMs).
· Hands-on experience with Terraform and Ansible for infrastructure automation and configuration management.
· Good understanding of networking principles, including TCP/IP, subnetting, routing, and network security.
· Experience with industrial communication protocols (e.g., Modbus, DNP3, OPC).
· Proficiency in Python programming.
· Strong system maintenance and troubleshooting skills, with experience in diagnosing and resolving technical issues.
· Familiarity with cybersecurity principles and best practices for OT/ICS environments.
· Ability to work independently and as part of a team in a fast-paced environment.
· Excellent communication and interpersonal skills.
· Must be able to quickly become productive and contribute to the lab's projects, demonstrating a solid understanding of OT/ICS principles and a willingness to learn and grow.
Security Requirements:
· Must be a United Stated Citizen and eligible to acquire TS/SCI clearance.
Work Environment:
· On-site at customer location in San Antonio, TX – 5 days per week.