Sr OT Systems Security Engineer at Exelon in Kennett Square, PA | USD102,400-140,800 | Kablio

Role

Description

vulnerability mitigation

incident response

security monitoring

ot countermeasures

security design

ot training

Assist with vulnerability mitigation planning, incident response and security event monitoring engineering activities for security and compliance requirements
Develop specific OT cyber security countermeasures and risk mitigation strategies for systems and/or applications.
Work closely with the R&D and innovation teams to ensure secure implementation of OT systems into production. (
Provide analytical and technical security recommendations to other team members, technical teams, and business clients, including: Provide OT cyber security guidance to leadership. Work with stakeholders to design OT security design specifications and architectures. Provide input to implementation plans and standard operating procedures as they relate to OT cyber security.
Analyze and design security measures to resolve OT vulnerabilities, mitigate risks, and recommend security changes to system or system components as needed.
Conduct engagement and provide OT cyber security training to OT personnel
Work closely with technical teams to implement effective security configurations/requirements, including:
Mitigate/correct security deficiencies identified during Factory Acceptance Testing, Site Acceptance Testing, and/or recommend risk acceptance for the appropriate senior leadership. Verify and update security engineering documentation reflecting the application/system security design features. Verify minimum security design specifications are in place for OT assets to support security event monitoring and incident response.

Requirements

cissp

nist

scada

plc

firewalls

bachelors

Knowledge of authentication, authorization, and access control methods.
Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services
Knowledge of incident response and handling methodologies.
Ability to demonstrate analytical skills, technical knowledge, and practical application of cyber and information security principles to business leaders and technical staff.
Demonstrated leadership ability.
Comprehensive understanding of change management techniques associated with new technology implementation.
Demonstrated knowledge and experience in the implementation of governance frameworks and security risk management processes, such as NIST, ISO, ISA99, IEC 62443 guidelines and standards.
Bachelors Degree in Computer Science, engineering, or a related discipline, and typically 5 or more years of solid, diverse experience in OT/ICS, or equivalent combination of education and work experience.
Knowledge of network access, identity, and access
Solid capability to assess network architectures and operating systems for vulnerabilities and develop appropriate security countermeasures.
Demonstrated experience and subject matter knowledge of security vulnerabilities and mitigation strategies for industrial SCADA protocols such as DNP3, IEC-61850, Modbus, Tejas V, CDC 2, Vancomm, etc.
Experience in assessing security applications and systems, such as firewalls, security appliances, IDS/IPS, SSL or TLS, IPSec.
Knowledge of system fault tolerance methodologies
Knowledge of how system components are installed, integrated, and optimized
Extensive experience developing, evaluating, and implementing OT security architectures, technologies, standards, and practices to secure applications and OT.
At least 3 years of demonstrated experience in the energy sector
Excellent communication skills and the proven ability to work effectively with all levels of OT and business management.
Knowledge of Risk Management Framework (RMF) requirements
Appropriate technical skills and in-depth knowledge of business unit functions and applications, including:
Demonstrated experience in addressing regulatory compliance for the security requirements in applicable laws and regulations, such as NERC CIP, CFATS, or API 1164.
Proven analytical, problem solving, and consulting skills.
Knowledge of network security architecture concepts including topology, protocols, components, and principles
Knowledge of cybersecurity principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation)
Demonstrated experience producing an economic business case.
Knowledge of disaster recovery continuity of operations plans
Knowledge of ICS supply chain security and risk management policies, requirements, and procedure
Knowledge of configuration management techniques
Demonstrated experience in security risk assessments, requirements development, secure design analysis, architecture assessment and development, and security testing of applications and systems.
Demonstrated experience and subject matter knowledge of SCADA, ICS, Distribution Automation, Smart Grid, DMS, and ECS systems architecture.
Knowledge of database systems
At least 3 years of experience as part of an electric utility
Knowledge and experience in application security standards, methodologies, and technologies.
Graduate degree in cyber security, engineering, or related area of expertise.
Demonstrated experience and subject matter knowledge in cyber security for applications, web architectures, operating systems, databases, and networks.
Knowledge of embedded systems
Knowledge of key concepts in security management (e.g., Release Management, Patch Management)
Relevant security certifications (CISSP, CISM, GICSP)
Ability to design architectures and frameworks
Solid knowledge and experience with OT security aspects of operating systems, embedded operating systems, Programmable Logic Controllers (PLC), Remote Terminal Units (RTU), and Protection and Control relays.
Knowledge of network design processes, to include understanding of security objectives, operational objectives, and tradeoffs
Knowledge of human-computer interaction principle
Skill in applying cybersecurity methods, such as firewalls, demilitarized zones, and encryption
Knowledge of parallel and distributed computing concepts
At least 5 years of demonstrable security engineering or related experience, including:
Knowledge of cryptography and cryptographic key management concepts

Benefits

401(k) match and annual company contribution
Life and disability insurance
Generous paid time off options, including vacation, sick time, floating and fixed holidays, maternity leave and bonding/primary caregiver leave or parental leave
Annual Bonus for eligible positions: 15%
Employee Assistance Program and resources for mental and emotional support
Referral bonus program
Annual salary will vary based on a candidate’s skills, qualifications, experience, and other factors: $102,400.00/Yr. – $140,800.00/Yr.
Medical, dental and vision insurance
Wellbeing programs such as tuition reimbursement, adoption and surrogacy assistance and fitness reimbursement

Training + Development

Information not given or found

Interview process

Information not given or found

Visa Sponsorship

Information not given or found

Security clearance

Information not given or found

Company

Overview

Fortune 200-ranked

Company Ranking

Recognized as a leading enterprise in the U.S. with significant market presence.

$23B Revenue

Annual Revenue

Generates over $23 billion in annual revenue, reflecting substantial market influence.

10M+ Customers

Customer Base

Serves over 10 million customers across multiple regional networks.

20+ Reactors

Nuclear Capacity

Owns a significant portion of U.S. nuclear generation capacity, supporting its energy backbone.

Exelon operates as America's largest regulated energy delivery company, formed from the merger of two century-old utilities in 2000.
It focuses on modernizing infrastructure and enhancing grid resilience through continuous investment.
The company's portfolio includes major utilities such as ComEd, BGE, PECO, Pepco, and others, covering vast transmission and distribution systems.
In 2022, Exelon spun off its power generation arm while maintaining full ownership of its transmission and distribution networks.
Exelon’s strategic initiatives often influence the mid-Atlantic and Midwest energy markets, shaping the regional energy landscape.

Culture + Values

Safety: We put safety first in all that we do.
Integrity: We uphold the highest standards of integrity in all of our actions.
Customer Commitment: We are passionate about exceeding customer expectations.
Excellence: We strive for excellence in everything we do.
Teamwork: We collaborate to achieve success as one team.
Accountability: We take responsibility for our actions and deliver on our commitments.

Environment + Sustainability

50% CO2 reduction

Emissions Goal

Plans to cut CO2 emissions by half by 2030 compared to 2005 levels, aligning with global climate targets.

10M+ customers

Renewable Energy Access

Aiming to deliver clean, reliable energy to over 10 million customers through increased renewable capacity.

Net-zero emissions target by 2050.
Continued development of energy storage systems and cleaner energy solutions.

Inclusion & Diversity

By 2030.

Gender Parity Goal

Commitment to achieving gender parity in leadership roles within the next decade.

45%

Diverse Workforce

The workforce composition includes women and minorities.

30%

Technical Roles Goal

Aim to increase the percentage of women in technical roles by 2025.

Established various employee resource groups to promote a diverse and inclusive environment.

Articles

Careers

Newsroom

Role

Description

vulnerability mitigation

incident response

security monitoring

ot countermeasures

security design

ot training

Assist with vulnerability mitigation planning, incident response and security event monitoring engineering activities for security and compliance requirements
Develop specific OT cyber security countermeasures and risk mitigation strategies for systems and/or applications.
Work closely with the R&D and innovation teams to ensure secure implementation of OT systems into production. (
Provide analytical and technical security recommendations to other team members, technical teams, and business clients, including: Provide OT cyber security guidance to leadership. Work with stakeholders to design OT security design specifications and architectures. Provide input to implementation plans and standard operating procedures as they relate to OT cyber security.
Analyze and design security measures to resolve OT vulnerabilities, mitigate risks, and recommend security changes to system or system components as needed.
Conduct engagement and provide OT cyber security training to OT personnel
Work closely with technical teams to implement effective security configurations/requirements, including:
Mitigate/correct security deficiencies identified during Factory Acceptance Testing, Site Acceptance Testing, and/or recommend risk acceptance for the appropriate senior leadership. Verify and update security engineering documentation reflecting the application/system security design features. Verify minimum security design specifications are in place for OT assets to support security event monitoring and incident response.

Requirements

cissp

nist

scada

plc

firewalls

bachelors

Knowledge of authentication, authorization, and access control methods.
Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services
Knowledge of incident response and handling methodologies.
Ability to demonstrate analytical skills, technical knowledge, and practical application of cyber and information security principles to business leaders and technical staff.
Demonstrated leadership ability.
Comprehensive understanding of change management techniques associated with new technology implementation.
Demonstrated knowledge and experience in the implementation of governance frameworks and security risk management processes, such as NIST, ISO, ISA99, IEC 62443 guidelines and standards.
Bachelors Degree in Computer Science, engineering, or a related discipline, and typically 5 or more years of solid, diverse experience in OT/ICS, or equivalent combination of education and work experience.
Knowledge of network access, identity, and access
Solid capability to assess network architectures and operating systems for vulnerabilities and develop appropriate security countermeasures.
Demonstrated experience and subject matter knowledge of security vulnerabilities and mitigation strategies for industrial SCADA protocols such as DNP3, IEC-61850, Modbus, Tejas V, CDC 2, Vancomm, etc.
Experience in assessing security applications and systems, such as firewalls, security appliances, IDS/IPS, SSL or TLS, IPSec.
Knowledge of system fault tolerance methodologies
Knowledge of how system components are installed, integrated, and optimized
Extensive experience developing, evaluating, and implementing OT security architectures, technologies, standards, and practices to secure applications and OT.
At least 3 years of demonstrated experience in the energy sector
Excellent communication skills and the proven ability to work effectively with all levels of OT and business management.
Knowledge of Risk Management Framework (RMF) requirements
Appropriate technical skills and in-depth knowledge of business unit functions and applications, including:
Demonstrated experience in addressing regulatory compliance for the security requirements in applicable laws and regulations, such as NERC CIP, CFATS, or API 1164.
Proven analytical, problem solving, and consulting skills.
Knowledge of network security architecture concepts including topology, protocols, components, and principles
Knowledge of cybersecurity principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation)
Demonstrated experience producing an economic business case.
Knowledge of disaster recovery continuity of operations plans
Knowledge of ICS supply chain security and risk management policies, requirements, and procedure
Knowledge of configuration management techniques
Demonstrated experience in security risk assessments, requirements development, secure design analysis, architecture assessment and development, and security testing of applications and systems.
Demonstrated experience and subject matter knowledge of SCADA, ICS, Distribution Automation, Smart Grid, DMS, and ECS systems architecture.
Knowledge of database systems
At least 3 years of experience as part of an electric utility
Knowledge and experience in application security standards, methodologies, and technologies.
Graduate degree in cyber security, engineering, or related area of expertise.
Demonstrated experience and subject matter knowledge in cyber security for applications, web architectures, operating systems, databases, and networks.
Knowledge of embedded systems
Knowledge of key concepts in security management (e.g., Release Management, Patch Management)
Relevant security certifications (CISSP, CISM, GICSP)
Ability to design architectures and frameworks
Solid knowledge and experience with OT security aspects of operating systems, embedded operating systems, Programmable Logic Controllers (PLC), Remote Terminal Units (RTU), and Protection and Control relays.
Knowledge of network design processes, to include understanding of security objectives, operational objectives, and tradeoffs
Knowledge of human-computer interaction principle
Skill in applying cybersecurity methods, such as firewalls, demilitarized zones, and encryption
Knowledge of parallel and distributed computing concepts
At least 5 years of demonstrable security engineering or related experience, including:
Knowledge of cryptography and cryptographic key management concepts

Benefits

401(k) match and annual company contribution
Life and disability insurance
Generous paid time off options, including vacation, sick time, floating and fixed holidays, maternity leave and bonding/primary caregiver leave or parental leave
Annual Bonus for eligible positions: 15%
Employee Assistance Program and resources for mental and emotional support
Referral bonus program
Annual salary will vary based on a candidate’s skills, qualifications, experience, and other factors: $102,400.00/Yr. – $140,800.00/Yr.
Medical, dental and vision insurance
Wellbeing programs such as tuition reimbursement, adoption and surrogacy assistance and fitness reimbursement

Training + Development

Information not given or found

Interview process

Information not given or found

Visa Sponsorship

Information not given or found

Security clearance

Information not given or found

Company

Overview

Fortune 200-ranked

Company Ranking

Recognized as a leading enterprise in the U.S. with significant market presence.

$23B Revenue

Annual Revenue

Generates over $23 billion in annual revenue, reflecting substantial market influence.

10M+ Customers

Customer Base

Serves over 10 million customers across multiple regional networks.

20+ Reactors

Nuclear Capacity

Owns a significant portion of U.S. nuclear generation capacity, supporting its energy backbone.

Exelon operates as America's largest regulated energy delivery company, formed from the merger of two century-old utilities in 2000.
It focuses on modernizing infrastructure and enhancing grid resilience through continuous investment.
The company's portfolio includes major utilities such as ComEd, BGE, PECO, Pepco, and others, covering vast transmission and distribution systems.
In 2022, Exelon spun off its power generation arm while maintaining full ownership of its transmission and distribution networks.
Exelon’s strategic initiatives often influence the mid-Atlantic and Midwest energy markets, shaping the regional energy landscape.

Culture + Values

Safety: We put safety first in all that we do.
Integrity: We uphold the highest standards of integrity in all of our actions.
Customer Commitment: We are passionate about exceeding customer expectations.
Excellence: We strive for excellence in everything we do.
Teamwork: We collaborate to achieve success as one team.
Accountability: We take responsibility for our actions and deliver on our commitments.

Environment + Sustainability

50% CO2 reduction

Emissions Goal

Plans to cut CO2 emissions by half by 2030 compared to 2005 levels, aligning with global climate targets.

10M+ customers

Renewable Energy Access

Aiming to deliver clean, reliable energy to over 10 million customers through increased renewable capacity.

Net-zero emissions target by 2050.
Continued development of energy storage systems and cleaner energy solutions.

Inclusion & Diversity

By 2030.

Gender Parity Goal

Commitment to achieving gender parity in leadership roles within the next decade.

45%

Diverse Workforce

The workforce composition includes women and minorities.

30%

Technical Roles Goal

Aim to increase the percentage of women in technical roles by 2025.

Established various employee resource groups to promote a diverse and inclusive environment.

Articles

Careers

Newsroom