Logo
Commonwealth Fusion Systems

Senior OT Cybersecurity Engineer Job at Commonwealth Fusion Systems in Devens

Commonwealth Fusion Systems, Devens, MA, United States


About Commonwealth Fusion Systems:

Commonwealth Fusion Systems is on a mission to deliver the urgent transition to fusion energy.

Combining decades of research, top talent and new technologies, we're designing and building commercially viable fusion power plants. And working with policymakers and suppliers to build the energy industry of the future.

We're in the best position to make it happen. Since 2018, we've raised over $2 billion in capital - more than any other fusion energy company in the U.S.

Now we're looking for more thinkers, doers, builders, and makers to join us. People who'll bring new perspectives, solve tough problems, and thrive as part of a team.

If that's you and this role fits, we want to hear from you.

Join the power movement as a Senior OT Cybersecurity Engineer

The Senior OT Cybersecurity Engineer reports to the Director of Cybersecurity and is responsible for the security of operational technology (OT/ICS) systems and infrastructure at CFS. Working collaboratively with internal IT and OT teams, the Senior OT Security Engineer plays a key role in implementing and maintaining a comprehensive OT cybersecurity program to secure OT operations. They will implement and administer network, systems, and processes/controls needed to ensure that OT operations are properly secured, with a particular focus on Industrial control systems and the convergence of Cloud and OT (IIoT). The position also provides systems administration for ongoing IT cybersecurity operations, security advice to advance the cybersecurity program, and helps assess new systems and applications before they are implemented.

What you'll do:
    • In partnership with IT, implement and administer security controls specific to OT environments, including those for firewalls, intrusion detection/prevention systems (IDS/IPS), OT cybersecurity platforms, and access controls
    • Continuously monitor OT vulnerabilities and threats using specialized tools and techniques
    • Develop and maintain security policies and procedures for OT security best practices
    • Respond and collaborate to security incidents efficiently and effectively, minimizing damage and restoring operations
    • Contribute to the administration of IT cybersecurity tools (SIEM, DLP, IAM, PAM, EPP/EDR, MDM, etc.)
    • Maintain current knowledge of new products and industry trends, and recommend enhancements and purchases that allow CFS to maintain a healthy and functional environment
    • Provides technical consulting to management, business users, and technical associates to ensure that applications and platforms are secure
    • Implement and maintain a security by design process with OT business units in order to effectively architect, design, and operate security controls and countermeasures; document the operation, use, and expected outputs of these systems
    • Analyze and recommend security controls and procedures in business processes related to use of information systems and assets, and provide oversight to ensure compliance and alignment with security standards/frameworks (IEC 62443, NIST 800-82, and other relevant standards)
    • Helps promote a culture of cybersecurity awareness via outreach and training
What we're looking for:
    • Bachelor's degree in Cybersecurity, Computer Science or equivalent experience
    • Relevant certification in the Cybersecurity field (CISSP preferred)
    • 5 years experience in Operational Technology, (ICS, IIoT security)
    • Strong understanding of Industrial Control System (ICS) security principles and best practices (e.g., IEC 62443, NIST, NERC CIP)
    • Working knowledge of SCADA/HMI systems
    • Proven experience implementing and administering OT security controls
    • Experience collaborating with OT and IT teams to ensure secure integration
    • Ability to work in a fast-paced environment and prioritize tasks/projects
    • Experience with OT security incident response
    • Excellent analytical and problem solving skills, and attention to detail
    • Evidence of personal focus on continuous learning
Bonus points:
    • SANS Institute Industrial Control Systems Security (GICSP) certification or (GRID) certification
    • ISA Security Certified Automation
    • Professional (CAP)
    • IEC62443 Cybersecurity specialist
    • Experience with ignition for inductive automation systems, knowledge of Siemens, Rockwell, Beckhoff OT technologies/protocols (Mobus, OPC, S7, etc.)
Essential Requirements:
    • Ability to type, stand, and sit for extended periods of time
    • Willingness to occasionally travel or work required nights/weekends/on-call
    • Work in a facility that contains industrial hazards including heat, cold, noise, fumes, strong magnets, lead (Pb), high voltage, high current, pressure systems, and cryogenics
    • #LI-Hybrid


At CFS, we excel in fast-paced environments, driven by our values of integrity, execution, impact, and self-critique. As we grow, we're eager to bring on mission-driven folks who offer diverse perspectives and fresh ways to tackle challenges.

We value diversity deeply and are proud to be an equal opportunity employer by choice. We consider all qualified applicants equally, regardless of race, color, national origin, ancestry, citizenship status, protected veteran status, religion, physical or mental disability, marital status, sex, sexual orientation, gender identity or expression, age, or any other basis protected by law.