A$ A' "A' ?DescriptionAt Constellation, a freshly independent and soon-to-be Fortune 200 company, we're providing the energy and services to transform our future. Combining next generation technologies and product offerings with the country's lowest carbon generating fleet, our company is purpose-built to meet the challenges of the climate crisis.Constellation has been the leader in clean energy production for more than a decade. Now we're speeding delivery of low-carbon or no-carbon power to help families, communities, governments, and businesses meet their sustainability and decarbonization goals. Constellation provides 10 percent of total clean power and 22 percent of clean baseload power in the United States and is the leading competitive retail supplier of energy products, services, and clean energy solutions. The race is on to confront climate change, and no company is more ready to meet that challenge.We are committed to advancing diversity, equity and inclusion and believe in attracting, retaining and advancing employees who will best serve and represent our customers, partners and communities. We provide a workplace that ensures mutual respect, where each individual has the opportunity to grow and contribute at their greatest potential. Constellation will provide you the tools and resources you need to design, build and power a successful career.Constellation offers a wide range of benefits, designed to help our employees thrive professionally and personally. In addition to highly competitive salaries, we offer a bonus program, 401(k) with company match, employee stock purchase program; comprehensive medical, dental and vision benefits, including a robust wellness program; paid time off for vacation, holidays and sick days; and much more.Join us as we accelerate the transition to a carbon-free future. Energize your career with Constellation.Annual starting salary from $101,700.PRIMARY PURPOSE OF POSITIONThe Lead Real-Time Systems Security Engineer (RTSSE) will develop and support the Industrial Control Systems (ICS) security strategy and provide proactive cyber security risk management. The RTSSE will act as a liaison to the Generation OT teams, Security Architect and Cloud and Infrastructure Operations/Engineering and Utility OT teams to effectively communicate and lead ICS security engineering design specification, architecting and implementing effective ICS security solutions. The RTSSE will also assist with vulnerability mitigation plans, incident response and security event monitoring engineering support, compliance and audit support, and providing OT cyber security training.A' The RTSSE will ensure the implementation of ICS security measures in accordance with established procedures to ensure safety, reliability, confidentiality, integrity, availability, authentication, and non-repudiation, and will perform ICS security reviews to identify gaps in security design and architecture. The RTSSE will lead the development of ICS security risk assessment reports.PRIMARY DUTIES AND ACCOUNTABILITIESA' Provide analytical and technical security recommendations to other team members, technical teams, and business clients, including: (40%)Provide ICS cyber security guidance to leadershipWork with stakeholders to design ICS security design specifications and architecturesProvide input to implementation plans and standard operating procedures as they relate to ICS cyber securityDevelop specific ICS cyber security countermeasures and risk mitigation strategies for systems and/or applicationsWork closely with technical teams to implement effective security configurations/requirements, including: (30%)Analyze and design security measures to resolve ICS vulnerabilities, mitigate risks, and recommend security changes to system or system components as needed.Mitigate/correct security deficiencies identified during Factory Acceptance Testing, Site Acceptance Testing, and/or recommend risk acceptance for the appropriate senior leadership.Verify and update security engineering documentation reflecting the application/system security design features.Verify minimum security design specifications are in place for ICS assets to support security event monitoring and incident responseA' Work closely with the R&D and innovation teams to ensure secure implementation of ICS systems into production. (10%)Assist with vulnerability mitigation planning, incident response and security event monitoring engineering activities for security and compliance requirements. (10%)Conduct engagement and provide ICS cyber security training to ICS personnel. (10%)JOB SCOPEThe Lead Real-Time Systems Security Engineer (RTSSE) as part of the Cyber Security Department will work closely (and primarily) with Generation OT teams and Cloud and Infrastructure Operations/Engineering clients to implement effective security configurations and requirements; provide analytical and technical security recommendations to other team members, technical teams, and business clients. Act as a senior technical lead for Constellation ICS security remediation efforts. Meet with Constellation business clients and management to help specify and negotiate system/network/application security requirements. Work closely with the R&D and innovation teams to ensure secure implementation of ICS systems into production. Lead development of ICS security solutions to improve security event monitoring and detection aligning with Constellation Cyber Security standards. Actively participate in relevant industry ICS cyber security workgroups and forums; act as a liaison to the Generation OT teams, Security and Architecture groups and Cloud and Infrastructure Operations/Engineering teams to effectively communicate and lead ICS security engineering design specification, architecting and implementing effective ICS security solutions. Develop documentation to support ongoing ICS security systems operations, maintenance, and problem resolution. Provide advisement on vulnerability mitigation plans. Conduct ICS cyber security training, develop security event monitoring solutions to improve incident detection. Lead efforts working with the Security Policy and Risk Office to assist with the identification, analysis, and remediation of Constellation ICS cyber security risk.QualificationsMINIMUM QUALIFICATIONSBachelor's Degree in Computer Science, engineering, or a related discipline, and typically 8 or more years of solid, diverse experience in ICS, or equivalent combination of education and work experience.At least 5-8 years of demonstrable security engineering or related experience, including:Knowledge of cybersecurity principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation.Knowledge of disaster recovery continuity of operations plans.Knowledge of incident response and handling methodologies.Knowledge of network security architecture concepts including topology, protocols, components, and principles.Ability to apply cybersecurity methods, such as firewalls, demilitarized zones, and encryption.Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), Named Data Networking (NDN) and directory services.Knowledge of configuration management techniques.Understanding of NERC CIP Standards and Controls. Comprehensive understanding of change management techniques associated with new technology implementation.Demonstrated experience producing an economic business case.Demonstrated leadership ability.Proven analytical, problem solving, and consulting skills.Excellent communication skills and the proven ability to work effectively with all levels of OT and business management.PREFERRED QUALIFICATIONSGraduate degree in cyber security, engineering, or related area of expertise.Relevant security certifications (CISSP, CISM, GICSP, ICS)Appropriate technical skills and in-depth knowledge of business unit functions and applications, including:Demonstrated experience and subject matter knowledge of SCADA, ICS, Distribution Automation, Smart Grid, DMS, and ECS systems architecture.Demonstrated experience and subject matter knowledge in cyber security for applications, web architectures, operating systems, databases, and networks.Constellation is proud to be an equal opportunity employer and employees or applicants will receive consideration for employment without regard to: age, color, disability, gender, national origin, race, religion, sexual orientation, gender identity, protected veteran status, or any other classification protected by federal, state, or local law.VEVRAA Federal Contractor