cybersecurity assessment consultant

1. A minimum of five (5) years of experience leading cybersecurity assessments, infrastructure security assessments, or risk assessments for complex enterprise, higher education, critical infrastructure, OT, or ICS environments.
2. Demonstrated experience planning and managing cybersecurity engagements involving IT and OT systems, including assessment scoping, stakeholder coordination, technical oversight, and quality assurance.

iii. Demonstrated experience conducting OT/ICS security architecture reviews, cybersecurity risk assessments, network segmentation evaluations, and framework-based security assessments.

1. Experience developing assessment methodologies, engagement plans, executive briefings, technical reports, risk analyses, and remediation roadmaps.
2. Demonstrated knowledge of recognized cybersecurity frameworks and standards, including NIST Cybersecurity Framework (CSF), NIST SP 800-53, NIST SP 800-82, CIS Controls, and/or ISA/IEC 62443.
3. Prior experience supporting higher education institutions, utilities, critical infrastructure operators, industrial environments, or organizations of comparable size and complexity.

vii. Demonstrated ability to lead assessments utilizing non-intrusive and operationally safe testing methodologies appropriate for critical infrastructure and operational technology environments.