This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more.

Role Description

AECOM’s Technology Solutions Group (TSG) is seeking a Technology & Security Consultant III to join our TSG Team. This position is also open to a remote working situation. An active security clearance is required for this position.

The Technology and Security Consultant III will work on a variety of projects in accordance with the agreed-upon budget and schedule with minimal supervision. This role will require occasional travel.

• Perform cybersecurity assessments of OT/ICS environments, including SCADA systems, PLCs, RTUs, HMIs, field devices, and supporting network infrastructure.
• Identify vulnerabilities, analyze risk posture, and develop actionable remediation plans aligned with industry standards and federal requirements.
• Support implementation and documentation of controls in accordance with the Risk Management Framework (RMF) and applicable cybersecurity frameworks (e.g., NIST-based standards).
• Develop and maintain required cybersecurity documentation, including System Security Plans (SSPs), security assessment reports, Plans of Action & Milestones (POA&Ms), and related compliance artifacts.
• Collaborate with engineering, network, and project management teams to ensure cybersecurity requirements are integrated into system design and deployment.
• Support Authority to Operate (ATO) efforts and ongoing compliance monitoring activities.
• Conduct technical reviews, analyze system configurations, and recommend improvements to enhance system resilience and regulatory compliance.
• Provide clear, concise, and technically sound written deliverables for Federal clients.
• Support project planning, scheduling, and execution activities as needed.

Qualifications

• BA/BS Cybersecurity, Information Technology, Engineering or related field + 4 years of related experience or demonstrated equivalency of experience and education.
• 4+ years of relevant industry experience in OT/ICS cybersecurity.
• Experience securing SCADA, PLC, and industrial network environments.
• Experience with cybersecurity frameworks and Risk Management Framework (RMF).
• Due to the nature of this work, US Citizenship is required.
• Experience supporting DoD, DHS, or other Federal agencies.
• Active Secret or Top-Secret Security Clearance.

Requirements

• Knowledge of cybersecurity and privacy laws, regulations, and compliance standards.
• Experience conducting security risk assessments and developing remediation plans.
• Previous experience supporting Federal projects.
• Experience developing and maintaining Authority to Operate (ATO) packages.
• Hands-on experience with vulnerability management, network segmentation, and system hardening in OT environments.
• Security+, CISSP, CISM, or equivalent industry certifications are a plus.
• Strong technical writing, analytical, and governance skills.

Benefits

• Medical, dental, vision, life, AD&D, disability benefits.
• Paid time off, leaves of absences, voluntary benefits.
• Perks, flexible work options, well-being resources.
• Employee assistance program, business travel insurance.
• Service recognition awards, retirement savings plan.
• Employee stock purchase plan.