MAR Division of Oasis Systems, LLC has an exciting opportunity for a Cyber Security Inspector with eight years or more experience. The Cyber Security Inspector works for our Federal customer within the nuclear energy sector as he or she implements and matures regulatory cyber security programs, contributing to both the government and industry. The Cyber Security Inspector will actively support the agency as it establishes cyber security regulation and guidance to promote safety and security regulating special nuclear material.

LOCATION: Rockville, MD, some remote work possible

EXPERIENCE LEVEL: Minimum of 8 years’ of IT experience, audit experience, or cyber security experience. Experience working with government consulting preferred.

EDUCATION: BA/BS degree in engineering, computer science, cyber security, or related fields, or equivalent.

SECURITY CLEARANCE: Ability to obtain a DOE security clearance.

TRAVEL:  Up to 25%

JOB STATUS: Full-time.

RESPONSIBILITIES:

The inspector will participate in the cyber inspection process by analyzing the adequacy of the implementation of cyber security programs by licensees (entities with a license to handle nuclear materials). This participation will include assisting the NRC lead inspector in preparing for the frequent cyber inspections and aiding in identifying the critical systems and critical digital assets in need of inspection. 

When preparing for a cyber inspection, the inspector will review technical documentation provided by the licensee in response to the formal request for information letter. The inspector will also analyze cyber vulnerability assessments and identify technical issues associated with a licensee assessment of digital critical systems or critical digital assets (e.g., IT systems, networks, industrial control systems, industrial networks).

After this stage of review and analysis, the inspector will communicate to the inspection team the technical issues identified during the inspection process and will write up justifications of the technical issues that could lead to potential findings during the inspection.

When not working directly on inspections, the inspector will interact with NRC project leads spearheading a variety of innovative cyber initiatives, including participating in meetings for regulatory guidance on various cyber security issues. Other work with project leads will include developing responses to technical issues that arise from the application of cyber security regulations and analyzing cyber security best practices and recommending how those practices are applicable to the program’s cyber security requirements. The inspector will be expected to possess strong communication skills, including dynamic delivery, ability to tailor subjects to the audience, and a sense of diplomacy.