Senior Technology & Security Consultant at Aecom USA

Arlington, Virginia, United States -

Full Time

Start Date

Immediate

Expiry Date

01 Jun, 26

Salary

210000.0

Posted On

03 Mar, 26

Experience

10 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Cybersecurity Assessments, OT/ICS Security, SCADA Systems, PLCs, Network Infrastructure, Risk Posture Analysis, Remediation Planning, Risk Management Framework, RMF, NIST Standards, System Security Plans, POA&Ms, Authority to Operate, ATO, Technical Writing, Analytical Skills

Industry

Civil Engineering

Description

Company Description Work with Us. Change the World. At AECOM, we're delivering a better world. Whether improving your commute, keeping the lights on, providing access to clean water, or transforming skylines, our work helps people and communities thrive. We are the world's trusted infrastructure consulting firm, partnering with clients to solve the world’s most complex challenges and build legacies for future generations. There has never been a better time to be at AECOM. With accelerating infrastructure investment worldwide, our services are in great demand. We invite you to bring your bold ideas and big dreams and become part of a global team of over 50,000 planners, designers, engineers, scientists, digital innovators, program and construction managers and other professionals delivering projects that create a positive and tangible impact around the world. We're one global team driven by our common purpose to deliver a better world. Join us. Job Description AECOM’s Technology Solutions Group (TSG) is seeking a Senior Technology & Security Consultant to join our TSG Team. This position is also open to a remote working situation. The Senior Technology and Security Consultant will have or develop a solid understanding of client business practices and goals to: Develop and formulate solutions to client problems on assigned projects. Under general direction, responsible for the creation of work plans and task definitions. Has broad technical knowledge but possesses an area of specialization or focus. Gather and correlate engineering data using established and well-defined procedures. Work on detailed and/or routine design and/or consulting assignments. Propose solutions to solve new and/or complex problems encountered. Provide guidance and direction to internal mid-level consultants and production staff. Perform work in accordance with the agreed-upon budget and schedule with minimal supervision. Perform cybersecurity assessments of OT/ICS environments, including SCADA systems, PLCs, RTUs, HMIs, field devices, and supporting network infrastructure. Identify vulnerabilities, analyze risk posture, and develop actionable remediation plans aligned with industry standards and federal requirements. Support implementation and documentation of controls in accordance with the Risk Management Framework (RMF) and applicable cybersecurity frameworks (e.g., NIST-based standards). Develop and maintain required cybersecurity documentation, including System Security Plans (SSPs), security assessment reports, Plans of Action & Milestones (POA&Ms), and related compliance artifacts. Collaborate with engineering, network, and project management teams to ensure cybersecurity requirements are integrated into system design and deployment. Support Authority to Operate (ATO) efforts and ongoing compliance monitoring activities. Conduct technical reviews, analyze system configurations, and recommend improvements to enhance system resilience and regulatory compliance. Provide clear, concise, and technically sound written deliverables for Federal clients. Support project planning, scheduling, and execution activities as needed. AECOM’s Buildings + Places practice includes architecture, interiors, building engineering, workplace strategy, business transformation, asset advisory, economics and development planning, master planning, urban planning, and landscape architecture. With a range of expertise from strategy and design through project realization, we create better outcomes to grow economies, protect natural systems, conserve natural resources, make societies more equitable, and connect and engage people through innovative, sustainable design solutions. Our teams have worked on signature projects such as the London 2012 Olympic Park and Legacy Framework, to the new plan for the LA2028 Olympics, to industrial facilities for GE and Rolls-Royce, to headquarters and workplaces for NASA, Unilever, Sony Music, DirecTV, Box, Inc., and many Fortune 500 companies. Qualifications Minimum Requirements BA/BS Cybersecurity, Information Technology, Engineering or related field + 10 years of related experience or demonstrated equivalency of experience a education. 5+ years of relevant industry experience in OT/ICS cybersecurity. Experience securing SCADA, PLC, and industrial network environments. Experience with cybersecurity frameworks and Risk Management Framework (RMF). Due to the nature of this work, US Citizenship is required. Preferred Requirements Knowledge of cybersecurity and privacy laws, regulations, and compliance standards. Experience conducting security risk assessments and developing remediation plans. Previous experience supporting Federal projects. Experience developing and maintaining Authority to Operate (ATO) packages. Hands-on experience with vulnerability management, network segmentation, and system hardening in OT environments. Relevant certifications such as Security+, CISSP, CISM, or equivalent industry certifications are a plus. Experience supporting DoD, DHS, or other Federal agencies. Possess an active security clearance. Strong technical writing, analytical, and governance skills. Fluent in English (read, write, and speak). Additional Information This position does not offer relocation assistance. Sponsorship for US Employment Authorization is not available now or in the future for this position. About AECOM AECOM is proud to offer comprehensive benefits to meet the diverse needs of our employees. Depending on your employment status, AECOM benefits may include medical, dental, vision, life, AD&D, disability benefits, paid time off, leaves of absences, voluntary benefits, perks, flexible work options, well-being resources, employee assistance program, business travel insurance, service recognition awards, retirement savings plan, and employee stock purchase plan. AECOM is the global infrastructure leader, committed to delivering a better world. As a trusted professional services firm powered by deep technical abilities, we solve our clients’ complex challenges in water, environment, energy, transportation and buildings. Our teams partner with public- and private-sector clients to create innovative, sustainable and resilient solutions throughout the project lifecycle – from advisory, planning, design and engineering to program and construction management. AECOM is a Fortune 500 firm that had revenue of $16.1 billion in fiscal year 2025. Learn more at aecom.com. What makes AECOM a great place to work You will be part of a global team that champions your growth and career ambitions. Work on groundbreaking projects - both in your local community and on a global scale - that are transforming our industry and shaping the future. With cutting-edge technology and a network of experts, you’ll have the resources to make a real impact. Our award-winning training and development programs are designed to expand your technical expertise and leadership skills, helping you build the career you’ve always envisioned. Here, you’ll find a welcoming workplace built on respect, collaboration and community—where you have the freedom to grow in a world of opportunity. As an Equal Opportunity Employer, we believe in your potential and are here to help you achieve it. All your information will be kept confidential according to EEO guidelines. State/Province: Virginia Business Group: DCS Offered compensation will be based on location and individual qualifications. The expected range is: $180,000.00 - $210,000.00 Legal Entity: AECOM Technical Services Inc Business Line: B&P - Buildings & Places Work Location Model: Remote Operating Group: Americas Primary Location: US - Arlington, VA - 3101 Wilson Blv Compensation: USD 180000 - USD 210000 - yearly

How To Apply:

Incase you would like to apply to this job directly from the source, please click here

Responsibilities

The consultant will develop solutions for client problems, create work plans, and provide guidance to junior staff while performing cybersecurity assessments of OT/ICS environments, identifying vulnerabilities and developing remediation plans aligned with federal requirements. Key duties include supporting RMF implementation, maintaining compliance documentation like SSPs and POA&Ms, and ensuring cybersecurity requirements are integrated into system design for Federal clients.