Cyber Security Project Manager

Job Description
AECOM is seeking a client-facing Cyber Security Project Manager based out of our Glen Allen, VA office to support current Energy Utility cybersecurity implementation program and our growing Security &
Communications Technology Group within the US East region.
The ideal candidate will interface with the client daily, manage technical work, direct field staff, and oversee reporting for a variety of client locations primarily in Virginia. As we align to the global strategy, overall regional growth strategy and focus on key clients in the region, this role will improve the contributions of the security and communications technology services team for the region.
The Cyber Security Project Manager will have the opportunity to support multiple projects across multiple business lines and will be afforded exposure to high profile projects sites throughout the AECOM Digital Technology client base.
The job responsibilities of this position will include, but are not limited to:
Primary responsibility for implementing cyber security standards for a large energy utility with multiple generation assets including coal, gas, biomass, solar, and hydroelectric facilities.
Direct a teamof system engineers and other domain experts in variety of cybersecurity roles including assessment, engineering/design, implementation, verification, compliance oversight, and research.
Work with internal and external engineering teams to build cybersecurity awareness and understanding, technical protocols and procedures for efficient and accurate project execution.
Engage in ongoing learning and information sharing efforts with other cybersecurity personnel at AECOM to grow the team’s knowledge base and capabilities.
Support technical project work in other areas of digital technology as needed.
Analyze Windows-based systems, networks, and interfaces for compliance with generalized standards and re-configure as required to meet cybersecurity requirements
Validate external logical and physical connections
Map on-site topology and validate that engineering drawings match actual implementation of hardware and software
Create hardware and software inventories
Identify non-essential and vulnerable software
Verify that logging capabilities are active and working;
activate capabilities as required
Identify remote access tools and configurations
Review software and equipment for lifecycle management parameters;
develop temporary mitigation and upgrade plans as required
Verify malware prevention presence and configuration
Apply patches and upgrades as required (to OS, software, firmware) in ICS environments and coordinate with engineering staff and supervisors to ensure processes are not disturbed or disturbances are planned/minimized
Credential management analysis (e.G. checking for password strength across systems and change frequency policies/records). Document findings and activities performed thoroughly per specific client and facility needs.
Manages projects and personnel.
Oversees the administration and maintenance of the company’s infrastructure and directs, leads and manages as necessary.
Works with diverse business groups and customers to implement strategic objectives for the IT organization.
Plans and implements improvements in all areas of IT responsibility.
Mentors and encourages development of junior level employees to take responsibility for their development within the company.
Reports to an Sr. IT Manager.