Burns & McDonnell Staff Cyber Security Specialist in Kansas City, Missouri


The cyber security specialist will assist in the planning, design, development and implementation of technical controls, procedures and policy associated with compliance to the NERC-CIP and NIST cyber security regulatory standards. The Specialist will have responsibility for the development of regulatory policies & procedures, secure process control network design, technical and design recommendations for the implementation of firewalls and other network security and compliance controls, and provides technical documentation of network traffic as well as firewall services / solutions including explanations and diagrams. Candidate will work collaboratively with other groups and divisions inside Burns & McDonnell. Ideal candidate must be detail oriented with good analytical and risk assessment skills and strong listening, written and computer communication skills for reporting and auditing purposes.

  • Bachelor’s degree in Computer Engineering, Electric Engineering, or a related technical field with 5 years of appropriate experience or 10 years combined education and applicable experience

  • 3 or more years’ experience in the design, deployment, and administration of enterprise-grade network security systems.

  • Experience and/or familiarity with configuration and administration of Networking devices, Firewalls, Routers, Switches, ACLs, VPNs and network security best practices in general, with capability to identify specific vendors

  • Experience and/or familiarity with System Security configurations for Windows, Unix, and/or Linux systems

  • Experience and/or familiarity with vulnerability assessments and methodologies, information gathering tools such as Nessus and equivalents, and the ability to distill configuration data into concrete findings.

  • Experience and/or familiarity with IDS, NIDS, HIDS and other methods of threat detection

  • Knowledge and understanding of NERC CIP, NIST, or other process control network cyber security standards would be a plus

  • Proven analytical and problem solving abilities.

  • An ability to effectively prioritize tasks in a fast-paced and client driven environment, working with multiple clients and projects concurrently.

  • Strong customer orientation.

  • Advanced written and oral communication skills. Written communication is the primary method of disseminating work product to clients

  • Maintain the ability for attack mitigation and incident response.

  • Maintain a cyber security contingency plan

  • Managing technical content of the security training requirements.

  • Maintain cyber security policies and implementing procedures


  • Bachelor’s degree required, in Cybersecurity, Computer Science, Computer Engineering, Electrical Engineering, or a related technical field with appropriate experience.

  • Minimum of 3 years experience in cybersecurity. Additional applicable years of experience may be considered in lieu of degree requirement.

  • Understanding of security principles and firm knowledge of cybersecurity technologies, as well as industry recognized certifications.

  • Experience with cybersecurity vulnerability assessments, penetration tests, and the tools/techniques involved in both.

  • Experience in the capabilities and/or configuration of cybersecurity controls, specifically those relating to firewalls, access control, authentication, anti-virus/anti-malware, patching, and logging.

  • General knowledge of control systems utilized by utilities, manufacturing, oil and gas, transportation, smart buildings, and cities.

  • Strong effective written and oral communication skills.

  • Strong analytical and critical thinking skills.

  • Ability to operate under pressure and under tight deadlines, to operate in on-site industrial, corporate, and government work.

  • Demonstrated capability to make sound decisions based on good security practices and principles.

  • Demonstrate an understanding of business principles and operational security practices specific to engineering and/or security consulting.

  • Knowledge and/or experience with corporate policies and procedures and technical writing skills.

  • Knowledge and experience with modern and legacy computer networking and telecommunications.

  • Experience with physical cabling for network communications and control system I/O.

  • Travel for site work is estimated to average 30-50% annually.

  • Ability to obtain the appropriate security clearances.


Job Security

Primary Location US-MO-Kansas City

Schedule: Full-time

Travel: Yes, 10 % of the Time

About Burns & McDonnell

Burns & McDonnell is making the world a more amazing place with more than 5,000 engineers, architects, construction professionals, scientists and consultants on staff and growing. We strive to create amazing success for our clients and amazing careers for our employee-owners. We take on some of the world’s toughest challenges with the industry’s best thinking.

We have offices and projects spanning the US and the globe. We are proud to rank among FORTUNE magazine’s 100 Best Companies to Work For. Our culture of 100% employee ownership plays a major role in supporting that outcome. Each employee shares in the ownership of the firm, bringing the commitment of an owner to our projects. Clients appreciate that and have rewarded us with a 90% repeat business rate and decades-long partnerships. Pretty cool for a 100 year old firm that grows organically.

At Burns & McDonnell, you’ll have the opportunity to make a difference every day while fulfilling your personal and professional ambitions. Our entrepreneurial culture lets you guide your destiny and shape the path your career travels. And with more than 350 service specialties, your career and development options are abundant.

Burns & McDonnell is an Equal Opportunity Employer Minorities/Females/Disabled/Veterans

Req ID: 182193