Job Specifications
Senior OT Cybersecurity Architect
Location: Bethesda, MD (Hybrid - 3 days onsite)
Employment Type: Long-term contract or contract-to-hire
Clearance: Must be able to pass a standard background check to obtain a Public Trust Clearance
Work Authorization: U.S. Citizenship required
Macro Pros has an immediate opening for a Senior OT Cybersecurity Architect / Engineer to lead the design and implementation of cybersecurity solutions for Operational Technology (OT) environments, including building automation, utilities, and critical facilities systems.
The position will be supporting our client in Bethesda, Maryland. Interested candidates must currently reside in metro Washington, D.C. and willing to work on-site in Bethesda 3 days a week.
This role partners with internal customers and stakeholders to understand pain points, initiatives, and long-term objectives; defines OT/IT security architectures and roadmaps; and drives multi-functional efforts to improve cybersecurity posture.
Key Responsibilities
Architecture & Design
Develop and maintain OT/IT security reference architectures, patterns, and standards.
Design secure network and system architectures for OT environments (segmentation, access control, monitoring, remote access).
Review proposed OT and facilities projects for cybersecurity impacts and recommend design changes.
Stakeholder Engagement & Strategy
Work with facilities, biomedical/clinical engineering, program offices, and other customers to understand pain points, mission needs, and long-term objectives.
Translate business and operational requirements into actionable OT cybersecurity roadmaps and prioritized initiatives.
Present recommendations and solution options to technical and non-technical leadership.
Advancing Cybersecurity Posture
Identify gaps and opportunities to mature OT security capabilities (e.g., asset visibility, monitoring, access management, incident response).
Recommend and help implement OT security tools and platforms (e.g., OT monitoring, asset discovery, vulnerability management).
Develop and maintain OT security standards, baselines, and configuration guidance aligned with healthcare agency and federal policy.
Multi-Functional IT & Security Coordination
Coordinate with network services, system services, identity/access management, and cybersecurity operations on cross-cutting initiatives.
Guide remediation efforts for OT-related vulnerabilities and weaknesses, ensuring solutions are feasible for operations.
Support the integration of OT systems into enterprise security services (logging, SIEM, vulnerability scanning, ticketing).
Policy, Compliance, and Governance
Interpret and apply NIST and federal frameworks (e.g., NIST CSF, NIST SP 800-82, 800-53, RMF, FISMA, FedRAMP where applicable) to OT environments.
Contribute to policies, procedures, and standards that govern OT cybersecurity.
Support audits, assessments, and authorization activities with architectural input and documentation.
Basic Qualifications
Bachelor’s degree in cybersecurity, computer science, engineering (mechanical, electrical, controls, systems), information technology, or related field; equivalent combination of education and experience will also be considered.
Significant experience (8+ years) in cybersecurity, OT/ICS, or closely related fields, including:
Designing or engineering secure network and system architectures, and hands-on work with OT/ICS or building/facility systems or close integration of IT security with OT environments.
Demonstrated experience leading multi-functional technical initiatives (e.g., vulnerability remediation campaigns, segmentation projects, tool deployments).
Strong knowledge of networking and security concepts (segmentation, zero trust concepts, identity/access management, monitoring, incident response).
Proven ability to engage with stakeholders to elicit requirements, explain tradeoffs, and gain consensus on solution approaches.
Excellent written and verbal communication skills, including technical documentation and executive-ready presentations.
Preferred Qualifications
Deep familiarity with OT/industrial systems (BAS/BMS, power/backup systems, utilities, lab facility controls) and associated protocols (e.g., BACnet, Modbus).
Experience with OT security platforms and cyber-physical systems tooling (e.g., Nozomi, Dragos, Claroty).
In-depth experience with federal security frameworks and processes, including NIST CSF, NIST SP 800-82, NIST SP 800-53, RMF, FISMA, and FedRAMP.
Relevant advanced certifications, such as CISSP, CISM, GICSP, GRID, or comparable OT/cybersecurity credentials.
Experience defining security roadmaps, standards, and patterns in a large or complex organization (federal or healthcare preferred).
Work Environment
Must be willing to go onsite in Bethesda at least three days per week. Occasional off-hours work to support changes, maintenance windows, or incident response.
Regular access to mechanical rooms, plants, labs, and clini