Cyber Research Scientist (Internal Only)

The Cyber Research Scientist is responsible for conducting research in industrial cybersecurity relevant to the energy industry. This position is funded through an external grant from the Department of Energy (DOE) and is responsible for ensuring project research objectives are achieved. Responsibilities include developing cybersecurity and Cyber-Physical Systems (CPS) solutions, contributing to education, training, and outreach, managing research facilities, developing software products, and producing scholarly publications and presentations. The individual will also mentor graduate and undergraduate students and prepare periodic research reports. This is a grant-funded position with an initial appointment of 1.5 years. Continued employment is contingent upon funding availability and performance.

Research and Development:

Research industrial cybersecurity threats and vulnerabilities specific to the energy industry. Develop effective solutions for detecting and preventing network intrusions targeting industrial control systems (ICS). Design and implement cyber-physical systems (CPS) solutions to enhance the resilience of industrial systems against cyberattacks. Maintain proficiency in evolving cybersecurity trends and emerging threats through continuous learning and research. Collaborate with other researchers and industry experts to exchange knowledge and advance the field of industrial cybersecurity. Develop research proposals under the supervision of principal investigators for external funding opportunities. Disseminate research results in workshops, meetings, and national/international conferences.

Communication and Documentation:

Prepare and deliver clear, concise, and informative presentations on research findings and advancements. Write comprehensive research reports, manuscripts, and funding proposals for securing research grants. Develop educational and training materials for various audiences on industrial cybersecurity and related topics. Create operations and procedure manuals to guide research activities and ensure consistency. Document research methodology, findings, and conclusions for future reference and dissemination.

Setup and Management:

Establish the physical research facility, including setting up necessary equipment and infrastructure. Implement and configure a virtual simulation platform for testing and research purposes. Maintain and manage the research facility, ensuring its smooth operation and functionality.

Training and Outreach:

Design and develop training programs on industrial cybersecurity and CPS solutions for different audiences, including industry professionals, students, and researchers. Deliver training sessions for different audiences. Engage in outreach activities to raise awareness about industrial cybersecurity and promote best practices.

Graduate and Undergraduate Research:

Guide and mentor graduate and undergraduate students on relevant research projects related to industrial cybersecurity. Provide feedback and support to students to help them develop their research skills and expertise. Other duties may be assigned to this position on a regular or occasional basis to respond to the needs of the university.

Minimum Qualifications:

Master's degree in a relevant field such as cybersecurity, computer science, engineering, or management information systems (MIS). Experience in network security, vulnerability assessment, penetration testing, and incident response. Proficiency in Python, C/C++, SQL, and MATLAB. At least two years of software development experience.

Desired Qualifications:

At least two years of demonstrated expertise in industrial cybersecurity and related research methodologies. At least two years of experience working in multidisciplinary teams. At least one year of experience with Cyber-Physical Systems (CPS). Professional cybersecurity certifications (e.g., CompTIA Security+). Experience with grant-funded research and peer-reviewed publications. Experience developing and implementing PLC programs and working with industrial control system protocols, including Modbus. Record of scholarly accomplishments (e.g., publications, presentations, research awards).

Key Competencies:

Proficiency in using/developing tools to detect, evaluate, and mitigate cybersecurity risks associated with the energy, petrochemical and port industries. Expertise in organizing, analyzing, and interpreting complicated research data to develop innovative approaches to tackle technological challenges. An ability to convey intricate cybersecurity findings in a clear way in verbal and written communication. Experience in preparing abstracts, presentations, research reports, manuscripts, funding proposals, education and training materials, operations and procedure manuals, and other written material and documentation. Proficiency in UNIX/Linux operating systems. Proficiency in network analysis and monitoring tools such as Wireshark, Squil, and Netstat. Proficiency in vulnerability scanner and exploitation framework tools such as Metasploit and Nmap. Proficiency in Security Information and Event Management (SIEM) Tools such as Wazuh, Snort, SecurityOnion, Zeek, Splunk, and Fortinet FortiSIEM. Proficiency in applying machine learning (ML) methods for data analytics. Possess a technical aptitude for problem-solving and be capable of addressing complex information security challenges across existing and emerging technologies and digital environments. Knowledge of network monitoring (wired and wireless), identifying concerns, detecting intrusions, and developing solutions in real-time to optimize security. Knowledge of security requirements for cloud environments. Knowledge of engineering requirements within the petrochemical industry and/or semiconductor industry. Ability to engineer solutions to solve cyber issues encountered in the energy industry. Knowledge of engineering requirements for wired and wireless networks and strategies to secure them. Understanding of security engineering principles and practices to design, develop, and implement technical controls following NIST guidelines. Proficiency in computer engineering requirements for incident detection, response, and forensics. Excellent communication, writing, and presentation skills.

Physical Requirements:

With or without accommodation: Will frequently be required to perform desk-based computer tasks, network-based research tasks, use the telephone, speak clearly, and demonstrate listening comprehension. The applicant will also be required to travel to partner locations and present research results in conferences/workshops or facilitate education, training, and outreach events.

Job Conditions:

May require occasional evening and/or weekend work to meet university and departmental needs.