1898 & Co.

About the Company

1898 & Co. turns business and technology insights into action for critical infrastructure industries. For years, multidisciplinary teams inside Burns & McDonnell have come together to support clients and engineering and construction teams with strategic insight, technological know-how and financial experience. We provided analysis and insight. We made projects more efficient and cost-effective. We balanced innovation with pragmatism. We delivered stunning results. And our clients wanted more of it. As our capabilities expanded, we formalized our efforts and, in 2019, we launched 1898 & Co. as a business and technology consultancy for the asset-intensive industries that Burns & McDonnell serves. Since then, we’ve built a global team of consultants that bring diverse experience and unique perspectives to solve our clients’ most complex problems. We consider ourselves incredibly fortunate to show up every day and make a difference for our clients and communities. Our multidiscipline project teams are purpose-built to meet you where you are and create sustainable growth during a time of rapid change. With deep experience across physical and digital infrastructure, we turn data into action that drives smarter decision-making and maximizes value. 1898 & Co. is possibilities powered by experience.

Listed Jobs

Company Name

1898 & Co.

Job Title

Industrial Cybersecurity Analyst - 1898 & Co. (Washington DC)

Job Description

**Job Title:** Industrial Cybersecurity Analyst **Role Summary:** Assist in the protection of IT and OT environments by conducting penetration testing, vulnerability assessments, and secure architecture design. Support compliance with NIST CSF/RMF and other regulatory frameworks while documenting controls and hardening systems in critical infrastructure settings. **Expectations:** - Apply industry‑recognized cybersecurity tools and frameworks to identify and remediate risks. - Deliver technical artifacts, documentation, and post‑event analysis for clients and internal teams. - Maintain certifications and stay current on OT/ICS/SCADA security best practices. **Key Responsibilities:** - Perform network and web application penetration testing and vulnerability assessments. - Design, implement, and harden OT/IT controls (firewalls, PLCs, switch firmware, patching). - Create and maintain technical documentation (control listings, data‑flow diagrams, POA&Ms). - Upload cybersecurity artifacts to eMASS and support RMF accreditation packages. - Conduct post‑event analysis and recommend procedural or technical changes. - Develop cybersecurity strategies and secure system architecture for industrial clients. - Coordinate with multidisciplinary teams (engineering, operations, risk) to address technical issues. - Participate in industry conferences and continuous professional development. **Required Skills:** - Knowledge of OT/ICS/SCADA systems and associated security controls. - Proficiency with NIST CSF, RMF, IEC 62443, and other compliance frameworks. - Experience with penetration testing tools (Metasploit, Burp Suite, Nmap), vulnerability scanners, and hardening utilities. - Strong understanding of network security (firewalls, ACLs, IDS/IPS, VPN). - Ability to read/write technical documentation and diagrams. - Excellent written and verbal communication; effective stakeholder collaboration. - Analytical, critical‑thinking, and problem‑solving under tight deadlines. **Required Education & Certifications:** - Bachelor’s degree in Cybersecurity, Computer Science, Computer Engineering, Electrical Engineering, or related field (or equivalent experience). - Industry‑recognized IT/cybersecurity certifications (e.g., CEH, OSCP, CISSP, CISA, CCNA/CCNP, ISA/IEC 62443, SCADA/ICS‑specific credentials).

Washington, United states

On site

19-11-2025