OnSite Cybersecurity Custodian

The Opportunity

Black & Veatch (BV) is seeking a direct‑hire, full‑time on‑site Cybersecurity Custodian to support cybersecurity execution for a new Power Plant project in Beech Island, South Carolina. Supported and led by BV Senior Cybersecurity Consultants, this individual will be the day‑to‑day on‑site custodian for Operational Technology (OT) / Industrial Control Systems (ICS) cybersecurity activities, coordinating with EPC, Owner, and vendors to ensure systems are secured, cybersecurity requirements are met, and all work is documented in a complete, audit‑ready evidence package.

This role is perfect for individuals experienced with power plant control systems (DCS/PLC/SCADA/HMI) who are enthusiastic about applying cybersecurity in practical construction and commissioning settings.

The role begins no later than November 2026 to support readiness activities ahead of Distributed Control System (DCS) Factory Acceptance Testing (FAT) in March 2027, includes travel to vendor FAT/Cyber FAT (CFAT) locations, and remains on‑site through installation, commissioning, and turnover. After completion of the Beech Island project, the role is expected to continue as a full‑time ICD Cybersecurity Consultant position supporting B&V’s Infrastructure Advisory (IA) Industrial Cybersecurity team across additional OT/ICS projects.

The post‑project role can be based at the BV office in Columbia, SC or any other BV office location.

• Report operationally to the project leadership team, while working closely with B&V cybersecurity stakeholders.
• Work closely with the IA IC Cybersecurity team who provides back‑office support including:
  Project planning and cybersecurity execution roadmap, Standards, templates, and evidence packages, Requirements interpretation and technical guidance and Action‑item tracking support and cadence facilitation.
• Execute the on‑site work, coordinate vendors, and ensure evidence is captured and organized.

• Supported and lead by BV Senior Cybersecurity Consultants from Home Office, manage day‑to‑day execution of the on‑site OT cybersecurity program, including tracking requirements, planned actions, and completion status and report status of activities to BV Senior Cybersecurity Consultants for review and approvals.
• Build and maintain an organized evidence repository (audit‑ready), ensuring deliverables are properly dated, labeled, and attributable.
• Maintain logs, checklists, procedures, forms, test results, scan outputs, approvals, and sign‑offs as required.

• Support pre‑CFAT readiness and participate in vendor CFAT activities as required (travel required).
• Validate cybersecurity controls prior to shipment (where applicable), including accounts, logging, backups, malware controls, and baseline configurations.
• Track and close cyber‑related FAT punch items; ensure retests and final evidence are captured and filed.

• Verify and document required access controls including MFA for remote access, least privilege, and role‑based access models.
• Support account management documentation: default credential changes, service account controls, privilege verification, termination/role‑change access actions, and secure credential handover processes.

• Maintain support for hardware/software inventory requirements (including OS/firmware versions, asset tags, locations, network references).
• Track configuration baselines, redlines, and as‑built updates throughout construction and commissioning.
• Coordinate change documentation and evidence, including post‑change backup capture and validation.

• Enforce and document removable media and transient device controls in line with Owner policies and site procedures.
• Oversee malware scanning workflows, authorization forms, encrypted media handling, quarantine steps, and scanning evidence retention.
• Coordinate vendor site visit preparations (e.g., ensuring vendor laptop/TCA scanning expectations are…