Simplify Logo

Full-Time

Associate Principal Consultant

ICS/OT Cybersecurity

Dragos

Dragos

501-1,000 employees

Provides ICS/OT cybersecurity platform and consulting

Compensation Overview

$150k/yr

Remote in USA

Hybrid

Category
IT & Security
Required Skills
Zeek
Wireshark
Requirements
  • 7+ years of hands‑on cybersecurity experience, including delivering professional services or consulting engagements in customer environments
  • Deep expertise in ICS/OT cybersecurity, including OT system architectures, risks, threats, vulnerabilities, and relevant frameworks and standards
  • Direct, practical experience operating in ICS/OT environments (e.g., asset owner, industrial plant, or operator setting)
  • Strong technical proficiency with OT assets (e.g., PLCs, HMIs, RTUs), OT networking protocols (e.g., Modbus, DNP3), and security analysis tools (e.g., Zeek/Bro, Wireshark)
  • Demonstrated ability to collect and analyze network and host data to baseline environments, validate expected state, and identify malicious or anomalous activity
  • Excellent written and verbal communication skills, including producing high‑quality customer reports and presenting complex technical findings to diverse audiences
  • Willingness to support Dragos Services growth through thought leadership and SME outreach and to travel for onsite engagements as needed (approximately 30%)
Responsibilities
  • Lead ICS/OT Cybersecurity Professional Services Engagements including architecture reviews, compromise assessments, and tabletop exercises for customers across various verticals including electric, oil and gas, water treatment, and manufacturing
  • Serve as the primary point of contact and SME for consulting clients, providing expert guidance while building strong relationships
  • Deliver findings and recommendations documentation at the end of each engagement (this includes presenting to customers and addressing questions and concerns)
  • Perform Scope of Work (SOW) reviews, Rules of Engagement (ROE) development, and other documentation-related tasks
  • Turn insights from customer engagements into research and innovation projects to fuel Dragos technology advancement (i.e., training material, Dragos Platform playbooks, etc.)
  • Support the larger community and represent Dragos through outreach efforts such as webinars, whitepapers, and conference presentations with novel content and ideas
  • Mentor teammates and be a leadership resource for the professional services organization
Dragos

Dragos

View
Website

Dragos protects industrial control systems (ICS) and operational technology (OT) by offering a platform and services for visibility, threat detection, and rapid response. The Dragos Platform monitors ICS/OT networks to surface suspicious activity and enable containment, and is complemented by consulting to help organizations improve security roadmaps. It focuses on ICS/OT security across industries such as manufacturing, energy, water, and transportation, serving a global client base. Its goal is to reduce risk to critical assets, public safety, and economic stability by delivering clear visibility, effective detection, and practical response capabilities.

Company Size

501-1,000

Company Stage

Series D

Total Funding

$432.2M

Headquarters

Hanover, Maryland

Founded

2016

Simplify Jobs

Simplify's Take

What believers are saying

  • Critical infrastructure buyers need unified detection, device hardening, and response in one platform.
  • Microsoft Azure and Sentinel integration simplifies procurement and expands enterprise distribution.
  • Japan, the UAE, and other regions open local channels and training-led growth.

What critics are saying

  • Microsoft ecosystems can relegate Dragos to an add-on security layer.
  • Competitors already bundle cloud-native OT controls, compressing standalone platform pricing.
  • xOT integration execution risk can delay product cohesion and weaken customer trust.

What makes Dragos unique

  • Dragos combines OT threat intelligence, managed visibility, and professional services for industrial environments.
  • Its platform targets ICS, SCADA, DCS, and OT systems across critical infrastructure.
  • Phosphorus extends Dragos into xOT device discovery and remediation across connected assets.

Help us improve and share your feedback! Did you find this helpful?

Your Connections

People at Dragos who can refer or advise you

Benefits

Medical, dental, vision, disability, & life insurance

401k with match

Equity

Competitive compensation

Remote working options

Pet-friendly options

In-house brewery

Growth & Insights and Company News

Headcount

6 month growth

0%

1 year growth

-1%

2 year growth

-2%
AbstractCore
Jun 1st, 2026
Dragos enhances xOT security with Phosphorus acquisition.

Dragos enhances xOT security with Phosphorus acquisition. On: June 1, 2026 Dragos announced it has acquired Phosphorus, extending the Dragos Platform to protect the billions of connected devices embedded across critical infrastructure and other operational networks. Operational environments have outgrown traditional OT boundaries. Power grids, pipelines, manufacturing facilities, and data centers now depend on an increasingly diverse mix of connected devices and digital systems. Traditional and non-traditional assets alike are woven throughout their operational environments. This expanded environment - OT systems and the billions of connected devices that have reshaped how critical infrastructure operates - is the Extended Operational Technology environment, or xOT. Adversaries are already operating across it. Defenders need a broader scope of visibility, intelligence, and control to defend it. Dragos's acquisition of Phosphorus reflects a deliberate strategy to protect the full operational environment as it exists and operates today. Dragos offers the industry's most comprehensive OT cybersecurity platform. Adding Phosphorus extends Dragos capabilities to secure connected devices across the full xOT environment, delivering deeper device visibility, automated remediation, and continuous risk reduction. "The connected devices you find everywhere in critical infrastructure are largely invisible to the cybersecurity programs that protect operational environments," said Robert M. Lee, CEO and Co-Founder of Dragos. "With Phosphorus, we close that gap and secure xOT, the full environment that matters." "We built Phosphorus to solve the connected device problem - the unmanaged devices, the default credentials, the firmware no one was updating. Together with Dragos, we can solve it with a depth and scale that wasn't possible before. That's what the next generation of OT cybersecurity looks like," said Sonu Shankar, President and COO of Phosphorus. Phosphorus offers the industry's most comprehensive discovery and remediation platform for connected devices, which integrates with customers' existing infrastructure without requiring disruptive architectural changes. The platform actively discovers and provides deep visibility into devices across OT and enterprise environments, delivering detailed risk context and continuous situational awareness across the extended device landscape. Phosphorus automates remediation workflows, including password rotations, firmware updates, certificate management, and configuration hardening, while helping organizations address compliance and reduce risk at scale. Dragos customers will gain expanded asset visibility and integrated device intelligence in the near term, with automated remediation workflows and a unified platform experience to follow. Phosphorus customers will continue to be fully supported, with expanded access to Dragos offerings as integration progresses. Sonu Shankar will continue to lead the Phosphorus business as a General Manager within Dragos, through a structured, phased integration. With the addition of Phosphorus, Dragos estimates its total addressable market opportunity at more than $50 billion. The acquisition builds on Dragos's October 2024 acquisition of Network Perception, which added expanded OT network visibility, segmentation validation, and compliance to the Dragos platform. Where Network Perception maps and secures the network architecture, Phosphorus secures the devices running on it. 2026-06-01

PR Newswire
Mar 31st, 2026
Dragos appoints Kaori Nieda as country manager to drive expansion in Japan

Dragos, a global leader in operational technology cybersecurity, has appointed Kaori Nieda as its first Country Manager in Japan. The appointment builds on Dragos's existing partnership with Macnica and signals the company's deepening commitment to the Japanese market. Nieda brings over 20 years of cybersecurity experience spanning threat intelligence, network security and SaaS-based solutions. Most recently, as Country Manager of Amplitude Analytics GK, she doubled FY23 performance and secured new strategic customers. She will focus on accelerating growth, deepening customer relationships and expanding Dragos's capabilities in protecting Japan's industrial and critical infrastructure organisations. The Maryland-headquartered company provides OT cybersecurity technology covering asset identification, vulnerability management and threat detection for sectors including utilities, manufacturing, transport and government.

Yahoo Finance
Feb 3rd, 2026
Dragos Expands Collaboration with Microsoft to Deliver OT-Native Cybersecurity at Global Industrial Scale

Dragos expands collaboration with Microsoft to deliver ot-native cybersecurity at global industrial scale. Dragos brings proven energy and industrial cybersecurity, seamlessly deployed on Microsoft Azure, integrated with Microsoft Sentinel and readily accessible through Microsoft Marketplace HANOVER, Md., February 03, 2026-(BUSINESS WIRE)-Dragos Inc., a global leader in cybersecurity for operational technology (OT) environments, today announced an expanded collaboration with Microsoft to help organizations modernize and secure their cyber-physical operations amid accelerating digital transformation, cloud adoption, and AI-driven change. This collaboration focuses on integrating Dragos's capabilities with Microsoft's cloud and security platforms. By deploying the Dragos Platform on Microsoft Azure, integrating with Microsoft Sentinel, and enabling streamlined procurement through Microsoft Marketplace, organizations can more tightly align IT and OT security operations while adopting robust protections purpose-built for operational environments. "As connectivity and AI extend deeper into physical operations, a rapidly growing number of organizations face increasing pressure to modernize without increasing security risk," said Robert M. Lee, CEO and Co-Founder of Dragos. "Microsoft recognizes both the scale and strategic importance of operational technology security. By deeply integrating the Dragos Platform across the Microsoft ecosystem, we're enabling customers to pursue digital transformation with confidence - without compromising the specialized protections operational environments demand. This collaboration reflects a shared commitment to long-term cyber resilience for the systems that power and advance our world." "By deeply integrating the Dragos Platform with Microsoft Azure and Microsoft Sentinel, we're giving energy and industrial customers a streamlined way to unify IT and OT security operations in the environments they already use," said Darryl Willis, Corporate Vice President, Energy & Resources Industry at Microsoft. "Our collaboration helps asset-intensive industries accelerate cloud and AI innovation while strengthening the safety, reliability, and resilience of the critical systems that power businesses and communities." As organizations digitalize operations, connect physical assets, and adopt AI, adversaries are increasingly targeting operations environments where safety, availability, and reliability are paramount. Attack timelines have compressed from months to weeks - and in some cases days - while the potential impact of OT cyber incidents continues to rise. According to MarketsandMarkets, the global OT security market is expected to grow from $23.5 billion in 2025 to $50.3 billion by 2030, representing a 16.5% CAGR[1].

Business Wire
Jan 28th, 2026
Dragos appoints Dawn Mitchell as chief people officer to scale OT cybersecurity operations

Dragos, a global leader in operational technology cybersecurity, has appointed Dawn Mitchell as Chief People Officer. Mitchell will lead the company's people organisation and support its growth as demand for OT cybersecurity accelerates globally. Mitchell brings over 15 years of experience in people strategy for cybersecurity and enterprise software organisations. She previously served as Chief People Officer at HackerOne and held senior HR roles at Appian, progressing from Director of Talent Acquisition to Senior Vice President of Human Resources. Earlier positions included roles at Opower and Red Hat. At Dragos, Mitchell will focus on building organisational capacity to serve more customers, expand into new markets, and maintain technical depth essential for protecting industrial and critical infrastructure whilst preserving the company's mission-driven culture.

SourceSecurity.com
Oct 30th, 2025
Enhancing OT with Corsha and Dragos integration

Enhancing OT with Corsha and Dragos integration. Corsha, an innovator in Machine Identity Provider (mIDP) technology for machine-to-machine (M2M) communications, has announced a strategic partnership with Dragos, Inc., a renowned name in operational technology (OT) cybersecurity. This collaboration aims to enhance security protocols in industrial systems by amalgamating machine identity and threat detection, thus providing a comprehensive and trusted basis for Zero Trust implementation in OT environments. Addressing unverified machine traffic. With the rising complexity and connectivity of operational networks, security risks are mounting. The addition of new machines, sensors, and autonomous systems to production settings broadens the potential attack surface. Often, these devices engage in communication without sufficient authentication, leaving room for exploitation. Adversaries are increasingly adept at using unverified machine traffic to bypass security measures and propagate threats unnoticed. Corsha's automated machine identity solution. Achieving Zero Trust within OT settings transcends mere network visibility or perimeter defence; it necessitates constant verification of all machines and actions. By integrating Corsha's automated machine identity and continuous authentication system with Dragos' robust threat intelligence, organisations can verify every machine communication's identity and ensure threats are swiftly identified and mitigated, preventing operational disruptions. Dragos' comprehensive threat detection. Anusha Iyer, CEO and Founder of Corsha, emphasised that machine-to-machine communication is critical yet poorly protected within modern operational systems. "By integrating our machine identity platform with Dragos' threat detection platform, we are enabling organisations to verify connections continuously and act on real-time identity-driven intelligence. This partnership realises Zero Trust for OT, enhancing resilience and response capabilities and securing critical industrial systems," she stated. Enhancing OT security with integrated solutions. The joint integration of Corsha's machine identity platform with the Dragos Platform assigns customers Dan Dorchinsky, VP Public Sector at Dragos Inc., remarked on the necessity of combining visibility and confidence in machine connections for securing OT environments. The joint integration of Corsha's machine identity platform with the Dragos Platform empowers customers with actionable insights, fostering rapid and confident responses. By fusing Corsha's identity verification with Dragos's comprehensive threat detection and visibility capabilities, organisations can bolster their defense measures and fortify operational resilience. Layered OT defence strategies. The Corsha and Dragos integration connects two vital OT defense components: continuous machine identity assurance and advanced threat detection. This direct integration offers enhanced visibility, trust, and control over operational ecosystems. Dragos provides intricate visibility across ICS/OT networks to identify anomalies, while Corsha ensures only authenticated machines establish or uphold connections, mitigating risks of unauthorised activity. Strengthening Zero Trust through real-time controls. Collaboration has wider Zero Trust coverage by merging Dragos' real-time asset with Corsha's identity This collaboration delivers broader Zero Trust coverage by merging Dragos' real-time asset visibility with Corsha's dynamic identity management, facilitating policy-based segmentation and access controls. It enhances security by not just detecting threats but actively enforcing secure communications standards, specifically in non-human interactions. Optimising incident response and control measures. With machine identity context added to Dragos' precise detections, Corsha amplifies the accuracy of trusted communication intelligence, streamlining response efforts. This provides security teams with clearer, actionable insights that expedite threat investigation and resolution across OT settings. Progressing SANS Five ICS Critical Controls. Corsha mIDP introduces machine identity and access control measures that align with the SANS Five ICS The Corsha mIDP, through integration with Dragos, introduces machine identity and access control measures that align with the SANS Five ICS Critical Controls. By consistently verifying and authenticating machine communications, the joint solution enforces strong network boundaries and builds layered defences that comply with industry best practices. Achieving Zero Trust by validating connections. Through this collaboration, Corsha and Dragos empower organisations to attain Zero Trust within OT environments by validating each connection, strengthening detections with machine identity, and dynamically regulating access based on risk levels. These combined capabilities accelerate the identification and containment of malicious activities, ensuring uninterrupted operational safety in demanding industrial settings.