Associate Operations Cybersecurity Analyst OR Operations Cybersecurity Analyst

Important Application Submission Information

Build an exciting, rewarding career with us - help us make a difference for millions of people every day. Consider joining the Duke Energy team, where you'll find a friendly work environment, opportunities for growth and development, recognition for your work, and competitive pay and benefits.

Associate Operations Cybersecurity Analyst OR Operations Cybersecurity Analyst

"Depending upon the desired qualifications of the successful applicant, the hiring manager may elect to fill this position at a higher level within the job hierarchy."

This position will support the Nuclear Cyber Security program. The Nuclear Cyber Security organization provides direct service and support to all Nuclear generating stations (2 states, 6 sites) and general office (NGO) to ensure compliance with the Nuclear Regulatory Commission (NRC) regulated Duke Energy Nuclear Cyber Security Plan and requirements. This includes responses to cyber security threats and events, implementing the cyber security program, on-going management of the cyber security program, and managing/owning cyber security infrastructure. The cyber security program encompasses all infrastructure assets including but not limited to firewalls, data diodes, SIEM, industrial control systems (ICS), and other digital assets scoped into the program.

This position is responsible for analysis, implement and management of complex cyber security solutions which address real and potential threats specific to Nuclear generation assets and equipment. This analyst will coordinate across one or more nuclear operating stations including NGO to ensure overall Nuclear safety and power plant operation are maintained. This will involve solving complex cyber security problems, participating in projects impacting cyber security, performing cyber security assessments, hardening critical digital assets (CDA), managing cyber security infrastructure, and others.

This position will also contribute to the ongoing development and implementation of the Nuclear Cyber Security Program to maintain a strong cyber security posture and improve efficiency. This will include revision of program policy and procedures, implementing new technology, and building positive relationships with internal and external organizations.

This position requires understanding of the integrated generating plant systems as well as processes to secure plant cyber assets. The analyst shall demonstrate an understanding of the impact of cybersecurity processes and infrastructure on generating systems and the overall electric grid.

• Manage and support cybers security infrastructure including team owned digital platforms such as firewalls, data diodes, SIEM, industrial control systems (ICS), Microsoft products, hypervisor, etc.

• Technical lead and architect for common digital components, systems and software including cyber security.

• Assist in development and revision of the ongoing strategy of the Nuclear Cyber Security Program and make changes where possible to improve efficiency and compliance.

• Access and respond to cyber security events and incidents.

• Basic knowledge of IT and Cybersecurity policy, standards, processes, resources, and controls.

• Provide technical and administrative support to other groups to assist with area of expertise.

• Participate in the Team's duty rotation.

• Build positive relationships with different organizations and personnel.

• Willingness to accept new responsibilities and be eager to learn new concepts and technologies.

Associate Operations Cybersecurity Analyst

• Associates Degree or Associate's Degree in Computer Science, Cyber Security, Engineering, or related.

• In lieu of Associate's degree, high school diploma/GED, and 2 years direct related experience.

Operations Cybersecurity Analyst

• Bachelor's degree in Engineering, Cybersecurity, Computer Science, or related and 2 years direct related experience.

• Experience with the nuclear cyber security program including NEI standards (NEI 08-09, NEI 13-10, and NEI 04-04).

• Demonstrated knowledge of computer networks, servers, cyber security related appliances, and protocols (e.g., Cisco firewalls, Cisco network switch, OWL data diodes, TCP/IP, UDP/IP, etc.).

• Experience in the security aspects of multiple platforms, operating systems, software, communications, and network protocols (e.g., Splunk Enterprise SIEM, Microsoft Server, Microsoft Windows, Linux, VMWare hypervisor, Microsoft Hyper-V, etc.).

• Working Knowledge of various programing languages (PowerShell, VBA, etc.).

• Working knowledge of Industrial Control Systems (ICS), Cyber Security and Operational Technology (OT) such as Programmable Logic Controllers (PLCs), Emerson Ovations, etc.

• Previous Nuclear Station work experience with Plant Monitoring System, Plant Security Computer, and Cyber Security Defensive Architecture.

• Demonstrated ability to work and communicate (verbal and written) effectively with personnel at all levels of the organization (client, staff, management, etc.).

• Ability to deliver superior results within allocated time through effective prioritization, scheduling, planning, and execution of assigned work.

• Demonstrated the ability to work as part of a team, be a self-starter, exercise flexibility, and take personal responsibility for assigned accountabilities.

• Demonstrated ability to adapt to changing processes, regulations, responsibilities, and work environments.

• Working Knowledge of NERC CIP regulations

• Working Knowledge of network architecture and firewall security

• Ability to troubleshoot network switches and routers on power generation station DCS and data networks

• Able to achieve nuclear site Unescorted Access.

• Required to wear personal protective equipment (hard hat, safety glasses, fall protection, etc.) as needed.

• Position may require regional travel (50% or more)

• Typically, an office environment at a Nuclear Generation Station

• Typical schedule 4-day week

• Hybrid Mobility Classification (2 days onsite, 2 days remote)

"Depending upon the desired qualifications of the successful applicant, the hiring manager may elect to fill this position at a higher level within the job hierarchy."

#LI-BM1

#LI-Hybrid

Travel Requirements

Privacy

Do Not Sell My Personal Information (CA)

Terms of Use

Accessibility