Description:
DLC is seeking candidates for the role of Senior Information Security Analyst II on the Cybersecurity Operations (“CyberOps”) team, directly supporting NERC CIP requirements and critical infrastructure security. The Sr. Information Security Analyst is expected to understand the organization’s information security strategy and contribute to the development, maintenance, and implementation of the overall system-wide information security program needed for the protection of Duquesne Light.
As part of the CyberOps team the Sr. Information Security Analyst will need to possess business acumen and the ability to assess security risks, while considering system operational needs and adherence to regulatory requirements, directly anticipating and articulating potential operational impacts of policy and controls changes. They will utilize various tools and methods to provide support to end users, technology teams, and projects on a regular and ad hoc basis.
The Sr. Information Security Analyst will be directly responsible for working collaboratively and effectively with individuals across the enterprise to conduct cybersecurity activities including but not limited to: analyzing information security risk and threat data, monitoring and investigating anomalies, developing security controls/solutions and risk mitigation recommendations, executing system and application hardening, conducting vulnerability assessments, determining information security-related business needs and requirements for potential projects/initiatives, and diligent monitoring of networks and systems for signs of infection, compromise, and misconfiguration.
Job Responsibilities
- Investigate, respond, and remediate cyber events in DLC’s critical infrastructure network environment.
- Provide system administration and support of CyberOps systems and applications related to critical infrastructure.
- Work collaboratively as part of a team, with moderate supervision to provide relevant input and feedback to develop and maintain documentation for all assigned responsibilities.
- Provide relevant input and feedback on the investigation and proposal of technologies and methodologies that can enhance Duquesne Light’s security and/or business continuity posture.
- Manages expectations and effectively communicates and collaborates with colleagues and project team members.
- Effectively and efficiently manage security event monitoring, tuning, and incident response.
- Extensive knowledge of threats, risk analysis, and the development of security systems and protocols.
- Responsible for ensuring accurate and timely resolutions to all assigned issues relating to critical infrastructure security.
- Monitor daily cybersecurity events on DLC's network, and report findings to the Cybersecurity Operations Supervisor.
- Review endpoints to confirm compliance with endpoint security policies, procedures, and standards.
- Performs forensic analysis of host-based systems.
- Stay up to date on changes in threat landscape impacting Duquesne’s information security program.
- Research, investigate, communicate, and integrate actionable threat intelligence information in DLC Cyber Security Operations and IT systems.
- Ensure DLC’s adherence to NERC CIP standards, which involves implementing, monitoring, and maintaining relevant security policies and controls, working with and through regular audits, and leading efforts to remediate any compliance gaps.
- Responsible for monitoring and managing vendor risk through comprehensive evaluations, including vendor stability, compliance adherence, security capabilities, business continuity planning, and overall performance ensuring alignment with DLC’s risk tolerance and objectives.
Experience/Skills
- Intermediate understanding of cybersecurity topics such as vulnerability management, incident response, configuration monitoring, and endpoint protection.
- Proficient at technical writing and documenting procedures and processes.
- Strong interpersonal, communication and organizational skills with the ability to exhibit sound judgment and express verbal and written information effectively.
- Demonstrated ability to interact with people and translate complex concepts into easy-to-follow ideas and present them to all levels of the organization.
- Strong analytical and project management skills.
- Ability to prioritize efficiently while multi-tasking, dealing with interruptions, and working in a high paced energetic environment.
Education/Certification Requirements
- Bachelor’s degree in a related discipline such as Cyber Security/Computer Forensics and Vulnerability Management.
- An equivalent combination of education and experience may be considered in lieu of a bachelor’s degree.
- Four (4) years of experience