Energy Cybersecurity Analyst
📍 Hybrid or On-site | 💼 Full-Time | 🔐 Critical Infrastructure & Grid Security
🛡️ Defend the Grid: Protect the power infrastructure that keeps communities running—from smart grids to renewable energy systems.
🔍 Threat Hunting in Real Time: Monitor, detect, and respond to cybersecurity incidents across IT and OT networks.
💻 High-Tech, High-Stakes: Use advanced tools and collaborate with experts to solve complex cybersecurity challenges in critical infrastructure.
Why Join Us:
- Critical Infrastructure Security: Join a leading energy provider where you'll safeguard the power grid and renewable assets against cyber threats in a critical infrastructure environment.
- Advanced Tools & Tech: Work with state-of-the-art cybersecurity tools in a company that invests heavily in protecting its smart grid and industrial control systems.
- Expert Team Culture: Collaborate with a team of security experts in a culture that values continuous learning, proactive problem-solving, and a vigilant security mindset.
Key Responsibilities:
- Monitor the organization’s energy control networks and systems (SCADA/industrial control systems and corporate networks) for suspicious activity or unauthorized access, using intrusion detection systems and security monitoring tools.
- Investigate security alerts or incidents in real-time by analyzing logs and network traffic to determine the nature and scope of potential threats, and respond according to the incident response plan.
- Conduct regular vulnerability assessments and penetration testing on critical infrastructure components to identify weaknesses in both IT and OT (operational technology) environments.
- Implement and maintain cybersecurity measures such as firewalls, intrusion prevention systems, access controls, and network segmentation to protect power generation facilities and grid control systems.
- Collaborate with IT and engineering teams to apply security patches and updates to systems and devices, carefully managing any downtime for critical systems.
- Develop and update cybersecurity policies, incident response plans, and training programs; educate employees on security best practices (e.g. phishing awareness) to foster a security-conscious culture.
- Ensure compliance with industry security standards and regulations (e.g. NERC CIP for power systems), preparing documentation and reports for audits or management review.
Qualifications:
- Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related field.
- 2+ years of experience in cybersecurity analysis or IT security, with exposure to industrial control systems or critical infrastructure security strongly preferred.
- Knowledge of network security principles, intrusion detection systems, firewalls, and incident response best practices.
- Familiarity with SCADA/ICS environments and protocols (e.g. Modbus, DNP3) and the unique security challenges of operational technology systems.
- Relevant security certifications (Security+, CISSP, GIAC/GICSP or similar) are a plus.
- Strong analytical and problem-solving abilities, with keen attention to detail and the ability to remain calm and effective during security incidents.
- Excellent communication skills for reporting incidents, training staff on cybersecurity practices, and coordinating with cross-functional teams.
