Sr Info Security Analyst II (19319)

Duquesne Light Company headquartered in downtown Pittsburgh is a leader in providing electric energy and has been in the forefront of the electric energy market with a history rooted in technological innovation and superior customer service. Today the company continues its role as a leader in the transmission and distribution of electric energy providing a secure supply of reliable power to more than half a million customers in southwestern Pennsylvania.

Duquesne Light Company is committed to creating a culture of inclusion. We value and respect the unique differences and experiences of our employees. We believe that our differences lead to better collaboration innovation and outcomes. We want you to join our team!

Hiring Manager:Jon Giordano

Range: $105000 $142313

Overall Purpose:

DLC is seeking candidates for the role of Senior Information Security Analyst II on the Cybersecurity Operations (CyberOps) team directly supporting NERC CIP requirements and critical infrastructure security. The Sr. Information Security Analyst is expected to understand the organizations information security strategy and contribute to the development maintenance and implementation of the overall systemwide information security program needed for the protection of Duquesne Light.

As part of the CyberOps team the Sr. Information Security Analyst will need to possess business acumen and the ability to assess security risks while considering system operational needs and adherence to regulatory requirements directly anticipating and articulating potential operational impacts of policy and controls changes. They will utilize various tools and methods to provide support to end users technology teams and projects on a regular and ad hoc basis.

The Sr. Information Security Analyst will be directly responsible for working collaboratively and effectively with individuals across the enterprise to conduct cybersecurity activities including but not limited to: analyzing information security risk and threat data monitoring and investigating anomalies developing security controls/solutions and risk mitigation recommendations executing system and application hardening conducting vulnerability assessments determining information securityrelated business needs and requirements for potential projects/initiatives and diligent monitoring of networks and systems for signs of infection compromise and misconfiguration.

Job Responsibilities:

• Investigate respond and remediate cyber events in DLCs critical infrastructure network environment.
• Provide system administration and support of CyberOps systems and applications related to critical infrastructure.
• Work collaboratively as part of a team with moderate supervision to provide relevant input and feedback to develop and maintain documentation for all assigned responsibilities.
• Provide relevant input and feedback on the investigation and proposal of technologies and methodologies that can enhance Duquesne Lights security and/or business continuity posture.
• Manages expectations and effectively communicates and collaborates with colleagues and project team members.
• Effectively and efficiently manage security event monitoring tuning and incident response.
• Extensive knowledge of threats risk analysis and the development of security systems and protocols.
• Responsible for ensuring accurate and timely resolutions to all assigned issues relating to critical infrastructure security.
• Monitor daily cybersecurity events on DLCs network and report findings to the Cybersecurity Operations Supervisor.
• Review endpoints to confirm compliance with endpoint security policies procedures and standards.
• Performs forensic analysis of hostbased systems.
• Stay up to date on changes in threat landscape impacting Duquesnes information security program.
• Research investigate communicate and integrate actionable threat intelligence information in DLC Cyber Security Operations and IT systems.
• Ensure DLCs adherence to NERC CIP standards which involves implementing monitoring and maintaining relevant security policies and controls working with and through regular audits and leading efforts to remediate any compliance gaps.
• Responsible for monitoring and managing vendor risk through comprehensive evaluations including vendor stability compliance adherence security capabilities business continuity planning and overall performance ensuring alignment with DLCs risk tolerance and objectives.

Experience/Skills:

• Intermediate understanding of cybersecurity topics such as vulnerability management incident response configuration monitoring and endpoint protection.
• Proficient at technical writing and documenting procedures and processes.
• Strong interpersonal communication and organizational skills with the ability to exhibit sound judgment and express verbal and written information effectively.
• Demonstrated ability to interact with people and translate complex concepts into easytofollow ideas and present them to all levels of the organization.
• Strong analytical and project management skills.
• Ability to prioritize efficiently while multitasking dealing with interruptions and working in a high paced energetic environment.

Education/Certification Requirements:

• Bachelors degree in a related discipline such as Cyber Security/Computer Forensics and Vulnerability Management.
• An equivalent combination of education and experience may be considered in lieu of a bachelors degree.
• Four (4) years of experience

Preferred:

• Previous utility experience in transmission and distribution operations or other industries utilizing SCADA systems.
• Experience with the NERC CIP compliance framework and/or other regulatory frameworks governing Cybersecurity Operations.
• Experience participating in security and regulatory audits including evidence gathering and analysis.
• Experience utilizing and managing security products including Tripwire Enterprise Splunk ESM Dragos Nessus and Symantec Endpoint Protection.
• Experience with Systems Administration in server environments including Microsoft Windows and Linux Operating Systems.
• Experience with coding/scripting languages including Python 2&3 PowerShell and SQL.
• Information Security certifications including CISSP SANS GIAC.
• Relevant work experience between 5 and 7 years

Scope

Primary focus is on daily deliverables outputs and reporting. Accountable for managing ones own time and workflow but may be leading projects or project steps. Work is typically complex in nature requiring the incumbent to draw on previous knowledge to perform in the role. Continues to build knowledge base but has a solid foundation to act independently the majority of the time. Still draws on experts and managers when needed but less frequently. Acts as a resource to less experienced staff on routine issues.

Decision Impact

Problems and issues faced are complex. Draws on past experience on a regular basis to solve problems and take new perspectives on existing solutions. Accountable for direct level of reasoning and decision making.

Hybrid Work

Position follows our hybrid work model with a minimum of two days working in the office and the remaining days working remotely. Reporting location and frequency may be subject to change based on job role and department needs.

Storm Roles

All NonUnion Employees will serve in storm roles as appropriate to their role and skillset. Please be sure to discuss storm roles with the hiring manager for this position as duties can vary across the Company.Examples of storm roles could include but arent limited to duties such as working with operations for service center support or with the communications customer service or government affairs teams to respond to public and customer requests for information etc.

Data Governance

Utilize data to make business decisions as appropriate for the position support data stewardship activities and partner with IT on underlying data needs.

EQUAL OPPORTUNITY EMPLOYER
Duquesne Light Holdings is committed to providing equal employment opportunity to all people in all aspects of the employment relationship without discrimination because of race age sex color religion national origin disability sexual orientation and gender identity or status as a Vietnam era or special disabled veteran or any other unlawful basis as defined by applicable law and fostering a workplace free of unlawful discrimination and retaliation. This policy affects decisions including but not limited to hiring compensation benefits terms and conditions of employment opportunities for promotion transfer layoffs return from a layoff training and development and other privileges of employment. An integral part of Duquesne Light Holdings commitment is to comply with all applicable federal state and local laws concerning equal employment and affirmative action.

Duquesne Light Holdings is committed to offering an inclusive and accessible experience for all job seekers including individuals with disabilities. Our goal is to foster an inclusive and accessible workplace where everyone has the opportunity to be successful.

If you need a reasonable accommodation to search for a job opening apply for a position or participate in the interview process connect with us at and describe the specific accommodation requested for a disabilityrelated limitation.