Cyber Security Metrics & Automation Analyst

Are you ready to be part of a company thats not just talking about the future but actively shaping it Join The AES Corporation (NYSE: AES) a Fortune 500 company thats leading the charge in the global energy revolution. With operations spanning 14 countries AES is committed to shaping a future through innovation and collaboration. Our dedication to innovation has earned us recognition as one of the Top Ten Best Workplaces for Innovators by Fast Company in 2022. And with our certification as a Great Place to Work you can be confident that youre joining a company that values its people just as much as its groundbreaking ideas.

AES is proudly ranked #1 globally in renewable energy sales to corporations and with $12.7B in revenues in 2023 we have the resources and expertise to make a significant impact as we provide electricity to 25 million customers worldwide. As the world moves towards a net-zero future AES is committed to meeting the Paris Agreements goals by 2050. Our innovative solutions such as 24/7 carbon-free energy for data centers are setting the pace for rapid global decarbonization.

If youre ready to be part of a company thats not just adapting to change but driving it AES is the place for you. Were not just building a cleaner more sustainable future - were powering it. Apply now and energize your career with a true leader in the global energy transformation.

AES is seeking a Cyber Security Metrics & Automation Analyst to join our Cyber Threat Management Team. This role combines data-driven security metrics development with hands-on automation engineering to enhance the effectiveness visibility and operational efficiency of our global Cyber Security organization.

The ideal candidate is a technically skilled professional who understands business processes and can translate complex security data into actionable insights for leadership. You will design and build dashboards define key performance indicators and develop automation workflows that streamline operations across multiple cyber security domains.

Security Metrics & Reporting

• Design develop and maintain security metrics dashboards using Python and Power BI to provide real-time visibility into the organizations cyber security posture.
• Partner with cyber security leadership and cross-functional stakeholders to identify define and recommend key performance indicators (KPIs) and key risk indicators (KRIs) that align with business objectives.
• Build automated data pipelines using Python to collect transform and aggregate data from multiple security tools and platforms via API calls.
• Develop executive-level reports and visualizations that communicate security program maturity risk trends and operational performance to technical and non-technical audiences.
• Continuously evaluate and refine metrics to ensure they provide meaningful actionable insights that drive decision-making and resource allocation.

Cyber Security Automation

• Design and implement automation workflows across the Cyber Security organization to improve operational efficiency and reduce manual effort.
• SOAR Automation: Develop and maintain playbooks and automated response workflows within our Security Orchestration Automation and Response (SOAR) platform to accelerate incident response and threat remediation.
• Power Automate: Build and manage Power Automate flows to streamline administrative and operational processes notifications approvals and cross-team coordination.
• Data Protection & Insider Threat: Develop automation for data loss prevention (DLP) policy enforcement insider threat alert triage and case management workflows.
• Identity & Access Management (IAM): Create automated workflows for access reviews provisioning/deprovisioning privilege escalation monitoring and compliance reporting.
• Vulnerability Management Automation: Create templated context-aware remediation guidance that is automatically generated and delivered to system owners based on vulnerability severity asset criticality and business context.
• Collaborate with team members across all cyber security functions to identify automation opportunities gather requirements and deliver solutions that meet operational needs.
• Document all automation workflows maintain version control and ensure solutions are scalable maintainable and aligned with security best practices.

• Bachelors degree in computer science Cyber Security Information Technology Data Analytics or a related field (or equivalent professional experience).
• 5 years of experience in cyber security operations security engineering or a related technical role.
• Strong proficiency in Python for data analysis scripting API integrations and automation development.
• Hands-on experience building dashboards and reports in Power BI including DAX queries and data modeling.
• Demonstrated ability to translate business requirements into meaningful security metrics and actionable reporting.
• Experience with SOAR platforms (e.g. Palo Alto XSOAR Splunk SOAR Chronicle SOAR or equivalent) and playbook development.
• Familiarity with Microsoft Power Automate and the broader Power Platform ecosystem.
• Understanding of Threat Management Identity & Access Management concepts data protection/DLP technologies and insider threat programs.
• Excellent communication skills with the ability to present technical information to both technical and non-technical stakeholders.
• Self-motivated proactive and able to work independently while collaborating effectively across a diverse team.

• Experience with SIEM platforms and associated detection and reporting capabilities.
• Familiarity with enterprise security tools such as vulnerability management platforms EDR solutions email security and cloud security platforms.
• Familiarity with patch management processes and the ability to translate technical vulnerability data into clear actionable remediation guidance for non-technical stakeholders.
• Experience with API development and integration across multiple security platforms.
• Knowledge of security frameworks and standards (NIST CSF ISO 27001 MITRE ATT&CK).
• Relevant certifications such as CISSP GIAC (GCIA GCIH) or Power BI certifications.
• Experience in an enterprise environment within the energy utilities or critical infrastructure sectors.

• The opportunity to make a meaningful impact on the security posture of a global energy company.
• A collaborative innovative team environment that values continuous learning and professional growth.
• Competitive compensation and benefits package.
• Exposure to cutting-edge security technologies and enterprise-scale challenges.
• Support for professional development and industry certifications.