Senior Cybersec Systems Engineering Analyst

More than a career - a chance to make a difference in people's lives.

Build an exciting, rewarding career with us - help us make a difference for millions of people every day. Consider joining the Duke Energy team, where you'll find a friendly work environment, opportunities for growth and development, recognition for your work, and competitive pay and benefits.

Job Summary:

The Sr. Cybersecurity Systems Engineering Analyst (Network Defense) protects the enterprise against unauthorized cyber activity by being a subject matter expert in network defense systems, access policies, and technologies. The senior position also designs, implements, and maintains network defense solutions, focusing on improving cybersecurity capabilities and driving the implementation of cybersecurity strategy.

The ideal candidate would have a solid understanding of:

• Enterprise Cloud, Corporate, ITOT and CIOPS networks.
• Intermediate Cyber Architecture knowledge.
• Hands-on technical experience with Network Defense Systems (i.e., Firewalls, WAF/CDN, networking infrastructure).
• Terraform.
• Project Management.

Employees at this level solve complex problems, manage work plans, and provide leadership to others in areas of specialization, with no supervision and increased latitude for decision making. Incumbents function in lead roles providing guidance to others.

Responsibilities & Duties:

• Stay informed on evolving technology. This role requires ongoing skill development, and the ability to learn new technology and software platforms.
• Leads projects and provides project management concepts to ensure project delivery and management.
• Able to manage multiple projects and initiatives simultaneously.
• Installs, configures, tests, operates, maintains, and manages network defense systems including hardware and software that control the sharing and transmission of information securely.
• Operationalizes new security solutions for Cybersecurity, IT, and other business units.
• Proactively identifies/makes recommendations on potential security issues and solutions.
• Support investigation/troubleshooting efforts during service disruption events. Diagnose and resolve customer reported system incidents, problems, and events.
• Represents cybersecurity organization professionally in interaction with internal business partners and other IT Support groups.
• Collaborates with security architecture frequently to understand, apply, and enforce security requirements.
• Provide mentorship and support for teammates.
• Make recommendations to optimizing current operations processes, procedures, and policy.
• Responsible for understanding the global threat environment and general security best practices.
• Drive continuous improvement of processes and procedures to improve analysis, detection, and mitigation of incidents in support of the overall Cyber Defense mission.
• Collaboration as appropriate with leadership and other key stakeholders.
• Maintains up-to-date documentation of the security infrastructure and security strategies.
• Understands enterprise security standards/requirements. Enforces cybersecurity standards.
• Participates in all daily support & on-call rotation duties.
• Provides increased availability during Storm Mode conditions and CIRT events.
• Adheres to proper Change Management and Human Performance requirements and processes.
• Participates/leads firewall lifecycle efforts.

Required/Basic Qualifications:

• High School/GED.
• Minimum 9 required related work experience.

Desired Qualifications:

• Strong understanding of Cybersecurity frameworks.
• Demonstrated capability to work with little management oversight and must have strong personal initiative.
• Motivated self-starter with strong written and verbal communication skills, and the ability to create complex technical reports on analytic findings and provide briefings to various levels of staff / management.
• Ability to work in high pressure situations and within a team environment.
• Experience with writing and editing technical documentation and operational procedures.
• Demonstrated effective problem solving & analytical skills.
• Direct background or exposure to cyber security operations.
• Knowledge of network monitoring, analysis, troubleshooting, and configuration control technologies.
• Bachelor's degree in Cybersecurity, Computer Science, IT, or other closely related discipline.
• Hands-on experience working with Palo Alto Networks next-generation firewalls.
• Hands-on experience working with Cisco ASA firewalls.
• Advanced knowledge of Cloud security tools (i.e., Web Application Firewalls).
• Experience coding Cloud infrastructure (i.e., Terraform and CloudFormation).
• Palo Alto Networks Certified Network Security Engineer (PCNSE).
• Certified Information Systems Security Professional (CISSP).
• SANS/GIAC Certifications (GCIA/GCIH/GCFA).
• Cisco CCNA.
• Cisco CCNP Enterprise/Security.
• Other relevant industry certifications.
• Knowledge of cybersecurity and privacy principles.
• Knowledge of application-aware firewall concepts and functions.
• Knowledge of networking and Internet communications fundamentals.
• Skill in configuring and utilizing network protection components.
• Skill in performing packet-level analysis.
• Skill in managing client relationships.
• Knowledge of web filtering technologies.
• Network engineering/design/project experience.
• Experience with Syslog, TACACS, Radius, and SNMP.
• Experience in networking protocols.
• Experience in Web security and compliance experience.
• API, VB, Python experience.
• Working knowledge of IPv6.
• NERC CIP Compliance experience.
• Experience troubleshooting across firewall infrastructure with various third-party tools.
• Experience in Data Center environment.
• Experience in Cloud VPC and EC2 solutions.

Working Conditions:

• Hybrid Mobility Classification - Work will be performed from both remote and onsite locations after the onboarding period. However, hybrid employees should live within a reasonable daily commute to a Duke Energy facility.

Travel Requirements: 5-15%

Relocation Assistance Provided (as applicable): No

Represented/Union Position: No

Visa Sponsored Position: No

Posting Expiration Date: Friday, October 4, 2024

All job postings expire at 12:01 AM on the posting expiration date.

Please note that in order to be considered for this position, you must possess all of the basic/required qualifications.