Associate Cyber Security Analyst or Cyber Security Analyst

Job Specific Information                                   

Job Title:   Cyber Security Analyst  Location Operations Support Center, Thomas F. Farrell II Building    Cayce, SC 29033  Business Unit Services  Operating Group Corporate Security  Pay Grade Pay Grade 40   Salary Range 79900 - 127700  AIP Tier 10  Hiring Manager Steve K Baleno Recruiter W Markwood Carlton HRBP ​Destiny Aalyah Mayes​​ Requisition Number 49440 

 

This posting closes on DATE

Our internal posting policy requires that you have been in your current position (same title, department, and location) for at least 12 months**, or that you have obtained approval from your current supervisor/manager to apply for this position.

**Please note for DEV Customer Projects Designer I roles there is a three (3) year commitment that includes a two (2) year training program. Dominion Energy Credit Union employees require a three (3) year commitment before applying for other positions. Customer Contact Specialists I and II require a two (2) year commitment as a Dominion Energy employee in Customer Contact Operations before applying for other positions.

By applying to this position, I certify that I meet these requirements.

 

Military service members and veterans with ranks from E3-E5, W1-W2, or O1-O3, plus appropriate equivalent combination of education and years of experience as outlined below will be considered for this opportunity. 

At this time, Dominion Energy cannot transfer or sponsor a work visa or employment authorization for this position.

This position does not offer relocation assistance.

Job Summary

Do you have what it takes?

This is not your typical cyber role. A cyber war is underway in the world today, with hostile nations seeking to disrupt and destroy critical infrastructure in the United States, all day, and every day. If you want to be on the front lines up against the best cyber criminals and nation state attackers in the world and prove you are better, then this is the place to be.

For our employees, this is a mission, not a job. We educate the company about cyber threats. We establish the standards for cyber security. We perform assessments to ensure proper protections are in place. We manage vulnerabilities and guide the development of defenses. It takes a high degree of skill and a commitment to that mission to be successful. Do you have what it takes? 

If this description sounds like you, let’s talk.

This position is responsible for the identification, assessment, and communication of cyber security risks to help protect the company from internal and external threats.

Specific duties include:

Performs cyber security and cyber risk work, working closely with other groups focused on the monitoring, analysis, and investigation of cyber security threats and events, both internal and external, that could potentially impact the security posture of the organization. Helps facilitate cyber security awareness throughout the organization by educating personnel through the development of awareness articles, presentations, training courses or other materials. Facilitates client requests to ensure critical business tasks continue uninterrupted. Performs assessments of cyber security risk and vulnerabilities and maintains security policies.

Provides updates and detailed information to management regarding the negative impact on the business caused by theft, destruction, alteration, or denial of access to information and systems. May collaborate with other staff to assess the cyber security risk on the organization's network systems, applications, and solutions based upon user requests and business needs. Applies an understanding of IT technologies and develops an evolving knowledge of mitigation options and risk frameworks to assess the current threat landscape and improve security.

May consult with subject matter experts and business representatives, as needed, to provide input on cyber security decisions, the establishment of cyber security policies, and to foster security awareness. May serve as a participant in the cyber security incident response program. Works in a team environment to mitigate cyber security threats, improve processes and security posture. May conduct cyber threat research into threat actors and campaigns, as well as technological advances to combat unauthorized access. May assist with root cause investigation and proper mitigation of cyber security events.

One position is available which will be filled at the level commensurate with the successful candidate’s education, experience, knowledge, skills, and abilities.

This position will be filled in Cayce, SC or Richmond, VA.

Required Knowledge, Skills, Abilities & Experience

Applicants must demonstrate a minimum of six months of hands-on experience performing cyber risk-related activities. This experience may come from internships, academic research, part-time roles, co-op programs or full-time employment, and should include at least one of the following:

• Creating or delivering security awareness content or training.
• Supporting or conducting third-party risk assessments.
• Assisting with incident response or vulnerability management.
• Participating in cybersecurity audits or tabletop exercises.
  
  

To be considered, please respond to the pre-screen questions associated with this posting.  We will be requesting a brief written statement (no more than 250 words) describing: The specific cyber risk-related activities you’ve performed; The context in which you gained this experience (e.g., internship, coursework, research); Any tools, frameworks, or methodologies you used. This statement will help us better understand your readiness for the role and your ability to contribute from day one. 

Associate Cyber Security Analyst: Must possess six months-2 years of work experience in cyber security or a cyber risk related role demonstrating a basic understanding regarding the identification, gathering and analysis of information, threats, etc. to investigate and mitigate security risks. Demonstrates a general understanding of cyber security and or data system protection principles and practices. A basic understand of industrial cyber security standards and risk are desired. Demonstrated good organization and planning skills. Demonstrates a questioning attitude, with basic analytical and investigative skills. Demonstrates verbal and written communication skills, with the ability to interact effectively with others. A willingness to learn new skills and methodologies, conduct research, and learn to maintain hardware, software and network firewalls and encryption. Ability to work cooperatively in a teamed environment. Highly motivated, with the ability to work effectively under basic supervision in a fast-paced environment. Previous work experience or exposure to the security aspects governing software, communications, and network protocols is a plus.


Cyber Security Analyst: Must possess at least 3-5 years of work experience in cyber security or a cyber risk related role demonstrating a general knowledge in the identification, gathering and analysis of information, threats, etc. to investigate and mitigate security risks. Demonstrates a working knowledge of cyber security best practices and frameworks. Possesses a solid understanding of industrial cyber security standards, frameworks and risk assess modeling. Demonstrated good organization and planning skills, to include time and project management skills. Demonstrates good analytical, troubleshooting, and problem solving skills, and has a questioning attitude. Demonstrates verbal and written communication skills, with the proven ability to present information to others. Ability to conduct research and apply, and under broad supervision, maintain hardware, software and network firewalls and encryption. Ability to work cooperatively in a teamed environment. Highly motivated, with the ability to work effectively under minimal supervision in a fastpaced environment. Previous work experience in security aspects of multiple platforms, operating systems, software, communications, and network protocols is desired.

Education Requirements

Degree or an equivalent combination of education and demonstrated related experience may be accepted in lieu of preferred level of education:  Bachelor

Preferred Discipline(s): Computer Science; Engineering; Information Systems; Information Systems Security 

Other disciplines may be substituted for the preferred discipline(s) listed above

Licenses, Certifications, or Quals Description

Preferred; Certified IS Security Professional-CISSP; The following Certifications from SANS: GCED, GWAPT, GSEC, GICSP, GCIH, GPEN, GCLD,GCFA, GCTD,GIAC

Working Conditions

Office Work Environment 76 -100%Travel Up to 25%

Other Working Conditions

Test Description

No Testing Required

 

Export Control

Certain positions at Dominion Energy may involve access to information and technology subject to export controls under U.S. law.  Compliance with these export controls may result in Dominion Energy limiting its consideration of certain applicants.

 

Other Information

 

We offer excellent plans and programs for employees. Employees are rewarded with a competitive salary and comprehensive benefits package which may include: health benefits with coverage for families and domestic partners, vacation, retirement plans, paid holidays, tuition reimbursement, and much more.  

 

Dominion Energy is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin and/or status as a protected veteran or individual with a disability.