Information Security Analyst/Senior Information Security Analyst - Cyber Security

 

Dominion Energy is committed to providing reliable, affordable, and increasingly clean energy that powers our customers every day. If you want to work for a purpose-driven company that values safety and collaboration, we’re looking for you. You won’t just find a job here; you’ll find your career. Review the position below and apply today.

 

We offer a hybrid work schedule (one week in the office, one week of teleworking) to accommodate the need for flexibility.

Military service members and veterans with ranks from E5-E9, W1-CW5, or O3-O6, plus appropriate equivalent combination of education and years of experience as outlined below will be considered for this opportunity. 

At this time, Dominion Energy cannot transfer or sponsor a work visa or employment authorization for this position.

This position does not offer relocation assistance. 

 

Job Summary

Dominion is currently seeking an Information Security Analyst or Sr, Information Security Analyst to join our IT professionals to support the Nuclear Business Unit. This position will be located at VC Summer Power Station.  This position will focus on the implementation and maintenance of the nuclear cyber security program and intrusion detection system software. 

This posting is for one position that will be filled at the level commensurate with the successful candidates’ education, experience, knowledge, skills and abilities. 

As part of the IT Nuclear Cyber Security Team, responsible for all cyber activities at the station, including, but not limited to: 

• Maintenance, troubleshooting, and patching of cyber security monitoring systems.
• Review and analysis of Security Controls Analysis documentation as member of the Cyber Security Assessment Team (CSAT).
• Participation on the Nuclear Cyber Security incident response team (CSIRT).
• Analysis of Critical Digital Assets (CDAs) for security breaches and ensuring that VC Summer Power Station remains in compliance with the Cyber Security Plan.
• Performance of rogue wireless access point scans throughout the station power block and monitoring CDAs for rogue connections.
• Hardening Windows and Linux workstations and servers.
• Review of industry guidance for cyber security and application of principles to critical systems and critical digital assets. 
• Identification of gaps in cyber security controls and recommendation of technical or administrative solutions to remediate the gaps. 
• Review of Change Management Records and Design Change Packages for cyber security compliance and impacts. 
• Review of cyber security policies, standards, and procedures in support of programmatic requirements to meet our Cyber Security Plan.
• Performance of periodic scans and maintenance of removeable media enrolled in the Portable Media Device program.
• Perform other duties as requested or assigned.

Required Knowledge, Skills, Abilities & Experience

Information Security Analyst: 3-5 years of directly related experience.
Sr. Information Security Analyst: 5+ years of directly related experience.

• Managing a Security Information and Event Monitoring (SIEM) system, including creating and managing alerts, dispositioning events, and tuning.
• Administration of a File Integrity Management (FIM) system, managing clients, creating reports, and investigating changes.
• Experience with network design and security, system hardening, firewall configurations and management of Windows or Linux Security operating systems security.
• Ability to work well independently and in a team environment, communicate with other team members or clients and make decisions appropriately after consultation to support assigned projects.
• Familiar with Cyber security principles, and defense-in-depth techniques.
• Knowledge of anti-malware endpoint protection, backup and recovery software, and Intrusion Detection Systems.
• Must be dedicated to continuous improvement and implementation of cyber security and cyber compliance best practices to support strategic regulatory compliance objectives for the Nuclear Business Unit.
• Must possess excellent verbal and written communication skills and demonstrate the ability to present concepts, options, or recommendations in a group setting.
• Proficient in the use of Microsoft Office software/collaboration tools.

 

Preferred training and certifications:

• Cyber Security Certification – GSEC, CISSP, Security+, or similar
• Completion of SANS 401 and 504, or similar
• EC-Council Certified Ethical Hacker (CEH)
• Cisco Certified Network Associate (CCNA)

Education Requirements

Bachelor of Science Degree in Business, Computer Engineering, Computer Science, Information Systems or an equivalent. 

Combination of education and demonstrated related experience may be accepted in lieu of preferred level of education. 

Licenses, Certifications, or Quals Description

Working Conditions

Office Work Environment 76 -100%Travel Up to 25%

Other Working Conditions

Test Description

No Testing Required

 

Export Control

Certain positions at Dominion Energy may involve access to information and technology subject to export controls under U.S. law.  Compliance with these export controls may result in Dominion Energy limiting its consideration of certain applicants.

 

Other Information

We offer excellent plans and programs for employees. Employees are rewarded with a competitive salary and comprehensive benefits package which may include: health benefits with coverage for families and domestic partners, vacation, retirement plans, paid holidays, tuition reimbursement, and much more.   To learn more about our benefits, click here dombenefits.com.

Dominion Energy is an equal opportunity employer and is committed to a diverse workforce. Qualified applicants will receive consideration for employment without regard to their protected veteran or disabled status.  

You can experience the excitement of our company – it's the difference between taking a job and starting a career.