Principal Cyber Security Analyst

Position Summary Description

The Principal Cyber Analyst will be a key leader in our cybersecurity team, responsible for enhancing the organization’s security posture and providing expert guidance on complex cyber threats and vulnerabilities. This role requires a deep understanding of cybersecurity principles, advanced analytics, and incident response methodologies.  The Principal Cyber Analyst will spearhead initiatives to proactively identify risks, develop mitigation strategies, and ensuring compliance with North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) standards as well as adherence to National Institute of Standards and Technology Cybersecurity Framework (NIST CSF).

Essential Functions

• Develop and implement comprehensive cybersecurity strategies and policies to protect organizational assets.
• Assess and enhance the organization's security posture against emerging threats and vulnerabilities.
• Conduct in-depth analysis of cyber threats, vulnerabilities, and exploits relevant to the organization.
• Monitor and evaluate industry trends, attack vectors, and the tactics of cyber adversaries.
• Lead incident response efforts, including the identification, containment, eradication, and recovery from cybersecurity incidents.
• Conduct forensic analysis on compromised systems and provide actionable recommendations for remediation.
• Perform risk assessments and security audits to identify gaps in security practices.
• Work with business units to prioritize risks and develop mitigation strategies.
• Collaborate with IT, compliance, and business units to ensure alignment of security programs with business objectives.
• Train and mentor junior analysts and staff on cybersecurity best practices and tools.
• Ensure compliance with relevant laws, regulations, and industry standards (e.g., NIST, ISO 27001, GDPR, NERC CIP).
• Prepare and present reports to senior management and stakeholders on the effectiveness of security measures and risk levels.
• Stay current on the latest cybersecurity technologies, trends, and methodologies to continuously improve the organization's security capabilities.
• Participate in the development of security products and solutions to enhance security monitoring and detection capabilities.
• Perform NERC Compliance Program roles if/as designated in Seminole’s Standard Ownership Matrix (SOM) including ongoing evidence retention in “audit-ready” form as applicable and directed.  You should also be familiar with Seminole’s Enterprise Internal Compliance Program (ENT-GCD-RGC-EP-054) to further your understanding of Seminole’s compliance program and the context of your duties and responsibilities attendant to your designation in the SOM.
• Perform other duties as applicable to the position or as assigned.

Qualifications and Education Requirements

Bachelor of Science degree in Computer Science, Information Technology, Cybersecurity, or a related field is required, with a master's degree preferred. Candidate must have a minimum of fifteen (15) years of experience in cybersecurity, focusing on threat analysis and incident response. Relevant cybersecurity certifications (e.g., CISSP, CISM, CEH, GCIH) are highly desirable. Extensive knowledge of cybersecurity frameworks, best practices, and regulatory requirements is essential. Strong analytical and problem-solving skills are necessary, along with the ability to work under pressure and manage multiple priorities. Excellent communication and presentation skills are required, with the capability to conveying technical information to non-technical stakeholders. Experience with security tools and technologies, such as SIEM, IDS/IPS, firewalls, endpoint protection, and vulnerability management, is also required.

Core Competencies: Adaptable, Collaborative, Conscientious, Critical-Thinking, Outcome-Driven and Professional 

Technical Competencies/Skills:

• Cybersecurity Frameworks (NIST CSF, ISO 27001, and NERC CIP)
• Threat Intelligence and Analysis
• Intrusion Detection
• Incident Response Methodologies
• Security Information and Event Management (SIEM)
• Security Technologies
• Ethical Hacking
• Vulnerability Management
• Network Security
• Cloud Security
• Regulatory Compliance
• Risk Management
• Proficiency with Microsoft Office applications

Soft Competencies/Skills:

• Effective verbal/nonverbal, listening and written communications
• Collaboration
• Critical Thinking
• Customer Service Oriented
• Leadership and Mentorship
• Managing Change

Physical Requirements

Must be able to follow established protective measures including wearing required personal protective equipment (PPE).  Must possess a valid driver’s license and acceptable Motor Vehicle Report.

Working Conditions

Some travel and work outside of normal business hours. While working in certain areas of the plant there is the potential for exposure to hazards typical of an industrial working environment.  Must be capable of working extra hours and/or weekends when necessary to complete a project on time. Must be available on a 24-hour basis in the event of a system malfunction that requires assistance. 

“Disclaimer - Management may modify this job description at any time and may require the performance of additional duties, or modification of physical requirements, with or without advance notice.”