Cybersecurity Engineer

Benefits:

• Competitive compensation

• Medical, Dental, and Vision insurance

• 401(k) Retirement Savings Plan with substantial company match

• Life and Travel Insurance

• Tuition Assistance

• Wellness Reimbursement Program

• Paid Holidays and Vacation

What is a Cybersecurity Engineer?

We are seeking a diligent and experienced Cybersecurity Engineer to join our team. In this role, you will be working within a group of highly motivated Information Technology and Cybersecurity professionals committed to keeping Central Hudson safe. The Cybersecurity Engineer will also be responsible for designing, implementing, and maintaining our cybersecurity operations tools to ensure the protection of our organization's critical assets. The ideal candidate will have a strong understanding of modern security principles, excellent analytical skills, and the ability to communicate effectively with internal stakeholders and vendors alike.

What does a Cybersecurity Engineer do?

• Oversees CSOC tools, including the management of SIEM, EDR, SOAR, and other security solutions

• Serves as the CSOC tools technical lead for escalation of functional issues

• Continuously improves the CSOC tools to optimize CSOC analyst efficiency and automate where feasible

• Maintains in-depth knowledge of security and networking infrastructure dependencies of the CSOC, including the configuration and status of each

• Implements best practices for CSOC log collection, including configuring log sources and ensuring optimal data flow into the SIEM

• Engineers and implements cybersecurity tools in OT environment to enhance security posture and ensure operational integrity

• Partners with IT and security teams to identify new log sources and ensure they are integrated into the SIEM

• Performs tool health assessments and tool activity audits to identify both security and operational issues

• Performs advanced threat hunting and investigates security incidents within the corporate and OT environments, maintains detailed records of activities, findings, and remediation actions, and implements corrective actions for timely resolution and threat mitigation

• Builds relationships with government and local agencies to promote collaborative threat intelligence sharing

• Stays updated with the latest cybersecurity trends, threats, and technologies

• Maintains an established professional presence in the industry and business relationships with key technology-dependent organizations to support the application of technology to relevant business areas

• Promotes and raises awareness by educating others about the importance of cybersecurity and safe computing

• Creates and maintains project work plans and budgets; schedule and manage work activities and projects to achieve on-time and in-budget implementation of best-in-class solutions that meet organization and corporate goals

• Participates in on-call rotation as needed to respond to security incidents outside of regular working hours

• Provides storm/emergency response support

What does it take to be a Cybersecurity Engineer?

Required:

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science or related field of study and cybersecurity engineering or related experience. In lieu of a bachelor’s degree, an associate degree in the aforementioned fields and 3+ years of cybersecurity engineering or related experience or a high school diploma or equivalency degree and 5+ years of cybersecurity engineering or related experience will be considered

• Experience designing, implementing and managing security tools such as firewalls, SIEM, EDR, SOAR, IDS/IPS, encryption, and other security solutions

• Strong knowledge of common and emerging attack vectors, penetration methods and countermeasures

• Demonstrated ability to effectively manage and respond to security incidents, including identifying, analyzing, and mitigating threats

• Experience configuring and administering Windows Servers and Workstations, Active Directory & Group Policy, Microsoft 365, Microsoft Defender, Microsoft Sentinel, Azure Entra ID, Azure compute and networking resources, and RedHat Enterprise Linux and other Linux server flavors

• Experience with scripting for automation and analysis (e.g., Python, Bash, PowerShell)

• Understanding of a broad range of security technical concepts

• Understanding of Operational Technology (OT) systems

• Effective communication skills, with the ability to collaborate with diverse teams, and communicate complex concepts clearly and concisely

• Excellent analytical, decision-making skills, multitasking, and organizational skills

• Ability to work with limited direct supervision and professionally respond to constructive feedback

• Ability to be available for on-call and after hour security incidents

• Valid driver’s license

Preferred:

• 7+ years of cybersecurity experience in the configuration and support of cybersecurity related applications and infrastructure

• Experience in Security and/or Regulatory Frameworks such as NIST, CIS Benchmarks, SOX, NERC CIP, etc.

• Experience in Energy & Utilities or services industry

• Experience with data visualization tools

• Relevant certifications such Systems Security Certified Practitioner (SSCP), CompTIA Cybersecurity Analyst (CySA+), Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH)

Applications will be accepted until June 4, 2025. 

This position has a career path which allows for advancement opportunities within the Cybersecurity Analyst job series. The title and level are commensurate with experience. Pay range: $71,900 - $168,700

Please go to https://www.cenhud.com/employment. Click the “Search Career Opportunities” button. Follow the directions to submit an application and upload your resume for the desired position.

Applications sent via e-mail and US Mail will not be accepted.  No phone calls or agencies, please.  All replies will be held in strict confidence.

All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, creed, color, ethnicity, arrest or conviction record, religion, sex, sexual orientation, gender identity or expression, national origin, age, disability, citizenship, genetic information, familial status, marital status, pregnancy-related condition, domestic violence victim status, veteran or military status, or any other characteristic protected by federal, state or local laws. Central Hudson Gas & Electric Corporation takes affirmative action in support of its policy to employ and advance employment in individuals who are protected veterans and individuals with disabilities.

VEVRAA FEDERAL CONTRACTOR