Monday , January 30 2023

Lead Cybersecurity Firewall Analyst – Duke Energy Employment

Website Duke Energy

Job Description:

We are one of the largest electric power holding companies in the United States, providing electricity to 7.7 million retail customers in six states. We have approximately 51,000 megawatts of electric generating capacity in the Carolinas, the Midwest and Florida – and natural gas distribution services serving more than 1.6 million customers in Ohio, Kentucky, Tennessee and the Carolinas.

We are transforming our customers’ experience, modernizing our energy grid, generating cleaner energy and expanding our natural gas infrastructure to create a smarter energy future for our customers.

Security is critical to our company’s success. As part of our team, you will partner with project managers and technical engineering teams to direct a broad range of corporate security initiatives, while participating in the planning, analyzing and implementation of solutions in support of Duke Energy’s business objectives. Our security team works around the clock to provide a comprehensive enterprise-wide security program, using state-of-the-art technologies to defend against breaches and keep our networks reliable and secure.

Job Responsibilities:

  • Assist in management and oversight of firewall operations.
  • Proactively identifies/makes recommendations on potential security issues and solutions.
  • Represents IT Security organization professionally in interaction with internal business partners and other IT Support groups
  • Understands enterprise security standards/requirements.
  • Leads investigation/troubleshooting efforts during service disruption events. Diagnose and resolve customer reported system incidents, problems, and events.
  • Leads investigation/troubleshooting efforts during service disruption events.
  • Maintains up-to-date documentation of the security infrastructure and security strategies.
  • Participate in the planning and implementation of information security technology projects. Serve as point-person and subject matter expert for issues and projects related Cyber Security
  • Counter Threat Operations
  • Represents cybersecurity organization professionally in interaction with internal business partners and other IT Support groups.
  • Interacts with security architecture as necessary to understand, apply, and enforce security requirements.
  • Create and drive action plans to address recurring or ongoing information security incidents
  • Develop and maintain reporting metrics used to measure team performance, ensure analyst adherence to processes/procedures for operational consistency, identify process improvements, coaching, training and professional development of the staff
  • Operationalizes new security solutions for Cybersecurity, IT, and other business units.
  • Installs, configures, tests, operates, maintains, and manages network defense systems including hardware and software that control the sharing and transmission of information securely.
  • Responsible for understanding the global threat environment and general security best practices
  • Provides increased availability during Storm Mode conditions and CIRT events.
  • Drive continuous improvement of processes and procedures to improve analysis, detection, and mitigation of incidents in support of the overall Cyber Defense mission
  • Proactively identifies/makes recommendations on potential security issues and solutions.
  • Maintains security framework across the enterprise.
  • Leads and participates in cybersecurity projects and initiatives within Cybersecurity, IT, and other business units.
  • Participates/leads code upgrade efforts.
  • Participates in all daily support & on-call rotation duties.
  • Collaboration as appropriate with leadership and other key stakeholders
  • Make recommendations to optimizing current operations processes, procedures, and policy.
  • Adheres to proper Change Management and Human Performance requirements and processes.
  • Participates in project related work.
  • Drives security requirements through the organization.

Job Requirements:

  • Experience with Syslog, TACACS, Radius, and SNMP.
  • Strong team player.
  • Cyber security project experience.
  • Skill in determining how a security system should work (including its resilience)
  • Ability to carry out daily work responsibilities with minimal supervision.
  • 7-10 years of relevant work experience in Information Technology.
  • Ability to perform self-directed work and to independently prioritize daily work.
  • Knowledge of networking and Internet communications fundamentals (i.e. devices, device configuration, hardware, software, applications, ports/protocols, addressing, network architecture and infrastructure, routing, operating systems, etc.).
  • Direct background or exposure to cyber security operations
  • API, VB, Python experience.
  • Experience with IDPS functionality.
  • Experience with Palo Alto, F5, Bluecoat Proxy technologies.
  • Working knowledge of IPv6, Ability to troubleshoot network traffic in IPv6 environments.
  • Experience with Palo Alto Firewalls, F5 Security, VMware, NSX, etc.
  • Knowledge of cybersecurity and privacy principles.
  • Experience in Web security and compliance experience (e.g., Firewalls, IDS/IPS systems, DDOS prevention and PCI, HIPAA, FIPS, etc.)
  • Demonstrated commitment to personal and team success.
  • Demonstrated leadership identifying improvement opportunities and solutions.
  • Knowledge of the application firewall concepts and functions (e.g., Single point of authentication/audit/policy enforcement, message scanning for malicious content, data anonymization for
  • PCI and PII compliance, data loss protection scanning, accelerated cryptographic operations, SSL security, REST/JSON processing).
  • Experience working with Hardware Security Models
  • Skill in configuring and utilizing network protection components (e.g., Firewalls, VPNs, network intrusion detection systems).
  • PCI Compliance experience.
  • Willingness to pursue industry standard certifications such as Security+, SANS GIAC/GCIA/GCIH/GCFA, CISSP, etc. or other network / system security certifications
  • Network engineering/design/project experience.
  • Skill in performing packet-level analysis.
  • Current Cisco CCNP and Current Cisco CCDA, and Cisco CCDP
  • Knowledge of web filtering technologies
  • Knowledge of the range of existing networks (e.g., PBX, LANs, WANs, WIFI, SCADA).
  • Experience with security tools.
  • Experience troubleshooting across firewall infrastructure with various third party tools.
  • Experience in Data Center environment.
  • Security and telecom project experience.
  • Proven ability to speak and write about complex technical topics to a less technical audience.
  • NERC CIP Compliance experience.
  • Demonstrated leadership in identifying process deficiencies and solutions.
  • Demonstrated leadership in technical roles.
  • Skill in managing client relationships, including determining client needs/requirements, managing client expectations, and demonstrating commitment to delivering quality results.
  • Ability to manage multiple tasks and assignments.
  • Strong Linux or Windows system administrator skills
  • Experience in networking protocols: DNS, HTTP, SSL, SMTP, TCP

Qualification & Experience:

  • Experience with VPN configuration and troubleshooting.
  • Experience analyzing network traffic.
  • Experience troubleshooting network traffic.
  • Experience assisting other teams with the analysis of application problems.
  • Experience troubleshooting Layer 2 and Layer 3 issues.
  • Strong TCP/IP foundational knowledge.
  • Working knowledge of NAT principles and troubleshooting.
  • Experience providing end to end network support for large enterprise.
  • Advanced understanding of security principles.
  • Experience troubleshooting foundational protocols such as DNS, DHCP, and ARP.
  • Bachelors Degree in Cybersecurity, Computer Science, IT or other degrees with eight (8) or more years of experience in Cybersecurity, IT, or military information security experience in addition to a degree, OR twelve (12) years of experience in a related field in lieu of a degree

Job Details:

Company: Duke Energy

Vacancy Type:  Full Time

Job Location: Charlotte, NC, US

Application Deadline: N/A

Apply Here

careersvite.online