Cyber Security Analyst

Job Summary

This position is an experienced, senior level, hands-on technical lead, performing privileged access management (PAM) security functions and maintaining PAM systems while providing technical guidance to the team. Manages PAM technologies, as well as PAM security policies and procedures, and incident response as needed. Provides technical expertise and supports IT management and staff in cybersecurity threat risk assessments, development, testing, and the implementation and operation of appropriate information security plans, procedures, and control techniques designed to prevent, minimize, or quickly recover from cyber-attacks or other serious events.

Job Responsibilities

• Leads and manages PAM technologies
• Provides technical expertise in threat/risk assessments related to privileged access
• Defines, designs, and implements strategies to protect against emerging threats using PAM tools
• Responds to security incidents as needed
• Performs security reviews on new PAM technologies and changes to existing technologies
• Manages information privileged access management technologies.

Job Specific Qualifications

Required:

• Bachelor's degree in Computer Science, Information Systems, Cyber Security, Math or Engineering and a minimum of 4 years of experience in Information Security; In lieu of a degree, 8 years of experience in Information Security.
• Experience providing technical PAM expertise to IT management and staff in cybersecurity threat risk assessments, development, testing, and the implementation and operation of appropriate information security plans, procedures, and control techniques designed to prevent, minimize, or quickly recover from cyber-attacks or other serious events.
• Must have strong Identity and Access Management (IAM) and PAM experience.
• Must be proficient in defining processes and procedures for PAM.
• Ability to follow cybersecurity news and alerts, understand complex attack vectors and risks, and identify and evaluate emergent cybersecurity threats and vulnerabilities.
• Demonstrated ability to recommend appropriate corrective actions for information security incidents and provide risk mitigation recommendations to management and team.
• Experience with designing process flows to be implemented in security automation tools to automatically respond to threats quickly and effectively.
• Experience with reviewing complex IAM architecture design diagrams and documents for new technologies and changes to existing technologies to determine risks and provide recommendations and mitigations.
• Must be able to work independently with little or no supervision.
• Must demonstrate strong verbal and written communication skills.
• Must demonstrate strong leadership, technical teamwork, and interpersonal skills.
• Ability and willingness to work in a strong team environment, constantly teaching and learning from other team members.
• Ability to foster working relationships with the team, IT Management, and Client departments.
• Ability to explain technical concepts to business users in the context of business requirements.
• Must demonstrate technical experience including: information/data/network/computer security design, administration, and/or assessment.
• Must demonstrate broad knowledge of information systems including Windows security, network security, systems development, communication networks, security software/hardware, and operating systems.
• Experience with key information security technologies such as SIEM, firewalls, intrusion detection/prevention systems, vulnerability assessment, encryption, identity and access control systems, anti-malware, and security event analysis.
• Must demonstrate strong organizational, managerial, and financial management skills.

Desired:

• ISC2 Certified Information Systems Security Professional (CISSP) or equivalent
• Programming Experience in Python

NOTE:

• Approximately 5% Travel required
• Please note if NERC CIP position, requires NERC CIP background investigation prior to start

Minimum Years of Experience

4 years of experience

Education

Bachelors

Certifications

None Noted

Disclaimer

Certain positions at the Company may require you to have access to Part 810-Controlled Information. Under the law, the Company is limited in who it can share this information with and in certain circumstances it is necessary to obtain specific authorization before the Company can share this information. Accordingly, if the position does require access to this information, you must complete a 10 CFR Part 810 Export Control Compliance Nationality Request Form, a copy of which will be provided to you by Talent Acquisition if an offer is made. If there is a need for specific authorization, due to the time it takes to obtain authorization from the government, we will likely not be able to further proceed with an offer.

PSEG is an equal opportunity employer, dedicated to a policy of non-discrimination in employment, including the hiring process, based on any legally protected characteristic. Legally protected characteristics include race, color, religion, national origin, sex, age, marital status, sexual orientation, disability or veteran status or any other characteristic protected by federal, state, or local law in locations where PSEG employs individuals.

As an employee of PSEG you should be aware that during storm restoration efforts, you may be required to perform functions outside of your routine duties and on a schedule that may be different from normal operations.

For all roles, PSEG’s drug and alcohol testing program includes pre-employment testing, testing for cause, and post-incident/accident testing. For employees in federally regulated roles (including positions covered by USDOT, PHMSA, or NRC regulations), this also includes random testing. Although numerous states throughout the country have legalized marijuana/cannabis products recreationally and/or medically, it is prohibited for employees in federally regulated roles. Employees who are hired or transfer into a federally regulated role are subject to drug and alcohol testing, inclusive of marijuana. Please note that the use of CBD products may result in a positive drug test for THC/Marijuana and such use is not a legitimate medical explanation for such a positive result.

PSEG employees must apply for jobs internally through emPower which can be accessed through sharepoint.pseg.com by clicking on the emPower icon, then selecting careers. This site (PSEG Careers and Job Openings) is strictly for candidates who are not currently PSEG employees, with the exception of PSEG employees who do not have company email addresses.

PSEG is committed to providing reasonable accommodations to individuals with disabilities. If you have a disability and need assistance applying for a position, please call 973-430-3845 or email [email protected].

If you need to request a reasonable accommodation to perform the essential functions of the job, email [email protected]. Any information provided regarding a disability will be kept strictly confidential and will not be shared with anyone involved in making a hiring decision.