Get Into Energy Jobs

Job Information

Duke Energy Cybersecurity Sys Engineering Analyst (Firewall) in Charlotte, North Carolina

More than a career - a chance to make a difference in people's lives.

Build an exciting, rewarding career with us – help us make a difference for millions of people every day. Consider joining the Duke Energy team, where you'll find a friendly work environment, opportunities for growth and development, recognition for your work, and competitive pay and benefits.

Job Summary

The Cybersecurity Systems Engineering Analyst (Firewall) protects the enterprise against unauthorized cyber activity by being a subject matter expert in network defense systems, access policies, and technologies. The Engineering Analyst position also designs, implements, and maintains network defense solutions.

Position focuses on improving cybersecurity posture of the enterprise through participation in various cybersecurity projects and operations as well as cybersecurity aspects of business, Cybersecurity, and IT projects. Ideal candidates would have a solid understanding of enterprise networks, hands-on design experience, and relevant industry certifications.

Employees at this level contribute to solving more complex problems in a team setting. Incumbents are expected to develop advanced skills and the ability to work with greater independence. They effectively apply fundamental concepts and procedures to work that is fairly complex and varied.


  • Stay informed on evolving technology. This role requires ongoing skill development, and the ability to learn new technology and software platforms.

  • Installs, configures, tests, operates, maintains, and manages network defense systems including hardware and software that control the sharing and transmission of information securely.

  • Supports transitioning new security solutions for Operations.

  • Proactively identifies/makes recommendations on potential security issues and solutions.

  • Support investigation/troubleshooting efforts during service disruption events. Diagnose and resolve customer reported system incidents, problems, and events.

  • Represents cybersecurity organization professionally in interaction with internal business partners and other IT Support groups.

  • Collaborates with security architecture frequently to understand, apply, and enforce security requirements.

  • Make recommendations to optimizing current operations processes, procedures, and policy.

  • Responsible for understanding general security best practices.

  • Support continuous improvement of processes and procedures to improve analysis, detection, and mitigation of incidents in support of the overall Cyber Defense mission.

  • Collaboration as appropriate with leadership and other key stakeholders.

  • Maintains up-to-date documentation of the security infrastructure and security strategies.

  • Understands enterprise security standards/requirements. Enforces cybersecurity standards.

  • Proactively identifies/makes recommendations on potential security issues and solutions.

  • Participates in all daily support & on-call rotation duties.

  • Provides increased availability during Storm Mode conditions and CIRT events.

  • Adheres to proper Change Management and Human Performance requirements and processes.

  • Participates in firewall lifecycle efforts

Basic/Required Qualifications

  • High School/GED

  • In addition to required degree, six (6) years minimum related work experience

Desired Qualifications

  • Understanding of Cybersecurity frameworks

  • Strong personal initiative.

  • Motivated self-starter with strong written and verbal communication skills, and the ability to create technical reports on analytic findings and provide briefings to peers / management.

  • Ability to work in high pressure situations and within a team environment.

  • Experience with writing and editing technical documentation and operational procedures.

  • Demonstrated effective problem solving & analytical skills

  • Direct background or exposure to cyber security operations

  • Knowledge of network monitoring, analysis, troubleshooting, and configuration control technologies

  • Bachelor’s degree in Cybersecurity, Computer Science, IT, or other closely related discipline

  • Hands on experience working with Palo Alto Networks next-generation firewalls

  • Hands on experience working with Cisco ASA firewalls

  • Advanced knowledge of Cloud security tools (i.e., Web Application Firewalls)

  • Experience coding Cloud infrastructure (i.e., Terraform and CloudFormation)

  • Palo Alto Networks Certified Network Security Engineer (PCNSE)

  • Certified Information Systems Security Professional (CISSP)

  • SANS/GIAC Certifications (GCIA/GCIH/GCFA)

  • Cisco CCNA

  • Cisco DevNet Associate

  • Cisco CCNP Enterprise/Security

  • Cisco DevNet Professional

  • Other relevant industry certifications

  • Knowledge of cybersecurity and privacy principles.

  • Knowledge of application-aware firewall concepts and functions (e.g., Single point of authentication/audit/policy enforcement, message scanning for malicious content, data anonymization for PCI and PII compliance, data loss protection scanning, accelerated cryptographic operations, SSL security, REST/JSON processing).

  • Knowledge of networking and Internet communications fundamentals (i.e. devices, device configuration, hardware, software, applications, ports/protocols, addressing, network architecture and infrastructure, routing, operating systems, etc.).

  • Skill in determining how a security system should work (including its resilience)

  • Skill in configuring and utilizing network protection components (e.g., Firewalls, VPNs, network intrusion detection systems).

  • Skill in performing packet-level analysis.

  • Skill in managing client relationships, including determining client needs/requirements, managing client expectations, and demonstrating commitment to delivering quality results.

  • Knowledge of web filtering technologies

  • Cyber security project experience.

  • Network engineering/design/project experience.

  • Experience with Syslog, TACACS, Radius, and SNMP.

  • Experience in networking protocols: DNS, HTTP, SSL, SMTP, TCP

  • Experience in Web security and compliance experience (e.g., Firewalls, IDS/IPS systems, DDOS prevention and PCI, HIPAA, FIPS, etc.)

  • API, VB, Python experience.

  • Working knowledge of IPv6, Ability to troubleshoot network traffic in IPv6 environments.

  • NERC CIP Compliance experience.

  • Experience troubleshooting across firewall infrastructure with various third-party tools.

  • Experience in Data Center environment.

  • Experience in Cloud VPC and EC2 solutions

Mobility Classification

  • Hybrid – Work will be performed from both remote and onsite locations after the onboarding period. However, hybrid employees should live within a reasonable commute to the designated Duke Energy facility

Travel Requirements


Relocation Assistance Provided (as applicable) No

Represented/Union Position No

Visa Sponsored Position No

Posting Expiration Date

Tuesday, July 5, 2022

All job postings expire at 12:01 AM on the posting expiration date.

Please note that in order to be considered for this position, you must possess all of the basic/required qualifications.

Privacy (

Do Not Sell My Personal Information (CA)

Terms of Use (


We are one of the largest electric power holding companies in the United States, supplying and delivering electricity to approximately 7.4 million U.S. customers. We have approximately 52,700 megawatts of electric generating capacity in the Carolinas, the Midwest and Florida – and natural gas distribution services serving more than 1.5 million customers in Ohio, Kentucky, Tennessee and the Carolinas. Our commercial and international businesses own and operate diverse power generation assets in North America and Latin America, including a portfolio of renewable energy assets.

Regardless of your skill set or specific interest, we're looking for the best and brightest talent in the industry. Our people make us great - and we're always looking for more. Find your career path today at Duke Energy, where it's more than a career - it's a chance to make a difference in people's lives.

Brighter opportunities. Brighter futures. Duke Energy values ideas that come from a diverse and inclusive workforce, and we’re dedicated to providing a work environment where all people are valued, respected and able to reach their full potential. Duke Energy is an equal opportunity employer and does not discriminate against any employee or applicant for employment because of race, color, sex, pregnancy, childbirth or related medical conditions, including but not limited to lactation, religion, national origin, ancestry, ethnicity, citizenship, sexual orientation, gender identity, gender expression, age, marital status, physical or mental disability, genetic information, medical condition, military status, or protected veteran status. Duke Energy complies with all applicable state, federal and local laws, regulations and ordinances prohibiting discrimination.

Privacy ( Do Not Sell My Personal Information (CA)

Terms of Use (