Dominion Energy Generation Cyber Security Senior Analyst in FREEMAN, Virginia

Generation Cyber Security Senior Analyst

Date:Apr 5, 2018

Location:FREEMAN, VA, US, 23856

Company:Dominion Energy

Dominion Energy is one of the nation's largest producers and transporters of energy, with a portfolio of approximately 25,700 megawatts of generation, 14,400 miles of natural gas transmission, gathering and storage pipeline, and 6,500 miles of electric transmission lines. Dominion Energy operates one of the nation's largest natural gas storage systems with 1 trillion cubic feet of storage capacity and serves more than 6 million utility and retail energy customers.

Our company is built on a proud legacy of public service, innovation and community involvement. In addition to our core energy production, transportation and storage businesses, we invest in communities where we live and work and by practicing responsible environmental stewardship wherever we operate.

Diversity is linked to every aspect of our business to include how we attract, develop and retain our future talent. An inclusive environment encourages the coming together of different talents, thoughts and energies. The company’s commitment to employing military veterans through the Troops to Energy Jobs program is one way we are able to ensure workforce diversity.

Job Summary

Dominion Energy’s Power Generation Business Unit seeks a Generation Cyber Security Senior Analyst with experience in computer and network security in Industrial Control System (ICS) environments to support the Power Generation Station (non-nuclear).

This position is located at Dominion Energy’s Brunswick County Power Station in Freeman, VA.

Job Summary & Responsibilities:

The successful candidate will be able to provide the support noted below in accordance with standards, best practices, and regulatory requirements, for the operating units and auxiliaries:

  • Oversee and provide ongoing support for the Industrial Control System (ICS) cyber security systems and program.

  • Administer and maintain cyber security systems deployed in protection of ICS/DCS/PLC assets, including asset inventory systems, change management, network intrusion detection, file security, anti-virus, whitelisting, SIEM, WSUS, and firewalls. Follow policy, procedures, and Power Generation Corporate Cyber Security guidance.

  • Provide day to day monitoring, surveillance, and troubleshooting of cyber security systems.

  • Actively review, analyze, and investigate logs, events, and alerts for potential security breaches and follow incident response procedures.

  • Serve as plant lead for cyber security event investigation in coordination with Incident Response Team.

  • Implement cyber security architectures necessary to maintain the plant cyber security and compliance posture.

  • Develop plant specific procedures for review by the corporate Cyber Security and Regulatory personnel.

  • Execute procedures for system maintenance, surveillance, and reporting.

  • Deploy cyber security equipment patches and upgrades recommended by the Corporate Cyber Security Lead in accordance with policy and procedures.

  • Maintain current knowledge and awareness of cyber security best practices, industry trends, and regulatory requirements.

  • Review industry guidance for cyber security, identify gaps in cyber security controls and recommend/implement technical or administrative solutions to remediate.

  • Review change management records and design change packages for cyber security compliance and impacts.

  • Make backups and ensure periodic validation of backups.

  • Address and resolve ICS-CERT vulnerabilities in coordination with Power Generation Regulatory Compliance (PGRC) and station cyber security personnel.

  • Develop technical procedures for cyber security tools in coordination with PGRC and Station.

  • Coordinate with Power Generation Corporate Cyber Security and IT for enterprise firewall rule change requests as needed.

  • Perform physical computer and network switch modifications or replacement.

  • Ensure system drawings and documentation are revised as needed.

  • Verify that locally managed projects follow approved cyber security practices. Involve the Corporate Cyber Security Lead as appropriate.

This position will require occasional out-of-town and overnight travel. Travel may be required approximately 10% of the time.

This position will provide paid relocation assistance and will reimburse for interview expenses. A valid driver's license is required.

Required Knowledge, Skills, Abilities & Experience

  • At least five years of experience in IT/OT cyber security, system administration, networks, firewalls, and management of Windows operating systems security - or - 7 years of a combination of this experience and ICS experience.

  • Must have a ‘hands on’understanding of cyber security processes and technologies including,

  • Security technologies such as network intrusion detection systems, logging and monitoring tools, antivirus tools, whitelisting, malware prevention, incident response tools, asset inventory systems and security analytics platforms;

  • Incident analysis, root cause analysis, and problem resolution

  • An understanding of industrial control system networks, switches, and firewalls, and the differences from IT systems when applying cyber security controls on OT systems.

  • An understanding of workstation and server security and protection

  • Experience in security aspects of multiple platforms, operating systems, software, communications, and network architecture and topologies.

Other requirements:

  • Strong level of understanding of IT/OT security principles, technologies, best practices, and NIST ICS guidance.

  • Excellent analytical and problem solving skills. Ability to work independently and in a team environment to identify errors, pin point root causes, and devise solutions with minimal oversight.

  • Ability to coordinate multi-project assignments and manage deadlines.

  • Microsoft/Cisco system administration experience.

  • Strong leadership and interpersonal skills;

  • Strong verbal and written communication skills;

Preferred Skills:

  • Systems Security Certified Practitioner (SSCP)

  • Certified Information System Security Professional (CISSP)

  • Familiarity with Industrial Control Systems / Programmable Electronic Systems (DCS and PLC) and third party datalink protocols (Modbus, DNP, ABPLC).

Education Requirements

Preferred:Computer ScienceElectrical EngineeringInformation TechnologyOther disciplines may be substituted for the preferred discipline(s) listed above.

Licenses, Certifications, or Quals Description

Systems Security Certified Practitioner (SSCP) preferred

Certified Information System Security Professional (CISSP) preferred

Other Working Conditions

This position is located within an operating power station environment: Cold/Heat Up to 25%, Dust / Grease / Oil Up to 25%, Loud Noise Up to 25%, Operating Machinery Up to 25%, Office Work Environment 76-100%

Test Description

No Testing Required

Export Control

Certain positions at Dominion Energy may involve access to information and technology subject to export controls under U.S. law. Compliance with these export controls may result in Dominion Energy limiting its consideration of certain applicants.

Other Information

We offer excellent plans and programs for employees. Employees are rewarded with a competitive salary and comprehensive benefits package which may include: health benefits with coverage for families and domestic partners, vacation, retirement plans, paid holidays, tuition reimbursement, and much more.

Dominion Energy is an equal opportunity employer and is committed to a diverse workforce. Qualified applicants will receive consideration for employment without regard to their protected veteran or disabled status.

You can experience the excitement of our company – it's the difference between taking a job and starting a career.

Nearest Major Market:RichmondJob Segment:Electrical, Engineer, Pipeline, Computer Science, Nuclear, Engineering, Energy, Technology