Dominion Energy Generation Cyber Security Consultant in GLEN ALLEN, Virginia

Generation Cyber Security Consultant

Date:Nov 7, 2018

Location:GLEN ALLEN, VA, US, 23060

Company:Dominion Energy

Dominion Energy is one of the nation's largest producers and transporters of energy, with a portfolio of approximately 25,700 megawatts of generation, 14,400 miles of natural gas transmission, gathering and storage pipeline, and 6,500 miles of electric transmission lines. Dominion Energy operates one of the nation's largest natural gas storage systems with 1 trillion cubic feet of storage capacity and serves more than 6 million utility and retail energy customers.

Our company is built on a proud legacy of public service, innovation and community involvement. In addition to our core energy production, transportation and storage businesses, we invest in communities where we live and work and by practicing responsible environmental stewardship wherever we operate.

Diversity is linked to every aspect of our business to include how we attract, develop and retain our future talent. An inclusive environment encourages the coming together of different talents, thoughts and energies. The company’s commitment to employing military veterans through the Troops to Energy Jobs program is one way we are able to ensure workforce diversity.

Job Summary

Dominion Energy's Power Generation Business Unit seeks a Generation Cyber Security Consultant with experience in computer and network security in Industrial Control System environments (ICS) to support the Power Generation fleet (non-nuclear).

This position is located at Dominion Energy's Innsbrook Technical Center in Glen Allen, VA (close suburb of Richmond).

Job Summary & Responsibilities:

The successful candidate will be able to provide the support noted below in accordance with standards, best practices, and regulatory requirements for the Generation fleet and its auxiliaries:

  • Support ICS computer, network and security equipment in Power Generation.

  • Manage and proficiently utilize cyber security systems deployed in protection of ICS/DCS/PLC assets, including asset inventory systems, change management, network intrusion detection, file security, anti-virus, whitelisting, SIEM, WSUS, and firewall rule development. Review and investigatesystem event logs as needed.

  • Develop life cycle plan for cyber security equipment/software.

  • Serve as an ICS corporate cyber security lead for plant cyber security personnel. Coordinate patch management, cyber asset management and cyber protection by holding periodic meetings to align activities and promulgate policies and procedures. Provide coaching, design guidance and troubleshooting support to plant cyber security personnel.

  • Recommend and support the implementation of architectures necessary to maintain Power Generation’s cyber security and compliance posture.

  • Perform periodic reviews of cyber security systems/software tools and implementation.

  • Evaluate security software/appliance upgrades and ensure these are deployed in coordination with the plant cyber security personnel.

  • Monitor cyber security best practices, industry trends, and regulatory requirements and produce risk communications.

  • Analyzes potential security breaches and security alerts and assists plant cyber security personnel in following incident response procedures.

  • Review industry guidance for cyber security, identify gaps in cyber security controls and recommend/implement technical or administrative solutions to remediate.

  • Review change management records and design change packages for cyber security compliance and impacts.

  • Participate in cyber security event follow-ups in coordination with Incident Response Team and plant cyber security personnel.

  • Address and resolve ICS-CERT vulnerabilities in coordination with Power Generation Regulatory Compliance (PGRC) and station cyber security personnel.

  • Develop technical procedures for cyber security tools in coordination with PGRC and Station.

  • Coordinate with IT for enterprise firewall rule change requests as needed.

  • Crosstrain and mentor other staff members.

  • Strive for consistency of cyber security program across generation fleet.

  • Ensure system drawings and documentation is revised as needed.

This position will require out-of-town and overnight travel. During periods of project implementation, travel may be required approximately 50-75% of the time. Up to 50% may be required at other times, depending on experience along with managerial style in coordination with Station needs.

This position will provide paid relocation assistance and will reimburse for interview expenses. A valid driver's license is required.

Required Knowledge, Skills, Abilities & Experience

  • Seven years of experience in Information Technology/Operations Technology (IT/OT), cyber security, network design, firewall rule development, and management of Windows operating systems security – or – ten years of a combinations of this experience and ICS experience.

  • Must have a detailed ‘hands on’ understanding of cyber security processes and technologies including,

  • Network perimeter controls, including next generation firewalls, routers, and malware prevention

  • Security technologies including network intrusion detection systems, firewalls, logging and monitoring tools, antivirus tools, whitelisting, malware prevention, incident response tools, asset inventory systems and security analytics platforms;

  • Incident analysis, root cause analysis, and problem resolution

  • An understanding of industrial control system networks and the differences from IT systems when applying cyber security controls on OT systems.

  • An understanding of workstation and server security and protection

  • Experience in security aspects of multiple platforms, operating systems, software, communications, and network architecture and topologies.

Other Requirements:

  • Strong level of understanding of IT/OT security principles, technologies, best practices, and NIST ICS guidance.

  • Excellent analytical and problem solving skills. Ability to work independently and in a team environment to identify errors, pin point root causes, and devise solutions with minimal oversight.

  • Must be able to coordinate multi-project assignments and manage deadlines.

  • Microsoft/Cisco system administration experience.

  • Strong leadership and interpersonal skills;

  • Strong verbal and written communication skills;

Preferred Skills

  • Systems Security Certified Practitioner (SSCP)

  • Certified Information System Security Professional (CISSP)

  • Familiarity with Industrial Control Systems / Programmable Electronic Systems (DCS and PLC) and third party datalink protocols (Modbus, DNP, ABPLC).

Knowledge, skills and experience will determine salary level.

Education Requirements

Degree or an equivalent combination of education and demonstrated related experience may be accepted in lieu of preferred level of education. Bachelor of Engineering, Computer Science, or Information Systems.

Preferred:Computer ScienceElectrical EngineeringInformation TechnologyOther disciplines may be substituted for the preferred discipline(s) listed above.

Licenses, Certifications, or Quals Description

Preferred:

  • Systems Security Certified Practitioner (SSCP)

  • Certified Information System Security Professional (CISSP)

  • Familiarity with Industrial Control Systems / Programmable Electronic Systems (DCS and PLC) and third party datalink protocols (Modbus, DNP, ABPLC).

Working Conditions

Office Work Environment 51-75%

Travel 51-75%

Other Working Conditions

Working Conditions:

  • Heat Up to 10%, in a power station environment, when on site

  • Loud Noise Up to 10%, in a power station environment, when on site

Test Description

No Testing Required

Export Control

Certain positions at Dominion Energy may involve access to information and technology subject to export controls under U.S. law. Compliance with these export controls may result in Dominion Energy limiting its consideration of certain applicants.

Other Information

We offer excellent plans and programs for employees. Employees are rewarded with a competitive salary and comprehensive benefits package which may include: health benefits with coverage for families and domestic partners, vacation, retirement plans, paid holidays, tuition reimbursement, and much more.

Dominion Energy is an equal opportunity employer and is committed to a diverse workforce. Qualified applicants will receive consideration for employment without regard to their protected veteran or disabled status.

You can experience the excitement of our company – it's the difference between taking a job and starting a career.

Nearest Major Market:RichmondJob Segment:Engineer, Electrical, Information Systems, Computer Science, Nuclear Engineering, Engineering, Technology