Exelon is leading the energy transformation and is seeking a Cyber Security Vulnerability Management Analyst to support and enhance their cyber security vulnerability management programs. This role involves collaboration with various business units to implement security risk treatment strategies and requires hands-on technical duties related to vulnerability discovery and assessment.
Perform vulnerability and security assessment engagements across a wide range of Enterprise IT or IT/OT Industrial Control Systems (ICS) including servers, workstations, industrial automation systems, protective relays, RTU's (Remote Telemetry Unit)/SCADA interfaces, networking equipment, gas monitoring equipment, control system infrastructure, etc.
Work with the Exelon utility companies to effectively communicate the risks of identified vulnerabilities and make recommendations regarding cost-effective security resolutions.
Develop/refine necessary governance documentation (policies, procedures, standards, guidelines) for all security vulnerability processes.
Support the development and maintenance of technology platforms that are required to administer and track vulnerability and security assessment engagements.
Prepare detailed cyber security vulnerability metrics and reports for all Business Units and leadership (routine and ad hoc). (10%)
Collaborate with various teams across the enterprise to offer program support related to OT and IT/OT cyber vulnerability detection services.
Qualification
Required
Bachelor's degree in a relevant field (i.e. Science, Information Technology, Cyber Security, Engineering, Business Administration) or
Associate's degree in a relevant field (i.e. Science, Information Technology, Cyber Security, Engineering, Business Administration) and 2 years of experience or
In lieu of a degree 4 or more years of diverse experience in Cyber Security, Information Technology
Relevant experience is defined as: IT Operations/Engineering experience (Local Area Network), IT Administration (Linux, Windows, Networking), Cyber Security Specialization (i.e. Vulnerability, Architecture, Incident management, Threat Intel, Cyber Operations, Cyber Risk, Physical Security), Electrical/Mechanical/Computer Engineering, Operational Technology (i.e. Industrial Controls Systems/SCADA, Transmission Substation, Distribution Automation, Gas, Advanced Metering Infrastructure), Telecom / Backhaul (Wide Area Network)
General understanding of the cyber vulnerability management life cycle
Proven analytical, problem solving, and consulting skills.
Excellent communication skills and the proven ability to facilitate solutions effectively
Knowledge of basic network protocols (e.g. TCP/IP, UDP, DNS).
Preferred
Demonstrated experience and subject matter knowledge of SCADA, electrical protection/control, industrial automation, distribution automation, smart grid, etc. systems architecture in relation to evaluating risk.
Demonstrated experience and proven capabilities in network vulnerability assessment, application vulnerability assessment, application security architecture development, physical security, and application security testing.
Demonstrated experience with applicable OT security related laws and regulations, such as NERC CIP.
Knowledge and experience in application security standards, methodologies, and technologies.
Knowledge of cyber security testing principles, tools, and techniques.
Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).
Knowledge of basic system administration, network, and operating system hardening techniques.
Knowledge and experience in application and systems security standards, methodologies, and technologies.
Knowledge of scripting/programming language structures and logic.
Benefits
Annual Bonus for eligible positions: 10%
401(k) match and annual company contribution
Medical, dental and vision insurance
Life and disability insurance
Generous paid time off options, including vacation, sick time, floating and fixed holidays, maternity leave and bonding/primary caregiver leave or parental leave
Employee Assistance Program and resources for mental and emotional support
Wellbeing programs such as tuition reimbursement, adoption and surrogacy assistance and fitness reimbursement
Referral bonus program
And much more
Exelon Corporation is a utility services holding company that provides services for energy generation businesses in the United States.
Glassdoor
4.1
Founded in 1999
Chicago, Illinois, USA
10001+ employees
http://www.exeloncorp.com/
Exelon Corporation is a utility services holding company that provides services for energy generation businesses in the United States.
