Sr System Analyst, System Operations Risk Threat Management

Overview

Responsibilities

• At Con Edison we take special interest in our customers, both within the company and externally. As an employee, you need to commit to these ideals of developing a proactive, customer-centric culture to foster trust and confidence among customers and improve value for all our stakeholders.
• Follow and enforce the Department's change management process related to changes to the networks and various electronic systems at the control centers in accordance with regulatory and departmental requirements. Ensure the timing of the changes does not jeopardize the availability and reliability of the systems.
• Promote best practices and use of cybersecurity tools and follow procedures and guidelines to ensure complete compliance with the regulatory requirements, including NERC CIP and FERC Standards of Conduct requirements.
• Take a lead in the daily operation, technical and administrative support of cybersecurity tools and applications at the control centers, including user support, troubleshooting, problem solving and being on a ''on call'' roster to provide needed support during off hours.
• Take a lead in the development and implementation of cybersecurity systems
• Support the daily operation of reducing cybersecurity risk by continuous patching of Windows and Linux operating systems
• Act as a second-tier incident responder for cybersecurity alerts and events
• Performing vulnerability assessments on new and existing deployments
• Understand cybersecurity threats and risks and deploy mitigating tactics and solutions
• Write procedures and provide guidance for cybersecurity technologies.
• Perform other related tasks and assignments as required.

Qualifications

• Master's Degree in Engineering, Computer Science or related field and a minimum of 2 years relevant cybersecurity experience or
• Bachelor's Degree in Engineering, Computer Science or related field and a minimum of 3 years relevant cybersecurity experience or
• Associate's Degree in Engineering, Computer Science or related field and a minimum of 4 years relevant cybersecurity experience or
• High School Diploma/GED a minimum of 5 years relevant cybersecurity experience

• Relevant working experience in a cybersecurity team or performing cybersecurity functions such as working in a cybersecurity operations center(CSOC), cybersecurity engineering, incident responder etc., required.
• Experience with Windows and Linux operating systems including patching, required.
• Strong interpersonal and communication skills (written and verbal) and the ability to interact with personnel on all levels, required.
• Working knowledge of project management, cybersecurity, computer systems, and application support, required.
• Experience with Security Information Event manager solutions such as Splunk, preferred.
• Experience with Vulnerability scanning, preferred.
• Experience with honeypot solutions, preferred.
• Experience with computer languages or scripting, and PowerShell, preferred.
• Experience with Anti-Virus Solutions such as Trend Micro Deep Security, preferred.
• Experience with troubleshooting IT issues, preferred.
• Experience with networking communication such as ports and protocols, preferred.

• Driver's License Required
• Other: GIAC Cyber Certifications Preferred

• The selected candidate will be assigned a System Emergency Assignment (i.e., an emergency response role) and will be expected to work non-business hours during emergencies, which may include nights, weekends, and holidays.
• Must be able and willing to travel within Company service territory, as needed.
• Must be able to lift network equipment and servers (approximately 50lbs).