Associate Operations Cybersecurity Analyst OR Operations Cybersecurity Analyst

This position is a member of the Duke Energy Nuclear Cyber Security fleet team and is physically located at McGuire Nuclear Station (MNS) in Huntersville, NC. Reporting to the fleet Cyber Security organization, this analyst serves as the primary cyber security resource supporting MNS while also contributing to fleet-wide initiatives across Duke Energy's nuclear generating stations (2 states, 6 sites) and Nuclear General Office (NGO). This role comprises the responsibilities for cybersecurity governance, risk management, and operational technology support within Duke Energy's cybersecurity operational business units. Where applicable, the position will ensure compliance with various cybersecurity standards and requirements such as: IT503, IT505, CS 220, NERC CIP, NIST CSF, NIST 800, NARUC, TSA, and NRC 10 CFR 73.54. The analyst will lead the development, support, and ongoing strategy of their business unit’s cybersecurity program, focusing on governance and oversight and/or support and performance tasks. The Nuclear Cyber Security organization provides direct service and support to all nuclear generating stations to ensure compliance with the Nuclear Regulatory Commission (NRC) regulated Duke Energy Nuclear Cyber Security Plan and requirements. This includes response to cyber security threats and events, implementing the cyber security program, and ongoing management of the cyber security program. The cyber security program encompasses all infrastructure assets including, but not limited to, firewalls, data diodes, SIEM, industrial control systems (ICS), and other digital assets scoped into the program. This position is responsible for the analysis and implementation of complex cyber security solutions that address real and potential threats specific to nuclear generation assets and equipment at MNS. The analyst will coordinate across the station and with NGO to ensure nuclear safety and power plant operations are maintained. Responsibilities include solving complex cyber security problems, participating in projects impacting cyber security, performing cyber security assessments, and hardening of critical digital assets (CDA). This position also contributes to the ongoing development and revision of the Nuclear Cyber Security Program to maintain a strong security posture and improve operational efficiency. This includes revision of program policies and procedures, participation in industry working groups, and building positive relationships with internal and external organizations. This position requires a solid understanding of integrated generating plant systems and the processes used to secure plant cyber assets. The analyst must demonstrate an understanding of the impact of cyber security processes on generating systems and the overall electric grid.