Cyber Security, Senior Analyst

About The Position

Requirements

• Bachelor’s degree in Cybersecurity or a related field with a minimum of five (5) years of relevant experience in cybersecurity or a related area; A certificate in Cybersecurity education combined with a Bachelor’s degree in any field with at least five (5) years of relevant cybersecurity experience, an associate degree with at least six (6) years of relevant cybersecurity experience, or a high school diploma/GED with a minimum of seven (7) years of relevant cybersecurity experience will also be considered.
• Strong technical foundation and in-depth expertise in Operational Technology (OT) environments, including comprehensive knowledge of Programmable Logic Controllers (PLCs), Distributed Control Systems (DCS), and commonly used OT protocols and architectures
• Strong knowledge of cybersecurity principles, practices, and technologies
• Experience with IAM, PAM, SEIM, and SCADA systems
• Proficiency in conducting vulnerability assessments and managing incident response
• Experience applying analytical and problem-solving skills in collaborative team environments, with the ability to clearly communicate technical information to diverse stakeholders
• Deep understanding of network attacks, DDoS, Phishing, email protocols/security/spam, encryption, authentication, logging and log analysis, IP and device reputation, and security rules and policies
• Experience working with multiple stakeholders such as engineering/operations teams, internal business units, external incident response teams, and law enforcement throughout the incident lifecycle.
• Strong verbal and written communication skills, solid team player, with demonstrated abilities in analysis and problem-solving.
• Must possess a valid U.S. driver’s license/clean driving record
• Must be willing and able to comply with all ENGIE ethics and safety policies

Responsibilities

• Conduct site-level cybersecurity assessments using ENGIE’s OT Cybersecurity Framework 3.1.
• Evaluate existing controls, identify gaps, and recommend remediation strategies.
• Perform detailed cyber risk assessments for OT environments.
• Support OT sites in remediation of deficiencies in risk assessments.
• Travel to operational sites to perform hands-on assessments, interviews, and validation of cybersecurity controls.
• Build strong relationships with site personnel to foster a culture of cybersecurity awareness.
• Support the deployment and configuration of OT cybersecurity tools (e.g., network monitoring, asset inventory, anomaly detection).
• Develop and maintain OT cybersecurity policies and procedures.
• Ensure proper access controls are in place and regularly reviewed to protect sensitive information.
• Utilize Security Event Information Management (SEIM) tools to monitor, analyze, and respond to security events and incidents.

Benefits

• comprehensive benefits package includes options for medical, dental, vision, life insurance, employer-paid short-term and long-term disability insurance, ESPP, generous paid time off including wellness days, holidays and leave programs
• 401(k) Retirement Savings Plan with a company match
• supplemental benefits for full time employees that enhance emotional and physical well-being through all stages of life from family forming to caregiver benefits