PSEG
Senior Cyber Security Analyst (Endpoint)
PSEG, Bethpage, New York, United States, 11714
Requisition: 80307
PSEG Company: PSEG Long Island
Salary Range: $ 101,600 - $ 160,900
Incentive: PIP 15%
Work Location Category: Remote Local
PSEG operates under a Flexible Work Model where flexible work is offered when job requirements allow. In support of this model, roles have been categorized into one of four work location categories: onsite roles, hybrid roles that are a blend of onsite and remote work, remote local roles that are primarily home-based but require some level of purpose-driven in-person interaction and living within a commutable distance, and remote non-local roles that can be effectively performed remotely with the ability to work in approved states.
We want you to be healthy, balanced, and feel secure. That’s why you’ll enjoy a comprehensive range of benefits, with a focus on supporting your whole health. Starting on day one of your employment, you’ll be offered several health-related benefits including medical, vision, dental, and well-being and behavioral health programs. We also offer a retirement program, 401(k) with company match, company paid life insurance, tuition reimbursement and a minimum of 18 days of paid time off per year.
PSEG offers a unique experience to our more than 12,000 employees – we provide the resources and opportunities for career development that come with being a Fortune 500 company, as well as the attention, camaraderie and care for one another you might typically associate with a small business. Our focus on combatting climate change through clean energy technology, our new net zero climate vision for 2030 and enhanced commitment to diversity, equity and inclusion; and supporting the communities we serve make this a particularly exciting time to join PSEG.
Job Summary
This position is an experienced, senior level, hands-on technical lead, performing IT security functions and maintaining systems, while providing technical guidance to the team. Ensures the implementation of robust security measures to protect organization communications and control networks, reducing the risk of unauthorized access and cyber threats. Implements and maintain effective measures to prevent data leaks, safeguarding sensitive information and ensuring compliance with data protection policies and regulations. Regularly assess, tune and enhance the effectiveness of network and endpoint security measures, including encryption protocols, and lead continuous improvement initiatives to enhance the organization's overall security posture. Manages information security technologies such as antivirus, IDS/IPS, SIEM, endpoint detection & response, DLP, data encryption, proxies, and network access control, as well as security policies and procedures, and incident response.
Job Responsibilities
Include but are not limited to:
Manages Network, Endpoint, and Data security technologies including:
Provides technical expertise in threat/risk assessments for Network, Endpoint, and Data security related activities
Defines, designs, and implements Network, Endpoint, and Data (NED) security strategies to protect against emerging threats using security tools
Performs security reviews on new NED technologies and changes to existing NED technologies
Perform analysis of log files from a variety of sources (e.g., individual host logs, network traffic logs, firewall logs, and intrusion detection system [IDS] logs) to identify possible threats to network security
Evaluate network infrastructure vulnerabilities to enhance capabilities being developed
Utilizes information security technologies
Provides technical expertise in threat/risk assessments
Defines, designs, and implements strategies to protect against emerging threats using security tools
Supports the response to security incidents as needed.
Supports threat hunting function to discover potential cybersecurity events as requested.
Job Specific Qualifications
Required
Bachelor's degree in Computer Science, Information Systems, Cyber Security, Math or Engineering
In lieu of a degree 10 years of cyber experience
6 or more years of experience in Information Security
Required Competencies
Manages information security technologies such as antivirus, IDS/IPS, SIEM, endpoint detection & response, DLP, data encryption, proxies, and network access control, as well as security policies and procedures, and incident response
Provides technical expertise and support to clients, IT management and staff in cybersecurity threat risk assessments, development, testing and the implementation and operation of appropriate information security plans, procedures, and control techniques designed to prevent, minimize or quickly recover from cyber-attacks or other serious events
Has strong incident response and threat analysis experience, including SIEM technology. Proficient in defining processes and procedures for incident response
Follows cyber security news and alerts, understands complex attack vectors and risks, and identifies and evaluates emergent cyber security threats and vulnerabilities. Recommends appropriate corrective actions for information security incidents and provides risk mitigation recommendations to management and team
Is familiar with cloud computing and can implement strong security to protect cloud first environment
Reviews complex architecture design diagrams and documents for new technologies and changes to existing technologies to determine risks and provide recommendations and mitigations
Works independently with little or no supervision
Ability to foster working relationships with the team, IT Management and Client departments
Ability to explain technical concepts to the business users in the context of business requirements
Technical experience includes: information/data / network/computer security design, administration and/or assessment
Broad knowledge of information systems including Windows security, network security, systems development, communication networks, security software/hardware and operating systems
Experience with key information security technologies such as SIEM, firewalls, intrusion detection/prevention systems, vulnerability assessment, encryption, identity and access control systems, anti-malware, and security event analysis.
Leadership, planning and organizing, results orientation, technical/professional knowledge
Excellent interpersonal, organizational, managerial, financial management and leadership skills
Communicates effectively with both technical and non-technical individuals
Maintains a solid working knowledge of Information Security principles and practices
Desired
ISC2 Certified Information Systems Security Professional (CISSP) or equivalent
Minimum Years of Experience
6 years of experience
Education
Certifications
None Noted
Disclaimer
Certain positions at the Company may require you to have access to Part 810-Controlled Information. Under the law, the Company is limited in who it can share this information with and in certain circumstances it is necessary to obtain specific authorization before the Company can share this information. Accordingly, if the position does require access to this information, you must complete a 10 CFR Part 810 Export Control Compliance Nationality Request Form, a copy of which will be provided to you by Talent Acquisition if an offer is made. If there is a need for specific authorization, due to the time it takes to obtain authorization from the government, we will likely not be able to further proceed with an offer.
PSEG is an equal opportunity employer, dedicated to a policy of non-discrimination in employment, including the hiring process, based on any legally protected characteristic. Legally protected characteristics include race, color, religion, national origin, sex, age, marital status, sexual orientation, disability or veteran status or any other characteristic protected by federal, state, or local law in locations where PSEG employs individuals.
As an employee of PSEG you should be aware that during storm restoration efforts, you may be required to perform functions outside of your routine duties and on a schedule that may be different from normal operations.
For all roles, PSEG’s drug and alcohol testing program includes pre-employment testing, testing for cause, and post-incident/accident testing. For employees in federally regulated roles (including positions covered by USDOT, PHMSA, or NRC regulations), this also includes random testing. Although numerous states throughout the country have legalized marijuana/cannabis products recreationally and/or medically, it is prohibited for employees in federally regulated roles. Employees who are hired or transfer into a federally regulated role are subject to drug and alcohol testing, inclusive of marijuana. Please note that the use of CBD products may result in a positive drug test for THC/Marijuana and such use is not a legitimate medical explanation for such a positive result.
PSEG employees must apply for jobs internally through emPower which can be accessed through sharepoint.pseg.com (https://sharepoint.pseg.com/Pages/Home.aspx) by clicking on the emPower icon, then selecting careers. This site is strictly for candidates who are not currently PSEG employees, with the exception of PSEG employees who do not have company email addresses.
PSEG is committed to providing reasonable accommodations to individuals with disabilities. If you have a disability and need assistance applying for a position, please call 973-430-3845 or email accommodations@pseg.com.
If you need to request a reasonable accommodation to perform the essential functions of the job, email accommodations@pseg.com . Any information provided regarding a disability will be kept strictly confidential and will not be shared with anyone involved in making a hiring decision.
ADDITIONAL EEO/AA INFORMATION (Click link below)
Know your Rights: Workplace Discrimination is Illegal (https://www.eeoc.gov/sites/default/files/2022-10/22-088_EEOC_KnowYourRights_10_20.pdf)
Pay Transparency Nondiscrimination Provision
Diversity at PSEG: Equal Opportunity Employer
PSEG is an equal employment opportunity employer and makes employment decisions, including but not limited to, hiring, firing, promotion, demotion, training, and/or compensation, on the basis of merit. Employment decisions are based on an individual’s qualifications as they relate to the job under consideration. PSEG's policy prohibits unlawful discrimination based on sex (which includes pregnancy, childbirth, breastfeeding, or related medical conditions, the actual sex of the individual, or the gender identity or gender expression), race, color, religion, including religious dress practices and religious grooming practices, sexual orientation, national origin, ancestry, citizenship, marital status, familial status, age, physical disability, mental disability, medical condition, genetic information, protected veteran or military status, or any other consideration made unlawful by federal, state or local laws, ordinances, or regulations.
Need to request an accommodation?
If you have a disability and need assistance submitting your resume, applying for a position or registering for a test, please call 973-430-3845. Any information provided regarding a disability will be kept strictly confidential and will not be shared with anyone involved in making a hiring decision.
PSEG is committed to complying with all applicable laws providing equal employment opportunities. This commitment applies to all persons involved in the operations of the Company and prohibits unlawful discrimination by any employee of the Company, including supervisors and co-workers.
PSEG Company: PSEG Long Island
Salary Range: $ 101,600 - $ 160,900
Incentive: PIP 15%
Work Location Category: Remote Local
PSEG operates under a Flexible Work Model where flexible work is offered when job requirements allow. In support of this model, roles have been categorized into one of four work location categories: onsite roles, hybrid roles that are a blend of onsite and remote work, remote local roles that are primarily home-based but require some level of purpose-driven in-person interaction and living within a commutable distance, and remote non-local roles that can be effectively performed remotely with the ability to work in approved states.
We want you to be healthy, balanced, and feel secure. That’s why you’ll enjoy a comprehensive range of benefits, with a focus on supporting your whole health. Starting on day one of your employment, you’ll be offered several health-related benefits including medical, vision, dental, and well-being and behavioral health programs. We also offer a retirement program, 401(k) with company match, company paid life insurance, tuition reimbursement and a minimum of 18 days of paid time off per year.
PSEG offers a unique experience to our more than 12,000 employees – we provide the resources and opportunities for career development that come with being a Fortune 500 company, as well as the attention, camaraderie and care for one another you might typically associate with a small business. Our focus on combatting climate change through clean energy technology, our new net zero climate vision for 2030 and enhanced commitment to diversity, equity and inclusion; and supporting the communities we serve make this a particularly exciting time to join PSEG.
Job Summary
This position is an experienced, senior level, hands-on technical lead, performing IT security functions and maintaining systems, while providing technical guidance to the team. Ensures the implementation of robust security measures to protect organization communications and control networks, reducing the risk of unauthorized access and cyber threats. Implements and maintain effective measures to prevent data leaks, safeguarding sensitive information and ensuring compliance with data protection policies and regulations. Regularly assess, tune and enhance the effectiveness of network and endpoint security measures, including encryption protocols, and lead continuous improvement initiatives to enhance the organization's overall security posture. Manages information security technologies such as antivirus, IDS/IPS, SIEM, endpoint detection & response, DLP, data encryption, proxies, and network access control, as well as security policies and procedures, and incident response.
Job Responsibilities
Include but are not limited to:
Manages Network, Endpoint, and Data security technologies including:
Provides technical expertise in threat/risk assessments for Network, Endpoint, and Data security related activities
Defines, designs, and implements Network, Endpoint, and Data (NED) security strategies to protect against emerging threats using security tools
Performs security reviews on new NED technologies and changes to existing NED technologies
Perform analysis of log files from a variety of sources (e.g., individual host logs, network traffic logs, firewall logs, and intrusion detection system [IDS] logs) to identify possible threats to network security
Evaluate network infrastructure vulnerabilities to enhance capabilities being developed
Utilizes information security technologies
Provides technical expertise in threat/risk assessments
Defines, designs, and implements strategies to protect against emerging threats using security tools
Supports the response to security incidents as needed.
Supports threat hunting function to discover potential cybersecurity events as requested.
Job Specific Qualifications
Required
Bachelor's degree in Computer Science, Information Systems, Cyber Security, Math or Engineering
In lieu of a degree 10 years of cyber experience
6 or more years of experience in Information Security
Required Competencies
Manages information security technologies such as antivirus, IDS/IPS, SIEM, endpoint detection & response, DLP, data encryption, proxies, and network access control, as well as security policies and procedures, and incident response
Provides technical expertise and support to clients, IT management and staff in cybersecurity threat risk assessments, development, testing and the implementation and operation of appropriate information security plans, procedures, and control techniques designed to prevent, minimize or quickly recover from cyber-attacks or other serious events
Has strong incident response and threat analysis experience, including SIEM technology. Proficient in defining processes and procedures for incident response
Follows cyber security news and alerts, understands complex attack vectors and risks, and identifies and evaluates emergent cyber security threats and vulnerabilities. Recommends appropriate corrective actions for information security incidents and provides risk mitigation recommendations to management and team
Is familiar with cloud computing and can implement strong security to protect cloud first environment
Reviews complex architecture design diagrams and documents for new technologies and changes to existing technologies to determine risks and provide recommendations and mitigations
Works independently with little or no supervision
Ability to foster working relationships with the team, IT Management and Client departments
Ability to explain technical concepts to the business users in the context of business requirements
Technical experience includes: information/data / network/computer security design, administration and/or assessment
Broad knowledge of information systems including Windows security, network security, systems development, communication networks, security software/hardware and operating systems
Experience with key information security technologies such as SIEM, firewalls, intrusion detection/prevention systems, vulnerability assessment, encryption, identity and access control systems, anti-malware, and security event analysis.
Leadership, planning and organizing, results orientation, technical/professional knowledge
Excellent interpersonal, organizational, managerial, financial management and leadership skills
Communicates effectively with both technical and non-technical individuals
Maintains a solid working knowledge of Information Security principles and practices
Desired
ISC2 Certified Information Systems Security Professional (CISSP) or equivalent
Minimum Years of Experience
6 years of experience
Education
Certifications
None Noted
Disclaimer
Certain positions at the Company may require you to have access to Part 810-Controlled Information. Under the law, the Company is limited in who it can share this information with and in certain circumstances it is necessary to obtain specific authorization before the Company can share this information. Accordingly, if the position does require access to this information, you must complete a 10 CFR Part 810 Export Control Compliance Nationality Request Form, a copy of which will be provided to you by Talent Acquisition if an offer is made. If there is a need for specific authorization, due to the time it takes to obtain authorization from the government, we will likely not be able to further proceed with an offer.
PSEG is an equal opportunity employer, dedicated to a policy of non-discrimination in employment, including the hiring process, based on any legally protected characteristic. Legally protected characteristics include race, color, religion, national origin, sex, age, marital status, sexual orientation, disability or veteran status or any other characteristic protected by federal, state, or local law in locations where PSEG employs individuals.
As an employee of PSEG you should be aware that during storm restoration efforts, you may be required to perform functions outside of your routine duties and on a schedule that may be different from normal operations.
For all roles, PSEG’s drug and alcohol testing program includes pre-employment testing, testing for cause, and post-incident/accident testing. For employees in federally regulated roles (including positions covered by USDOT, PHMSA, or NRC regulations), this also includes random testing. Although numerous states throughout the country have legalized marijuana/cannabis products recreationally and/or medically, it is prohibited for employees in federally regulated roles. Employees who are hired or transfer into a federally regulated role are subject to drug and alcohol testing, inclusive of marijuana. Please note that the use of CBD products may result in a positive drug test for THC/Marijuana and such use is not a legitimate medical explanation for such a positive result.
PSEG employees must apply for jobs internally through emPower which can be accessed through sharepoint.pseg.com (https://sharepoint.pseg.com/Pages/Home.aspx) by clicking on the emPower icon, then selecting careers. This site is strictly for candidates who are not currently PSEG employees, with the exception of PSEG employees who do not have company email addresses.
PSEG is committed to providing reasonable accommodations to individuals with disabilities. If you have a disability and need assistance applying for a position, please call 973-430-3845 or email accommodations@pseg.com.
If you need to request a reasonable accommodation to perform the essential functions of the job, email accommodations@pseg.com . Any information provided regarding a disability will be kept strictly confidential and will not be shared with anyone involved in making a hiring decision.
ADDITIONAL EEO/AA INFORMATION (Click link below)
Know your Rights: Workplace Discrimination is Illegal (https://www.eeoc.gov/sites/default/files/2022-10/22-088_EEOC_KnowYourRights_10_20.pdf)
Pay Transparency Nondiscrimination Provision
Diversity at PSEG: Equal Opportunity Employer
PSEG is an equal employment opportunity employer and makes employment decisions, including but not limited to, hiring, firing, promotion, demotion, training, and/or compensation, on the basis of merit. Employment decisions are based on an individual’s qualifications as they relate to the job under consideration. PSEG's policy prohibits unlawful discrimination based on sex (which includes pregnancy, childbirth, breastfeeding, or related medical conditions, the actual sex of the individual, or the gender identity or gender expression), race, color, religion, including religious dress practices and religious grooming practices, sexual orientation, national origin, ancestry, citizenship, marital status, familial status, age, physical disability, mental disability, medical condition, genetic information, protected veteran or military status, or any other consideration made unlawful by federal, state or local laws, ordinances, or regulations.
Need to request an accommodation?
If you have a disability and need assistance submitting your resume, applying for a position or registering for a test, please call 973-430-3845. Any information provided regarding a disability will be kept strictly confidential and will not be shared with anyone involved in making a hiring decision.
PSEG is committed to complying with all applicable laws providing equal employment opportunities. This commitment applies to all persons involved in the operations of the Company and prohibits unlawful discrimination by any employee of the Company, including supervisors and co-workers.