Cybersecurity Analyst

Job Description

ATTENTION MILITARY AFFILIATED JOB SEEKERS - Our organization works with partner companies to source qualified talent for their open roles. The following position is available to Veterans, Transitioning Military, National Guard and Reserve Members, Military Spouses, Wounded Warriors, and their Caregivers. If you have the required skill set, education requirements, and experience, please click the submit button and follow the next steps.
Unless specifically stated otherwise, this role is "On-Site" at the location detailed in the job post.

Position Specific Description

The Information Technology Nuclear Governance, Risk, and Compliance (ITN GRC) analyst is responsible for managing and ensuring the alignment of IT activities with the organization's overall goals, regulatory requirements, and risk management strategies. The ITN GRC role involves a combination of governance, risk management, compliance, and data analytics activities to enhance the effectiveness and security of the organization's IT systems.

The NextEra Energy ITN GRC team has an important mandate to drive improved awareness and accountability across the nuclear fleet as it pertains to cybersecurity compliance and risk management. One of the methods to fulfill this mandate involves modernizing the way we use data to effectively manage our cybersecurity risk.

This is an opportunity to innovate at the intersection of at least two cutting edge disciplines including data analytics/modernization and cybersecurity risk management.

Special Considerations:

• Project duration is approximately 12 months
• Position is located at the Jupiter West facility with occasional travel to other facilities required.
• Position is hybrid, with a minimum of 3 days physically in the office required.
• Position requires ability to pass nuclear background check and maintain unescorted physical access.

Highly Preferred Qualifications:

• Six Sigma Green Belt and one or more cybersecurity certifications (e.g., CISA, CRISC, CISSP)
• Microsoft PowerBI or similar expertise.
• Ability to function as a consultant to other IT groups on cybersecurity matters as a recognized expert and to lead cross-functional teams in making sound risk-based decisions.
• Working technical knowledge of cybersecurity, as well as industry trends.
• Experience in developing cybersecurity policies and standards.
• Knowledge of industry-standard risk/control frameworks.
• Ability to develop predictive models and/or other similar value-added functionality.

Job Overview

This job performs ongoing cybersecurity risk reviews for new and existing technologies and services and supports ongoing and new cybersecurity projects. Individuals develop requirements for and implement technical security projects and tools, as well as define the company's cybersecurity policies and control framework. This position collaborates with the company's IT department and business units to identify the need for, select, and deploy technical controls to meet specific security requirements. Employees in this role build processes and standards to ensure security requirements continue to be met.
Job Duties & Responsibilities

• Administers, operates and monitors NextEra Energy (NEE) information security sensors, logging, alerting and other detection mechanisms to identify and respond to threats
• Develops a subject matter expertise for one or multiple assigned cybersecurity technology stacks (e.g., identity and access management, network intrusion detection and prevention, host based security tools)
• Collaborates with security architecture to identify, evaluate and recommend new security technologies for suitability within NEE's environment and security posture
• Communicates ongoing cybersecurity activities, priorities and risk measurements or mitigations at multiple organizational levels
• Provides guidance for security activities and requirements in the system development life cycle (SDLC) and application development efforts. Participates in organizational projects, as required
• Performs other job-related duties as assigned

Additional Qualifications/Responsibilities

Required Qualifications

• High School Grad / GED
• Bachelor's or Equivalent Experience
• Experience: 2+ years

Preferred Qualifications

• Certified Information Systems Aud (CISA) certification

---