Assoc/Mid ET P&C Control System Field Compliance Analyst (Glen Allen, VA)

GLEN ALLEN, VA, US, 23060

Dominion Energy

Dominion Energy operates in 16 states across the U.S., offering clean, safe, reliable, and affordable energy to more than 7 million customers.

View company page

At Dominion Energy we love our jobs.  That’s right.  Love.  Every day we go to work filled with passion to be excellent, to creatively problem solve and to innovate.  These are exciting days for energy companies, and Dominion Energy aims to shape the future of energy in America. We are looking at all of our work with fresh eyes, retooling everything we do, in every part of the company, to operate more sustainably and to deliver energy more reliably than ever.  We are looking for interesting, independent thinkers and doers who can help shape the culture of a forward-looking company that’s proud of its rich legacy. Are you a change agent?  Do you think differently?  Do you want to fall in love with your job? If you answered “yes,” then read on!

 

 

Military service members and veterans with ranks from E3-E5, W1-W2, or O1-O3, plus appropriate equivalent combination of education and years of experience as outlined below will be considered for this opportunity. 

At this time, Dominion Energy cannot transfer nor sponsor a work visa for this position.

This position does not offer relocation assistance. 

 

Job Summary

*There is one vacancy which will be filled at the level commensurate with the successful candidate's education, experience, knowledge, skills and abilities.

This role is to execute cyber security initiatives in accordance with the Electric Transmission Field Operations (ETFO) Cyber Compliance Monitoring Program. This position will focus on day to day monitoring and surveillance of Electric Transmission’s ICS/OT assets and networks. This role will need to report to the office and is not eligible for hybrid or remote work. This role is eligible to work a weekly schedule of four 10hr or compressed 9hr days. 

  • Responsible for developing, supporting, and maintaining awareness of the Industrial Controls System (ICS) and the Operational Technology (OT) systems associated with regulatory requirements, industry trends, and potential impacts to ETFO’s Cyber Compliance Monitoring Program.  
  • Support the installation and maintenance of ICS/OT monitoring equipment and protective relay equipment, SCADA, network and security equipment in Power Delivery systems. 
  • Utilize cyber security systems deployed in protection of ICS/DCS assets, including asset inventory systems, change management, patch management, file integrity, anti-virus, whitelisting, and firewall rule request applications.  
  • Perform compliance and troubleshooting activities (ESNET, Power System Center). 
  • Coordinate patch management and cyber asset management activities.  
  • Develop and revise baseline configuration documentation as needed per NERC CIP requirements. 
  • Analyze potential cyber security incidents, security alerts and perform security assessments under the direction of team leads and management. 
  • Participate in annual cyber security incident response exercises.
  • Coordinate with IT for firewall rule change requests and network equipment implementation on the ICS/OT network as needed.  
  • Coordinate with substation engineering, field personnel, and operation centers to complete scheduled cyber compliance monitoring activities as needed.
  • Schedule maintenance activities using the outage application. 
  • Develop and track mitigation plans for updates that will not be implemented in accordance with NERC Patch Implementation requirements.
  • The company is actively seeking United States military veterans and service members who meet the qualifications outlined below
    Military service members and veterans with ranks from E3-E5, W1-W2, or O1-O3, plus appropriate equivalent combination of education and years of experience as outlined (above / below)

Required Knowledge, Skills, Abilities & Experience

Associate ET P&C System Field Compl Analyst:

  • 1-2 years of experience in Information Technology/Operations Technology (IT/OT), cyber security, firewall rule development, and management of Windows operating systems security or a combination of this experience and ICS experience. (Note: A partial year of related work experience of 6 months or greater will be considered one year towards the qualifications)
  • Must have a general ‘hands on’ understanding of cyber security processes and technologies including malware prevention.
  • Must be able to perform assignments designed to develop knowledge, skills and abilities requiring application of policies, procedures, techniques and other criteria in executing all aspects of the job.
  • Must be able to perform routine work assignments, but over time demonstrate the ability to perform more complex assignments.
  • Must be able to work under established policies and procedures to meet set deadlines and program requirements.
  • Must be able to develop a good understanding of NERC CIP standards and requirements.
  • Must be able to develop a good understanding of ETFO Cyber Security program and its application.
  • Must be able to develop an understanding of substation awareness including a working knowledge of substation design, architecture, physical security measures, electronic security measures, and safety best practices.
  • Must have the ability to adapt to rapidly changing technology and regulatory requirements to meet business needs.
  • Competency in verbal and written communication skills.

 

(Mid-Level) ET P&C System Field Compl Analyst:

  • At least 4+ years of experience in Information Technology/Operations Technology (IT/OT), cyber security, firewall rule development, and management of Windows operating systems security – or – 4 years of a combination of this experience and ICS/OT experience. (Note: A partial year of related work experience of 6 months or greater will be considered one year towards the qualifications)
  • Must have a general ‘hands on’ understanding of cyber security processes and technologies, malware prevention.
  • Must have some experience with security technologies including; firewalls, logging and monitoring tools, antivirus tools, malware prevention, incident response and recovery tools, asset inventory systems.
  • Must have a good understanding of NERC CIP standards and requirements.
  • Must have a good understanding of ETFO Cyber Security program and its application.
  • Must have an understanding of ICS/OT networks while applying cyber security controls.
  • Must have an understanding of automated and manual patch management systems.
  • Experience in security aspects of multiple platforms, operating systems, software, communications, and ICS/OT network architecture.
  • Must have an understanding of vulnerability assessment tools (i.e. NMAP, NESSUS, and Wireshark).
  • Must have an understanding of multiple Substation Communication architectures and Relay protection platforms.
  • Must have an understanding of substation awareness including a working knowledge of substation design, architecture, physical security measures, electronic security measures, and safety best practices.
  • Must have the ability to adapt to rapidly changing technology and regulatory requirements to meet business needs.
  • Strong level of commitment to meeting compliance deadlines.
  • Excellent analytical and problem solving skills.  Ability to work independently and in a team environment to identify errors and implement solutions with under the direction of senior team members. Demonstrated leadership and interpersonal skills.
  • Competency in verbal and written communication skills.

 

Education Requirements

Preferred Associate Degree (or an equivalent combination of education and demonstrated related experience may be accepted in lieu of preferred level of education)

*This role will accept upcoming graduates no later than December 31st, 2024. 

Disciplines Preferred:

  • Cyber Security
  • Computer Science
  • Electrical Engineering
  • Engineering Technology
  • Information Technology

Licenses, Certifications, or Quals Description

Working Conditions

Heat Up to 25%Office Work Environment 51-75%Travel Up to 25%

Other Working Conditions

Test Description

 

Export Control


Certain positions at Dominion Energy may involve access to information and technology subject to export controls under U.S. law.  Compliance with these export controls may result in Dominion Energy limiting its consideration of certain applicants.

 

Other Information


We offer excellent plans and programs for employees. Employees are rewarded with a competitive salary and comprehensive benefits package which may include: health benefits with coverage for families and domestic partners, vacation, retirement plans, paid holidays, tuition reimbursement, and much more.   To learn more about our benefits, click here dombenefits.com.

Dominion Energy is an equal opportunity employer and is committed to a diverse workforce. Qualified applicants will receive consideration for employment without regard to their protected veteran or disabled status.  

You can experience the excitement of our company – it's the difference between taking a job and starting a career.

Apply now Apply later
  • Share this job via
  • or

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  20  7  0

Tags: Antivirus C Compliance Computer Science Firewalls ICS Incident response Industrial Malware Monitoring NERC CIP Nessus Nmap SCADA Security assessment Surveillance Windows

Perks/benefits: Career development Competitive pay Health care Relocation support

Region: North America
Country: United States

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.