Cybersecurity Analyst - Project Bound
Jupiter, FL, US, 33478
NextEra Energy
Requisition ID: 79858
Florida Power & Light Company is America’s largest electric company, providing clean, affordable, and reliable electricity to more than 12 million people in Florida. We operate one of the cleanest power generation fleets in the U.S. and our reliability is among the best in the nation. Our goal is to achieve Real Zero carbon emissions from our operations by 2045 by expanding our solar capacity, increasing battery storage and bringing new renewable energy opportunities to Florida, while improving customer affordability and reliability. Are you interested in becoming a game-changer in the energy industry? Join our world-class team today!
Position Specific Description
The Information Technology Nuclear Governance, Risk, and Compliance (ITN GRC) analyst is responsible for managing and ensuring the alignment of IT activities with the organization’s overall goals, regulatory requirements, and risk management strategies. The ITN GRC role involves a combination of governance, risk management, compliance, and data analytics activities to enhance the effectiveness and security of the organization’s IT systems.
The NextEra Energy ITN GRC team has an important mandate to drive improved awareness and accountability across the nuclear fleet as it pertains to cybersecurity compliance and risk management. One of the methods to fulfill this mandate involves modernizing the way we use data to effectively manage our cybersecurity risk.
This is an opportunity to innovate at the intersection of at least two cutting edge disciplines including data analytics/modernization and cybersecurity risk management.
Special Considerations:
- Project duration is approximately 12 months
- Position is located at the Jupiter West facility with occasional travel to other facilities required.
- Position is hybrid, with a minimum of 3 days physically in the office required.
- Position requires ability to pass nuclear background check and maintain unescorted physical access.
Highly Preferred Qualifications:
- Six Sigma Green Belt and one or more cybersecurity certifications (e.g., CISA, CRISC, CISSP)
- Microsoft PowerBI or similar expertise.
- Ability to function as a consultant to other IT groups on cybersecurity matters as a recognized expert and to lead cross-functional teams in making sound risk-based decisions.
- Working technical knowledge of cybersecurity, as well as industry trends.
- Experience in developing cybersecurity policies and standards.
- Knowledge of industry-standard risk/control frameworks.
- Ability to develop predictive models and/or other similar value-added functionality.
Job Overview
This job performs ongoing cybersecurity risk reviews for new and existing technologies and services and supports ongoing and new cybersecurity projects. Individuals develop requirements for and implement technical security projects and tools, as well as define the company’s cybersecurity policies and control framework. This position collaborates with the company’s IT department and business units to identify the need for, select, and deploy technical controls to meet specific security requirements. Employees in this role build processes and standards to ensure security requirements continue to be met.
Job Duties & Responsibilities
- Administers, operates and monitors NextEra Energy (NEE) information security sensors, logging, alerting and other detection mechanisms to identify and respond to threats
- Develops a subject matter expertise for one or multiple assigned cybersecurity technology stacks (e.g., identity and access management, network intrusion detection and prevention, host based security tools)
- Collaborates with security architecture to identify, evaluate and recommend new security technologies for suitability within NEE’s environment and security posture
- Communicates ongoing cybersecurity activities, priorities and risk measurements or mitigations at multiple organizational levels
- Provides guidance for security activities and requirements in the system development life cycle (SDLC) and application development efforts. Participates in organizational projects, as required
- Performs other job-related duties as assigned
Required Qualifications
- High School Grad / GED
- Bachelor's or Equivalent Experience
- Experience: 2+ years
Preferred Qualifications
- Certified Information Systems Aud (CISA) certification
Employee Group: Exempt
Employee Type: Projectbound FT
Job Category: Information Technology
Organization: Florida Power & Light Company
Relocation Provided: No
NextEra Energy is an Equal Opportunity Employer. Qualified applicants are considered for employment without regard to race, color, age, national origin, religion, marital status, sex, sexual orientation, gender identity, gender expression, genetics, disability, protected veteran status or any other basis prohibited by law. We are committed to a diverse and inclusive workplace.
NextEra Energy provides reasonable accommodation in its application and selection process for qualified individuals, including accommodations related to compliance with conditional job offer requirements, consistent with federal, state, and local laws. Supporting medical or religious documentation will be required where applicable and permitted by applicable law. To request a reasonable accommodation, please send an e-mail to recruiting-coordinator.sharedmailbox@nexteraenergy.com, providing your name, telephone number and the best time for us to reach you. Alternatively, you may call 1-844-694-4748. Please do not use this line to inquire about your application status.
NextEra Energy will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information.
NextEra Energy does not accept any unsolicited resumes or referrals from any third-party recruiting firms or agencies. Please see our policy for more information.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Analytics C CISA CISSP Compliance CRISC Data Analytics Governance IAM Intrusion detection Nuclear Risk management SDLC
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Staff Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Operations Analyst jobs
- Open Sr. Security Engineer jobs
- Open Security Consultant jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open ISO 27001-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Java-related jobs
- Open APIs-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open SaaS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs