Associate Information Security Analyst - Columbia SC at Dominion Energy in CAYCE, SC, 29033, US | Kablio

Role

Description

vulnerability scanning

vulnerability reporting

metrics dashboard

risk analysis

patch review

controls monitoring

Creatively developing approaches to problems and recommending actions to management.
Research, analysis, and troubleshoots information system compliance and security issues.
Reports control failures and gaps to stakeholders. Provides remediation guidence and prepares management reports to track remediation activities.
Help develop security metrics dashboard and maintain.
Stay up to date with the latest vulnerabilities, exploits, security trends and general changes in technology to provide guidance on how these affect the security of our business.
Conduct regular vulnerability assessments using automated scanning tools to identify security weaknesses, out-of-date version, and vulnerable system across our IT infrastructure operations.
Generate accurate and concise vulnerability assessment reports including vulnerability exposure, risk, and remediation progress.
Apply a risk-based approach in identifying, executing, and reporting to stakeholders for mitigation.
Assist in developing and updating vulnerability management procedures and processes and enforcing those procedures and processes.
Analyze scan results and assess vulnerabilities regarding severity, impact, and potential risk to the IT infrastructure operations and collaborate with IT teams and applications owners to prioritize and coordinate remediation via patching and/or mitigation controls.
Review patch management data and report gaps to responsible groups to conduct risk mitigations.
Analyze and monitor technical controls to ensure that specific security controls are managed and maintained.

Requirements

tenable

powershell

sccm

gpo

sql

cvss

Experience with Microsoft power Tools.
Proficiency with vulnerability scanning tools such as knowledge of Tenable Security Center.
Experience with Microsoft SQL and Oracle database
Basic experience in Information Technology and business analysis.
Basic understanding of risk assessment methodologies and ability to evaluate vulnerabilities’ potential impact to the IT infrastructure operations.
Excellent organizational skills with strict attention to detail.
Experience with Regex and Microsoft PowerShell.
Experience with NIST Common Vulnerability Scoring System (CVSS)
Knowledge of cyber security principles and solutions.
Detail-oriented approach to analyzing scan results and identifying false positives.
Ability to work independently and collaboratively across teams.
Experience with Microsoft Endpoint Configuration Manager (SCCM) and Group Policies (GPO)
Diverse knowledge of information security as well as ability to clearly present and communicate on technical subjects to various audiences.
Must have strong analytical and critical-thinking skills.

Benefits

Information not given or found

Training + Development

Information not given or found

Interview process

Information not given or found

Visa Sponsorship

dominion energy cannot transfer or sponsor a work visa or employment authorization for this position.

Security clearance

Information not given or found

Company

Overview

7+ million customers

Customer Reach

Serves over 7 million customers across multiple states.

Committed to sustainability, focusing on reducing carbon emissions and expanding its renewable energy portfolio, including wind, solar, and battery storage projects.
Operates a vast network of electric transmission and distribution lines and natural gas storage, transmission, and distribution pipelines.
Supplies electricity to parts of Virginia, North Carolina, and South Carolina, and natural gas to regions in Utah, Idaho, Wyoming, West Virginia, Ohio, Pennsylvania, North Carolina, South Carolina, and Georgia.
Dominion also operates generation facilities in Indiana, Illinois, Connecticut, and Rhode Island.

Culture + Values

It is vital to send every employee home safe and sound.
Our reputation depends on ethical behavior.
We pursue excellence in service to our customers every day.
By welcoming new ideas, we champion innovation.
Teamwork leads to strong, sustainable performance.

Environment + Sustainability

47% Reduction in CO2 emissions

Carbon Emissions Achieved

Significant decrease in carbon dioxide emissions from electric generation between 2005 and 2022.

2.6 gigawatts offshore wind farm

Renewable Energy Capacity

Largest offshore wind farm in the US, capable of powering over 660,000 homes.

Aims to achieve net-zero greenhouse gas emissions by 2050.

Inclusion & Diversity

22.8% Women

Female Workforce Representation

Percentage of women in the company's workforce.

22.2% Minority

Minority Workforce Representation

Percentage of minority employees in the company's workforce.

36% Women Board

Women on the Diverse Board

Percentage of women on the company's Diverse Board of Directors as of March 27, 2023.

Have active employee network groups focused on DEI topics.

Articles

ESG Report

Media Room

Role

Description

vulnerability scanning

vulnerability reporting

metrics dashboard

risk analysis

patch review

controls monitoring

Creatively developing approaches to problems and recommending actions to management.
Research, analysis, and troubleshoots information system compliance and security issues.
Reports control failures and gaps to stakeholders. Provides remediation guidence and prepares management reports to track remediation activities.
Help develop security metrics dashboard and maintain.
Stay up to date with the latest vulnerabilities, exploits, security trends and general changes in technology to provide guidance on how these affect the security of our business.
Conduct regular vulnerability assessments using automated scanning tools to identify security weaknesses, out-of-date version, and vulnerable system across our IT infrastructure operations.
Generate accurate and concise vulnerability assessment reports including vulnerability exposure, risk, and remediation progress.
Apply a risk-based approach in identifying, executing, and reporting to stakeholders for mitigation.
Assist in developing and updating vulnerability management procedures and processes and enforcing those procedures and processes.
Analyze scan results and assess vulnerabilities regarding severity, impact, and potential risk to the IT infrastructure operations and collaborate with IT teams and applications owners to prioritize and coordinate remediation via patching and/or mitigation controls.
Review patch management data and report gaps to responsible groups to conduct risk mitigations.
Analyze and monitor technical controls to ensure that specific security controls are managed and maintained.

Requirements

tenable

powershell

sccm

gpo

sql

cvss

Experience with Microsoft power Tools.
Proficiency with vulnerability scanning tools such as knowledge of Tenable Security Center.
Experience with Microsoft SQL and Oracle database
Basic experience in Information Technology and business analysis.
Basic understanding of risk assessment methodologies and ability to evaluate vulnerabilities’ potential impact to the IT infrastructure operations.
Excellent organizational skills with strict attention to detail.
Experience with Regex and Microsoft PowerShell.
Experience with NIST Common Vulnerability Scoring System (CVSS)
Knowledge of cyber security principles and solutions.
Detail-oriented approach to analyzing scan results and identifying false positives.
Ability to work independently and collaboratively across teams.
Experience with Microsoft Endpoint Configuration Manager (SCCM) and Group Policies (GPO)
Diverse knowledge of information security as well as ability to clearly present and communicate on technical subjects to various audiences.
Must have strong analytical and critical-thinking skills.

Benefits

Information not given or found

Training + Development

Information not given or found

Interview process

Information not given or found

Visa Sponsorship

dominion energy cannot transfer or sponsor a work visa or employment authorization for this position.

Security clearance

Information not given or found