System Analyst, Substation CyberSecurity (Hybrid)

Overview

This position is responsible to ensure compliance to NERC Critical Infrastructure Protection Standards that are applicable to Substation Operations. This position will support the design, development and implementation of computer system networks, cyber security tools & monitoring, PC systems and applications, and telecommunication applications for Substation Operations associated with Bulk Electric Systems (BES) Cyber Systems. Violations of the NERC CIP standards will diminish system reliability and can result in significant consequences to the Con Edison Bulk Electric System, and the Company as a whole. A dedicated professional with continuous oversight responsibility to standard compliance is essential to continued reliable operations. Under the general supervision of the Protective System and Testing Section Manager, the System Analyst or Senior System Analyst will be active in and be responsible for functional compliance with NERC Critical Infrastructure Protection related to the operation of BES Cyber Systems/Assets associated with Substation Operations. This activity will include preparation, review and approval of necessary procedures and evidence to demonstrate compliance prior to reporting to local, state, and federal regulatory agencies and regional authorities.

This position does not provide employment pursuant to the terms of a STEM OPT Training Plan.

Responsibilities

• Familiarity with all the NERC CIP standards
• Maintain databases, records, passwords and baseline configurations associated with BES Cyber Systems
• Responsible for the designation and management of Electronic Security perimeters associated with BES Cyber Systems.
• Responsible for the management of System Security associated with BES Cyber Systems, which includes but not limited to patch management.
• Work to represent Substation Operations in NPCC and NERC related compliance issues both internal to Con Edison and with external organizations such as NYISO, NPCC, NERC, FERC and other neighboring TO's, TOP's and reliability coordinators.
• Conduct vulnerability assessments on BES Cyber Systems
• Develop training modules for cyber security training program and aspects of Personnel Risk Assessment Program.
• Review and comment on revised NERC CIP standards. Develop required protocols and procedural revisions to address revised NERC CIP standards to ensure continued compliance with such revised standards.
• Perform other related task and assignments as required.

Qualifications

• Associate's Degree in Engineering, Computer Science, Information Technology or equivalent type of degree and 4 years of relevant work experience in the fields of Computer Science, Information Technology or equivalent field or
• Bachelor's Degree in Engineering, Computer Science, Information Technology or equivalent type of degree and 2 years of relevant work experience in the fields of Computer Science, Information Technology or equivalent field

• Bachelor's Degree Computer Science, Information Technology, Cybersecurity and 2 years of relevant work experience in the fields of Computer Science, Information Technology or equivalent field

• Must have effective written and verbal communication skills, required.
• Must be proficient with Microsoft Office products such as Excel, Powerpoint and Word, required.
• Must have a basic understanding of information technology and/or computer engineering, required.
• Must possess effective presentation skills, required.
• Must demonstrate sound positive work ethics in support of Companys Corporate Values and Mission, required.
• Must be well organized, detail oriented and flexible to handle multiple assignments, required.
• Cybersecurity knowledge and experience is preferred

• Demonstrated analytical skills
• Proficient in English written and verbal communication skills
• Must be proficient in Microsoft Office including Word, Excel, Outlook and PowerPoint, etc.

• Chartered Retirement Plans Specialist (CRPS) Required

• Sit or stand to use a keyboard, mouse, and computer for the duration of the workday
• Stand to use/operate office equipment for the duration of the workday
• Ability to read small print and symbols

• The selected candidate will be assigned a System Emergency Assignment (i.e., an emergency response role) and will be expected to work non-business hours during emergencies, which may include nights, weekends, and holidays.
• The selected candidate will be assigned a System Emergency Assignment (i.e., an emergency response role) and will be expected to work non-business hours during emergencies, which may include nights, weekends, and holidays.