Share this Job

Senior Cyber Security Analyst

Date: Apr 3, 2021

Location: RICHMOND, VA, US, 23219

Company: Dominion Energy

At Dominion Energy we love our jobs.  That’s right.  Love.  Every day we go to work filled with passion to be excellent, to creatively problem solve and to innovate.  These are exciting days for energy companies, and Dominion Energy aims to shape the future of energy in America. We are looking at all of our work with fresh eyes, retooling everything we do, in every part of the company, to operate more sustainably and to deliver energy more reliably than ever.  We are looking for interesting, independent thinkers and doers who can help shape the culture of a forward-looking company that’s proud of its rich legacy. Are you a change agent?  Do you think differently?  Do you want to fall in love with your job? If you answered “yes,” then read on!

At this time, Dominion Energy cannot transfer nor sponsor a work visa for this position.

This position does not offer relocation assistance. 

Job Summary

Do you have what it takes?  This is not your typical cyber role. A cyber war is underway in the world today, with hostile nations seeking to disrupt and destroy critical infrastructure in the United States, all day, and every day. If you want to be on the front lines up against the best cyber criminals and nation state attackers in the world and prove you are better, then this is the place to be.

For our employees, this is a mission, not a job. We educate the company about cyber threats. We establish the standards for cyber security. We perform assessments to ensure proper protections are in place. We manage vulnerabilities and guide the development of defenses. It takes a high degree of skill and a commitment to that mission to be successful. Do you have what it takes? 

If this description sounds like you, let’s talk.

This role performs more complex cyber security and cyber risk work, working closely with the Cyber Security Operations Center (CSOC) and other groups focused on the monitoring, analysis, and investigation of cyber security threats and events, both internal and external, that could potentially impact the security posture of the organization. Coordinates organization cyber security response activities, and maintains situational awareness of the security posture of the enterprise. Performs assessment of cyber security risk and vulnerability analysis, creates and maintains security policies, and facilitates cyber security awareness throughout the organization. Provides updates and detailed information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information and systems. Evaluates the cyber security risk on the organization's network systems, applications, and solutions based upon user requests and business needs. Applies considerable understanding of IT technologies, evaluation of cyber security risks and attack vectors, and develops an evolving knowledge of mitigation options and risk frameworks to assess the current threat landscape and improve security. Consults with subject matter experts and business representatives, as needed, to provide input on cyber security decisions, the establishment of cyber security policies, and to foster security awareness. May serve as a participant in the cyber security incident response program; records, documents and reports cyber security incidents, with a focus on situational awareness and metrics. Works in a team environment to mitigate cyber security threats, improve processes and security posture. Conducts cyber threat research into threat actors and campaigns, as well as technological advances to combat unauthorized access. Assists with root cause investigation and proper mitigation of cyber security events.  

While the job summary covers a wide variety of functions, the initial focus of the position will include the facilitation and continuous improvement of risk assessment processes and reporting, refinement of incident response and other cyber security policies and associated processes, and facilitation of security awareness initiatives.

Perform other duties as requested or assigned.

Required Knowledge, Skills, Abilities & Experience

Must possess at minimum of 5-7 years of work experience in cyber security, or a cyber risk related role demonstrating a working knowledge in the identification, gathering and analysis of information, threats, etc. to investigate and mitigate security risks.

Additional knowledge, skills, abilities and experience include:

  • Considerable knowledge of cyber security best practices and frameworks (ex. CIS 20, NIST Cyber Security Framework, NIST 800-53, etc.).
  • Working knowledge of industrial cyber security standards, frameworks and risk assess modeling helpful.
  • Demonstrated organization and planning skills, including time management, project coordination, and project management.
  • Demonstrates excellent analytical, troubleshooting, and problem solving skills, with a questioning attitude.
  • Demonstrated competency in verbal and written communication, with good presentation skills.
  • An in-depth experience in security aspects of multiple platforms, operating systems, software, communications, and network protocols is strongly desired.
  • Highly motivated, with the ability to work effectively under minimal supervision in a fast paced environment.
  • Excellent analytical, troubleshooting, organizational, and problem solving skills, to include time management, project coordination, and project management.
  • Previous work experience with industry cyber security standards, policies, frameworks, and risk assessment models.
  • Must be team-oriented, placing priority on quality and the successful completion of team goals
  • Demonstrated competency in developing effective solutions to business problems, with the ability to understand customer’s business needs, analyze problems and make decisions. Demonstrated leadership of work teams or groups, with the ability to work with all levels of employees.
  • Ability to handle multiple deadlines and associated pressures, is a self-starter, and to work independently.

The company is actively seeking United States military veterans and service members who meet the qualifications outlined below.

  • Military service members and veterans with ranks from E5-E9, W1-CW5, or O3-O6, plus appropriate equivalent combination of education and years of experience as outlined above.


Education Requirements

Education Level:  Degree or an equivalent combination of education and demonstrated related experience may be accepted in lieu of preferred level of education: Bachelor

Preferred Disciplines: Computer Science; Engineering; Information Systems; Information Systems Security

Other disciplines may be substituted for the preferred discipline(s) listed above.

Licenses, Certifications, or Quals Description

Other: Security-related industry certifications desired (CISSP, GIAC, EC-Council, etc.)

Working Conditions

Office Work Environment 76 -100%
Travel Up to 25%

Other Working Conditions

Test Description

No Testing Required


Export Control

Certain positions at Dominion Energy may involve access to information and technology subject to export controls under U.S. law.  Compliance with these export controls may result in Dominion Energy limiting its consideration of certain applicants.


Other Information

We offer excellent plans and programs for employees. Employees are rewarded with a competitive salary and comprehensive benefits package which may include: health benefits with coverage for families and domestic partners, vacation, retirement plans, paid holidays, tuition reimbursement, and much more.   To learn more about our benefits, click here

Dominion Energy is an equal opportunity employer and is committed to a diverse workforce. Qualified applicants will receive consideration for employment without regard to their protected veteran or disabled status.  

You can experience the excitement of our company – it's the difference between taking a job and starting a career.

Nearest Major Market: Richmond

Job Segment: Engineer, Information Systems, Computer Science, Testing, Engineering, Technology, Research