Senior System Cyber Analyst Detection Engineering & Automation bei Consolidated Edison Company of New York, Inc.

• Design, implement, and continuously tune detection logic using detection-as-code principles.
• Create and maintain CI/CD pipelines that automate the linting, testing, validation, and deployment of cybersecurity detections.
• Manage detection and automation repositories with Git, ensuring they adhere to coding standards, documentation practices, and version control policies.
• Develop and maintain comprehensive orchestration and automation playbooks in Splunk SOAR.
• Build machine learning models for detecting anomalies and malicious activities.
• Monitor the health of logs and detection infrastructure.
• Drive closure of logging and visibility gaps.
• Administer and continuously improve our security case/workflow management tool.
• Design and perform threat hunts to identify malicious activity, misconfigurations, and visibility gaps.
• Help create and maintain detection content and dashboards.
• Perform adversary emulation in special test environments.
• Design, implement, and maintain automated workflows for threat intelligence and threat hunting.
• Serve as a Tier 3 escalation point for the Cybersecurity Operations Center (CSOC).
• Evaluate, recommend, and onboard new tools and processes to enhance capabilities.

• Master's Degree in Computer Science, Cybersecurity, or other related area and 2 years of relevant work experience.
• Bachelor's Degree in Computer Science, Cybersecurity, or other related area and 3 years of relevant work experience.
• Associate's Degree in Computer Science, Cybersecurity, or other related area and 4 years of relevant work experience.
• High School Diploma/GED and 5 years of relevant work experience.

• Experience in threat intelligence, threat hunting, detection engineering, or a related cybersecurity role, required.
• Strong programming experience with Python or a similar language, required.
• Strong knowledge of detection-as-code practices, required.
• Experience with creating and maintaining CI/CD pipelines, required.
• Proficiency with Git, required.
• Expert knowledge in Splunk Enterprise Security and Splunk SOAR, required.
• Strong proficiency in analyzing IOCs, TTPs, user activity logs, host logs, network logs, and PCAPs to identify malicious behavior, required.
• Experience with MITRE ATT&CK and threat hunting frameworks, methodologies, and approaches, preferred.
• Strong understanding of Incident Management and Incident Response frameworks, preferred.
• Experience using Microsoft Sentinel and KQL, preferred.
• Knowledge of digital forensics and investigation techniques, particularly on Windows and Linux, preferred.
• Knowledge on cloud security and cloud architecture best practices, preferred.
• OT/ICS Security knowledge, preferred.

• Possesses strong technical aptitude
• Excellent collaboration and team building skills
• Strong verbal communication and listening skills
• Demonstrated written communication skills
• Must be proficient in Microsoft Office including Word, Excel, Outlook and PowerPoint, etc.

• Driver's License Required
• Other: Technical certifications (e.g. CISSP, CISM, CIPP, etc.) Preferred

• The selected candidate will be assigned a System Emergency Assignment (i.e., an emergency response role) and will be expected to work non-business hours during emergencies, which may include nights, weekends, and holidays.
• Must be able and willing to travel within Company service territory, as needed.
• Must be available 24/7, on call, and/or participate in off-hour emergency response activities as required.

EEO Statement:

Consolidated Edison Company of New York, Inc. (Con Edison), Orange & Rockland Utilities (O&R), and Consolidated Edison Transmission (CET) are equal opportunity employers. All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of the individual’s actual or perceived disability, protected veteran status, race, color, creed, religion, sex, age, national origin, gender, gender identity, gender expression, genetic information, marital status, sexual orientation, citizenship, domestic violence victim status, or any other actual or perceived status protected by law.

Technical Difficulty Statement:

For technical issues, please contact us at [email protected]

Mission Statement:

Consolidated Edison Company of New York, Inc. (Con Edison), Orange & Rockland Utilities (O&R), and Consolidated Edison Transmission (CET) employees are required to follow health, safety, and environmental policies, EEO, Standards of Business Conduct, and all other applicable company policy and procedures. We all share a responsibility to advance the company’s mission by excelling at our three corporate priorities – safety of our people and the public, operational excellence in all that we do, and ensuring the best possible customer experience.

Benefits:

We are dedicated to supporting the physical, mental, and financial health of our employees and their families. This commitment extends beyond the workplace to foster personal growth and holistic wellbeing. Our life-changing rewards package includes:

• Rich medical & pharmacy benefits, including vision benefits
• Dental benefits
• Health Savings Accounts
• Health Care and Dependent Care Flexible Spending Accounts
• 401(k) with robust matching
• Employer paid Pension Plan
• Employee Stock Purchase Plan with a generous matching contribution
• State of the art Employee Assistance Program
• Paid Parental Leave
• Generous paid time off plus paid holidays
• Family support: emergency backup child, & elder care assistance
• Social responsibility and volunteer opportunities
• Employee discount program
• Commuter Benefits
• Culture of growth and learning: career development; tuition reimbursement; recognition program
• Life and Long-Term Disability Benefits

*Please be aware that some benefits may not apply to provisional or part-time job titles.