Cybersecurity Analyst I

PROJECT DESCRIPTION/JOB SUMMARY

The Cybersecurity Ops Analyst will serve as a member of the SC&O Team - Security, Compliance, and Oversight in the Critical Infrastructure Operations (CIOPS) organization. The successful candidate will be focused on demonstrating operational compliance for the business areas (Transmission, Distribution, Natural Gas) CIOPS supports. This candidate will be hands on with our security tools (Tripwire Enterprise, Footprints, Splunk) actively working security compliance tickets, engaged with evidence requests, and assisting with completing mitigation milestones.

Major accountabilities are described below:
Responsibilities:
* NERC CIP Subject Matter Expert
* Perform Active Vulnerability Assessments and Initial Vulnerability Assessments
* Perform tickets: Daily Tripwire Enterprise Alerts, Patching SCTs (Security Controls Testing), CRQ SCTs, CRQ Review, Asset Change SCTs, and list Management
* Facilitate updates to list to validate authorized changes to maintain security baseline configurations
* Investigate and troubleshoot deviations from the list
* Participate on CIOPS Security, Compliance, and Oversight team in NERC CIP and TSA audits
* Performs or assists in the performance of technical project work as needed to complete project deliverables
* Assist with operational and tabletop exercises
* Work Potential Non Compliance (PNC) items / Possible Violation Self Report (PVSR)
* Provides good customer support to deliver compliance results to internal and external parties
* Monitor, respond to and resolve security related alerts associated with NERC CIP related assets and networks
* Create processes and workflows for CIOPS to demonstrate compliance to TSA standards
* Stay aware of and champion changes to current CIP/TSA standards as well as newly applicable CIP/TSA standards
* Utilize FootPrints ticketing system to document status updates and problem resolutions
* Determine security issues and gaps by using a risk-based approach
* Identify opportunities to improve workflow and security posture
* Able to apply process and controls knowledge to meet compliance requirements

Dexian is a leading provider of staffing, IT, and workforce solutions with over 12,000 employees and 70 locations worldwide. As one of the largest IT staffing companies and the 2nd largest minority-owned staffing company in the U.S., Dexian was formed in 2023 through the merger of DISYS and Signature Consultants. Combining the best elements of its core companies, Dexian's platform connects talent, technology, and organizations to produce game-changing results that help everyone achieve their ambitions and goals.

Dexian's brands include Dexian DISYS, Dexian Signature Consultants, Dexian Government Solutions, Dexian Talent Development and Dexian IT Solutions. Visit to learn more.

Dexian is an Equal Opportunity Employer that recruits and hires qualified candidates without regard to race, religion, sex, sexual orientation, gender identity, age, national origin, ancestry, citizenship, disability, or veteran status.