Information Security Analyst

About Longroad Energy

Longroad Energy is a Boston, MA headquartered renewable energy developer focused on the development, ownership, and operation/asset management of wind and solar energy projects throughout North America. Founded in 2016, Longroad owns 3.5 GW of wind and solar projects across the United States in addition to operating and managing a total of 5.5 GW of wind and solar projects on behalf of Longroad and third parties. Our vision is to create lasting value for our shareholders, communities, and employees by responsibly developing, owning and operating renewable energy projects. We have assembled a world-class team with a passion for renewable energy innovation and a commitment to developing renewable projects throughout the US. 

Job Purpose

Reporting to the VP of IT & SCADA, the Information Security Analyst will oversee and safeguard critical infrastructure of Longroad, including monitoring, investigating, and responding to cyber incidents across the IT and OT environment. The ideal candidate will have experience with a variety of services, software and hardware, and will be pro-active in threat hunting. 

Responsibilities 

• Maintain optimal configuration for endpoint log collection into SIEM
• Partner with the IT infrastructure team to map and align change control process with known threats and active vulnerabilities
• Actively maintain SIEM alert queries based upon latest threat trends
• Maintain and update system baselines
• Ensure newly onboarded infrastructure is tested, monitored, and maintained for vulnerabilities, logging, and system hardening based upon existing baselines
• Manage and maintain enterprise asset visibility and risk mitigation platform
• Monitor vendor CVE’s on a regular basis and coordinate patch or configuration mitigation responses with the appropriate parties
• Perform cyber security training for all employees and contractors
• Assist in maintaining NERC CIP program
• Respond to cybersecurity incidents for ICS/OT/IT environments and provide recommendations to affected entities to prevent the reoccurrence of these incidents within a variety of critical infrastructure
• Apply specific functional knowledge to resolve cybersecurity incidents and perform proactive threat hunts
• Be involved with highly technical operations and forensic analysis and continuously advising key decision makers
• Follow procedures to respond to and escalate incidents
• Provide expertise to define procedures for response to cyber security incidents in the industrial control system environment
• Apply traditional incident response and threat hunting tradecraft to industrial control system/critical infrastructure environments-with a deep understanding of the nuance and constraints of industrial environments
• Maintain accurate records of incident response activities and findings
• Prepare and deliver incident reports to management and stakeholders
• Keep current with latest security trends and news to continually improve hunt and incident response operations
• Have a strong customer-service orientation with excellent written and oral communication skills
• The ability to self-teach and self-test new tools and methodologies, and to problem-solve independently

Minimum Qualifications

• Bachelor’s degree in Computer Science, MIS, or related field
• 5+ years of experience in a similar role
• CISSP and/or GICSP
• 2 years of Threat Hunting or Digital Forensics experience directly supporting Critical Infrastructure
• Scripting in Python, Bash, PowerShell, and/or JavaScript
• Experience using a SIEM tool for pattern identification, anomaly detection, and trend analysis
• Experience analyzing a variety of industrial control systems network protocols, including but not limited to: ModBus, ENIP/CIP, BACnet, DNP3, etc.
• Experience with the common open source and commercial tools used in security event analysis, incident response, computer forensics, malware analysis, or other areas of security operations
• Experience with collection and detection tools, including OSS/COTS host-based and network-based tools

Characteristics Necessary for Success  

• Strong customer support focused attitude and excellence communication skills 
• A collaborative style and a can-do attitude
• Comfortable with fast paced, rapidly changing environment
• Ability to make informed decisions quickly
• Passionate and enthusiastic about alternative energy
• Integrity and accountability

Other

Applicants must be currently authorized to work in the United States.  The Company does not sponsor applicants for work visas.

Benefits of Working at Longroad Energy We are dedicated to providing our employees with the support and resources they need to stay healthy, secure their future, and be successful in their careers. Benefits at Longroad include the opportunity for merit-based salary increases, incentive plan participation, eligibility for our 401(k) plan and matching, and comprehensive medical, dental, vision, life, and disability insurance. Our robust time-off policy includes accrual of 18 vacation days in your first year, paid holidays, and paid volunteer time. We offer paid parental leave to help support employees as they transition into parenthood. Learn more about our employee benefits.  
 

Diversity, Equity & Inclusion Diversity, equity, and inclusion matter - at Longroad, in our industry, in our communities, and in society at large. We embrace our responsibility to build and promote a diverse, equitable, and inclusive working experience and drive change where we live and operate. We work to actively promote and celebrate diversity, equity, and inclusion. We foster a supportive space that empowers everyone at Longroad to learn about, discuss and ask questions related to embracing and honoring identity. We collaborate with our community, colleagues, and industry in the ongoing pursuit of evolving and growing an inclusive and diverse environment. Learn more about our DEI commitment. 

Longroad Energy Values At Longroad, we SHINE. We aim to be the most trusted renewable energy company on the long road to a green future. We are an experienced team of problem solvers and promise-keepers who develop sustainable solutions that meet today’s challenges and make a lasting impact on people and our planet. Learn more about our SHINE values.
 

Longroad Energy is proud to be an Equal Opportunity Employer (“EOE”). Qualified applicants are considered for employment without regard to age, race, color, religion, sex, national origin, disability, veteran status, citizenship, or any other legally protected status. Longroad Energy prohibits discrimination against individuals with disabilities and will reasonably accommodate applicants with a disability, upon request, and will also ensure reasonable accommodations are made for disabled employees. Longroad Energy is firmly committed to ensuring equal employment opportunities in all employment practices and personnel actions, including advertising, recruitment, testing, screening, hiring, selection for training, upgrading, transfer, demotion, layoff, discipline, termination, rates of pay, and other forms of compensation.