Pacific Gas & Electric
Department Overview
The Cybersecurity function is led by PG&E’s Senior VP and Chief Information Officer and is responsible for cybersecurity and risk management across the organization.
The Security Intelligence and Operations Center (SIOC) is responsible for ensuring that PG&E proactively identifies and assesses threats to its user and operational network and data, monitors its network for malicious activity, investigates intrusions and other relevant events, and has a sophisticated and detailed understanding of the evolving threat landscape.
Position Summary The ideal candidate for this position will be knowledgeable regarding cyber security standards and technologies, specifically focused on infrastructure within cloud environments. This position will provide the opportunity to work in an environment with a focus on threat identification, incident response, and cyber threat intelligence fusion. Candidate will be a part of a highly collaborative, dynamic, responsive, and agile team providing incident response and cyber defense services to on‑prem and cloud infrastructure. Additionally, this position will help organize and plan cyber incident response exercises and workshops, collaborate and build relationships with different functional areas of the business, and write after‑action reports.
This role is primarily responsible for system‑based defense to support forensic analysis of compromised devices, endpoint log analysis, development, delivery, and enforcement of response and remediation activities across the organization. Candidate will also be responsible for developing advanced mitigations to ensure defensive resiliency. Daily activities will include collection and analysis of potentially compromised systems, malware analysis, root cause analysis, and remediation efforts. In this role, the candidate will work cross‑functionally in a diverse teaming environment with various internal points of contacts and handoffs.
The role is hybrid and is expected to be in‑person at least three days per week in the SIOC in Concord, CA.
PG&E is providing the salary range that can reasonably be expected for this position at the time of the posting. This salary range is specific to the locality of the job. The actual salary paid to an individual will be based on multiple factors, including but not limited to internal equity, specific skills, education, licenses or certifications, experience, market value, and geographic location. This job is also eligible to participate in PG&E’s discretionary incentive compensation programs.
Pay range: $122,000.00 – $173,800.00
Job Responsibilities
Maintain knowledge of adversary activities, including intrusion tactics, attack techniques, and operational procedures.
Investigate and respond to escalated potential cybersecurity incidents.
Perform forensic analysis of potential evidence.
Analyze potentially malicious files.
Analyze security event logs from a variety of sources.
Perform network packet capture analysis.
Lead incident response efforts, coordinating resources as needed.
Work alongside other cyber teams to recommend and facilitate security control improvements and refine security operations workflows.
Plan and organize incident response exercises and workshops.
Document after‑action reports, including summaries for executive review.
Provide guidance to junior analysts.
Share on‑call responsibility outside of business hours, onsite and remote.
Qualifications Minimum:
High School or GED – General Educational Development (GED) Diploma.
4 years of experience in IT security, including working in Security Operations Centers.
Desired:
Bachelor’s Degree in Computer Science or a related discipline, or equivalent experience.
Previous experience supporting cyber defense analysis of cloud networks in AWS, Azure, or Google Cloud Platform.
Formal IT Security/Network Certification, such as WCNA, CompTIA Security+, Cisco CCNA, SANS GCIH, GMON, GCFA, GCFE, GREM, GICSP, GCFR, GCTD, or other relevant certifications.
Utility Industry experience.
Previous experience working with various SIEM technologies.
Experience with scripting in Python/PowerShell.
Malware reverse engineering skills.
Purpose, Virtues and Stands Our
Purpose
explains “why” we exist:
Delivering for our hometowns
Serving our planet
Leading with love
Our
Virtues
capture “who” we need to be:
Trustworthy
Empathetic
Curious
Tenacious
Nimble
Owners
Our
Stands
are “what” we will achieve together:
Everyone and everything is always safe
Catastrophic wildfires shall stop
It is enjoyable to work with and for PG&E
Clean and resilient energy for all
Our work shall create prosperity for all customers and investors
More About Our Company EEO EEO Pacific Gas and Electric Company is an Equal Employment Opportunity employer that actively pursues and hires a workforce that reflects the hometowns we serve. All qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, sex, age, religion, physical or mental disability status, medical condition, protected veteran status, marital status, pregnancy, sexual orientation, gender, gender identity, gender expression, genetic information, or any other factor that is not related to the job.
Employee Privacy Notice Employee Privacy Notice: The California Consumer Privacy Act (CCPA) goes into effect on January 1, 2020. CCPA grants new and far‑reaching privacy rights to all California residents. The law also entitles job applicants, employees and non‑employee workers to be notified of what personal information PG&E collects and for what purpose. The Employee Privacy Notice can be accessed through the following link:
Employee Privacy Notice
PG&E will consider qualified applicants with arrest and conviction records for employment in a manner consistent with all state and local laws.
#J-18808-Ljbffr
The Security Intelligence and Operations Center (SIOC) is responsible for ensuring that PG&E proactively identifies and assesses threats to its user and operational network and data, monitors its network for malicious activity, investigates intrusions and other relevant events, and has a sophisticated and detailed understanding of the evolving threat landscape.
Position Summary The ideal candidate for this position will be knowledgeable regarding cyber security standards and technologies, specifically focused on infrastructure within cloud environments. This position will provide the opportunity to work in an environment with a focus on threat identification, incident response, and cyber threat intelligence fusion. Candidate will be a part of a highly collaborative, dynamic, responsive, and agile team providing incident response and cyber defense services to on‑prem and cloud infrastructure. Additionally, this position will help organize and plan cyber incident response exercises and workshops, collaborate and build relationships with different functional areas of the business, and write after‑action reports.
This role is primarily responsible for system‑based defense to support forensic analysis of compromised devices, endpoint log analysis, development, delivery, and enforcement of response and remediation activities across the organization. Candidate will also be responsible for developing advanced mitigations to ensure defensive resiliency. Daily activities will include collection and analysis of potentially compromised systems, malware analysis, root cause analysis, and remediation efforts. In this role, the candidate will work cross‑functionally in a diverse teaming environment with various internal points of contacts and handoffs.
The role is hybrid and is expected to be in‑person at least three days per week in the SIOC in Concord, CA.
PG&E is providing the salary range that can reasonably be expected for this position at the time of the posting. This salary range is specific to the locality of the job. The actual salary paid to an individual will be based on multiple factors, including but not limited to internal equity, specific skills, education, licenses or certifications, experience, market value, and geographic location. This job is also eligible to participate in PG&E’s discretionary incentive compensation programs.
Pay range: $122,000.00 – $173,800.00
Job Responsibilities
Maintain knowledge of adversary activities, including intrusion tactics, attack techniques, and operational procedures.
Investigate and respond to escalated potential cybersecurity incidents.
Perform forensic analysis of potential evidence.
Analyze potentially malicious files.
Analyze security event logs from a variety of sources.
Perform network packet capture analysis.
Lead incident response efforts, coordinating resources as needed.
Work alongside other cyber teams to recommend and facilitate security control improvements and refine security operations workflows.
Plan and organize incident response exercises and workshops.
Document after‑action reports, including summaries for executive review.
Provide guidance to junior analysts.
Share on‑call responsibility outside of business hours, onsite and remote.
Qualifications Minimum:
High School or GED – General Educational Development (GED) Diploma.
4 years of experience in IT security, including working in Security Operations Centers.
Desired:
Bachelor’s Degree in Computer Science or a related discipline, or equivalent experience.
Previous experience supporting cyber defense analysis of cloud networks in AWS, Azure, or Google Cloud Platform.
Formal IT Security/Network Certification, such as WCNA, CompTIA Security+, Cisco CCNA, SANS GCIH, GMON, GCFA, GCFE, GREM, GICSP, GCFR, GCTD, or other relevant certifications.
Utility Industry experience.
Previous experience working with various SIEM technologies.
Experience with scripting in Python/PowerShell.
Malware reverse engineering skills.
Purpose, Virtues and Stands Our
Purpose
explains “why” we exist:
Delivering for our hometowns
Serving our planet
Leading with love
Our
Virtues
capture “who” we need to be:
Trustworthy
Empathetic
Curious
Tenacious
Nimble
Owners
Our
Stands
are “what” we will achieve together:
Everyone and everything is always safe
Catastrophic wildfires shall stop
It is enjoyable to work with and for PG&E
Clean and resilient energy for all
Our work shall create prosperity for all customers and investors
More About Our Company EEO EEO Pacific Gas and Electric Company is an Equal Employment Opportunity employer that actively pursues and hires a workforce that reflects the hometowns we serve. All qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, sex, age, religion, physical or mental disability status, medical condition, protected veteran status, marital status, pregnancy, sexual orientation, gender, gender identity, gender expression, genetic information, or any other factor that is not related to the job.
Employee Privacy Notice Employee Privacy Notice: The California Consumer Privacy Act (CCPA) goes into effect on January 1, 2020. CCPA grants new and far‑reaching privacy rights to all California residents. The law also entitles job applicants, employees and non‑employee workers to be notified of what personal information PG&E collects and for what purpose. The Employee Privacy Notice can be accessed through the following link:
Employee Privacy Notice
PG&E will consider qualified applicants with arrest and conviction records for employment in a manner consistent with all state and local laws.
#J-18808-Ljbffr