Want a clean-powered planet?

Join our team and be part of the solution!

Clean Power Jobs

Cyber Security Analyst

WHO ARE WE?

Looking for a job that makes a real difference in our world today and one that you’ll be proud of when you look back in 20, 30 or 40 years? This is it. Clean Power Research® is advancing the energy transformation through cloud software that informs, streamlines and values energy-related decisions and processes for utilities, energy professionals and consumers.

We’re a growing company that counts 10 of the top 10 Fortune 500 utilities and many of the largest renewable energy companies in the U.S. as our customers. We’re focused on expanding our market reach and impact with new software technologies that help solve the energy industry’s hardest problems.

At Clean Power Research, every employee has a seat at the table and an important role.

WHY WORK HERE?

  • Go from building solutions to being part of  the  solution
  • Join a growing team of software and energy veterans from companies like Microsoft, Amazon, Google, Oracle, General Electric, Consolidated Edison and Pacific Gas & Electric
  • Bring your passion and ideas to the table
  • Use your creativity to solve hard problems and make tough decisions
  • Work in a start-up like environment coupled with the stability and customer base of an established, profitable company
  • Realize work-life balance; we like to see our families, friends and pets at night!
  • Join a growing company that expects you to grow with us and invests in your growth

Clean Power Research offers competitive compensation and benefits to full-time employees including medical/dental/vision, paid vacation, paid holidays, a bonus plan and 401(k) plan with matching.

WHAT YOU’LL BE DOING AS A SECURITY ENGINEER

Clean Power Research is adding a Security Engineer to our team to continue our focus and efforts on the security and compliance of our cloud-based solutions. The security of our products is of the utmost importance to us and to our customers, who are securing the electric grid and its energy resources against a range of attackers and exploits. This is an important and highly visible role at Clean Power Research.

Clean Power Research is best known for building and operating adaptable, efficient, and innovative cloud software products which help companies successfully navigate the energy transformation. For more than 20 years, our customers have depended on us to inform, streamline, and quantify energy-related decisions and processes.

This is a position that requires an interdisciplinary approach as you’ll be collaborating closely with other roles, helping plan, design, test and validate security solutions across our products’ lifecycles. Candidates for this role should have an analytical mindset, be detail oriented and have a solid understanding of cyber security of cloud software solutions as well as relevant methodologies. Ideal candidates have an excellent understanding of technology infrastructure such as different networking components and highly scalable cloud-based architectures.

You will be working closely with IT and the development teams being involved in architecture and design reviews, establish security best practices, and elevate the security and resilience of our products.

DUTIES & RESPONSIBILITIES

  • Coordinate with third parties conducting SOC 2 audits or performing penetration testing of our products
  • Conduct periodic security reviews, vulnerability scans, and internal security and compliance audits
  • Coordinate testing of business continuity plan, disaster recovery plan, incident response plan, etc.
  • Review, create and maintain operational documents, security processes and other security related technical documentation
  • Identify and mitigate habits, practices or design practices that increase susceptibility to social engineering attacks
  • Ensure continual development and improvement of cyber security policies, standards, procedures, best practices, and guidelines
  • Monitor and drive compliance of our solutions including SOC 2 controls, CCPA, GDPR, etc.
    Drive and implement improvements to our real-time monitoring systems
  • Research and recommend services and products to improve the different security aspects of our products and environments
  • Work closely with software engineers to review and test changes to our products for security vulnerabilities
  • Drive security awareness training across the company and specific in-depth security training for software engineers
  • Provide security expertise and guidance to the engineering and IT teams, including the identification and socialization of engineering best practices and design patterns that reduce or eliminate threat vectors
  • Respond to customer security questionnaires and RFCs and interact with customers via online meetings and phone conferences, as necessary
  • Proactively investigate security alerts and document results
  • Respond to security incidents, helping with forensic investigations, remediation, and documentation
  • Work with IT to configure and tune IT security systems and cloud environments to improve effectiveness of alerting and protection of our networks and systems
  • Stay current with cybersecurity trends and news including cyber threat intelligence reports and help us continually develop companywide best practices to ensure our systems are protected

WHO YOU ARE

  • 3+ years of professional information security hands-on experience with cloud-based solutions, preferably in AWS
  • Deep understanding of common web application vulnerabilities including but not limited to the OWASP Top 10
  • Strong understanding of security threats, tactics, mitigations and remediations
  • Solid knowledge of IT and cloud-based infrastructure
  • Solid understanding of web services, network, and web related protocols
  • Familiarity with the intricacies of web services integration across cloud environments and firewalls, including common certificate and other PKI-related issues
  • Experience with security monitoring and alerting solutions
  • Experience with highly scalable cloud-based solutions security and the tools/services to defend them
  • Proficient with scripting languages such as Python and PowerShell
  • Able to find vulnerabilities in source code written in C# by manual inspection
  • Effective communicator who can clearly articulate complex issues
  • BA/BS or MS degree in Computer Science or related technical discipline

HOW TO APPLY

Click the link below to submit your resume. Please include a cover letter detailing your interest in this position and the renewable energy space along with your resume.  Due to the large number of applicants for our positions, we regret that we can only respond to candidates who meet our requirements.

Clean Power Research is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status.

The company’s employment decisions are based on merit, competence, performance and business needs.

Apply