Associate Operations Cybersecurity Analyst OR Operations Cybersecurity Analyst

Important Application Submission Information

In order to ensure your application is successfully received before the job posting expires, please submit your application by 11:59 PM on Thursday, May 28, 2026

More than a career - a chance to make a difference in people's lives.

Build an exciting, rewarding career with us - help us make a difference for millions of people every day. Consider joining the Duke Energy team, where you'll find a friendly work environment, opportunities for growth and development, recognition for your work, and competitive pay and benefits.

This is the third level of the Ops Cybersecurity Analyst classification hierarchy. Employees at this level solve more complex problems, in multiple areas of specialization, with general supervision. Incumbents are expected to develop advanced skills and the ability to work with greater independence. They effectively apply fundamental concepts and procedures to work that are complex and varied. This position is a member of the Duke Energy Nuclear Cyber Security fleet team and is physically located at McGuire Nuclear Station (MNS) in Huntersville, NC. Reporting to the fleet Cyber Security organization, this analyst serves as the primary cyber security resource supporting MNS while also contributing to fleet-wide initiatives across Duke Energy's nuclear generating stations (2 states, 6 sites) and Nuclear General Office (NGO).

This role comprises the responsibilities for cybersecurity governance, risk management, and operational technology support within Duke Energy's cybersecurity operational business units. Where applicable, the position will ensure compliance with various cybersecurity standards and requirements such as: IT503, IT505, CS 220, NERC CIP, NIST CSF, NIST 800, NARUC, TSA, and NRC 10 CFR 73.54. The analyst will lead the development, support, and ongoing strategy of their business unit's cybersecurity program, focusing on governance and oversight and/or support and performance tasks.

The Nuclear Cyber Security organization provides direct service and support to all nuclear generating stations to ensure compliance with the Nuclear Regulatory Commission (NRC) regulated Duke Energy Nuclear Cyber Security Plan and requirements. This includes response to cyber security threats and events, implementing the cyber security program, and ongoing management of the cyber security program. The cyber security program encompasses all infrastructure assets including, but not limited to, firewalls, data diodes, SIEM, industrial control systems (ICS), and other digital assets scoped into the program.

This position is responsible for the analysis and implementation of complex cyber security solutions that address real and potential threats specific to nuclear generation assets and equipment at MNS. The analyst will coordinate across the station and with NGO to ensure nuclear safety and power plant operations are maintained. Responsibilities include solving complex cyber security problems, participating in projects impacting cyber security, performing cyber security assessments, and hardening of critical digital assets (CDA).

This position also contributes to the ongoing development and revision of the Nuclear Cyber Security Program to maintain a strong security posture and improve operational efficiency. This includes revision of program policies and procedures, participation in industry working groups, and building positive relationships with internal and external organizations.

This position requires a solid understanding of integrated generating plant systems and the processes used to secure plant cyber assets. The analyst must demonstrate an understanding of the impact of cyber security processes on generating systems and the overall electric grid.

Basic/Required Qualifications

Graduation from a four-year college or university with a Bachelor of Science in Engineering or Computer Science or Cybersecurity, and minimum of 5 years of experience or 10 years of relevant experience in lieu of degree.

Preferred Qualifications

• Working knowledge of NERC CIP standards and NIST Cybersecurity Framework
• Working knowledge of power generation Distributive Control Systems (DCS)
• Working knowledge of protection and control equipment
• Working knowledge of SCADA and communication systems
• Working knowledge of network architecture and firewall security
• Ability to troubleshoot network communication equipment and systems
• Experience in cybersecurity risk identification, management, audit, and compliance
• Strong understanding of IT and OT Cybersecurity policies, standards, processes, and controls
• Excellent verbal and written communication skills
• Skilled principles of project management
• Experience in the utility industry
• Professional certification in cybersecurity or engineering

Working Conditions

• Office Environment
• Operation facilities (plants, switchyards, substations)

Specific Requirements

• Governance & Oversight travel (5-10%)
• Support & Performance travel (30-50%)

Travel Requirements

5-15%

Relocation Assistance Provided (as applicable)

No

Represented/Union Position

No

Visa Sponsored Position

No

Please note that in order to be considered for this position, you must possess all of the basic/required qualifications.

Privacy

Do Not Sell My Personal Information (CA)

Terms of Use

Accessibility