Overall Purpose:

The Cybersecurity Operations (“CyberOps”) team is responsible for ensuring that Duquesne Light systems and networks are secure.  This is done through the deployment of security solutions, executing system and application hardening, vulnerability assessments, and diligent monitoring of networks and systems for signs of infection, compromise, and misconfiguration.   Additional responsibilities include ensuring that network and system designs are done in a way to minimize risk while allowing for necessary functionality, and Incident Response to any security breaches.  This group is also accountable for communicating information security risks to management and implementing plans to mitigate or resolve identified risks.

Job Responsibilities:

  • Work with the IT Department in the maturation, implementation, and configuration of endpoint security controls including but not limited to antivirus, whitelisting, patch management and encryption technologies.
  • Effectively and efficiently manage security event monitoring, tuning, and incident response.
  • Responsible for ongoing security engineering support, maintenance, and availability of security toolsets based on business requirements and adherence to tight operational, security, and procedural models.
  • Extensive knowledge of threats, risk analysis, and the development of security systems and protocols.
  • Develop and help IT implement network security controls.
  • Responsible for ensuring adequate and timely resolutions to all assigned issues relating to critical infrastructure security.
  • Ensure optimal configuration standards are met on existing infrastructure
  • Monitor daily for cybersecurity events on DLC's network, and report findings to the Cybersecurity Operations Supervisor.
  • Review endpoints to confirm compliance with endpoint security policies, procedures, and standards.
  • Performs forensic analysis of host-based systems.
  • Stay up to date on changes in threat landscape impacting Duquesne’s information security program
  • Research, investigate, communicate, and integrate actionable threat intelligence information in DLC Cyber Security Operations and IT systems.
  • Perform all other duties as assigned.



May coordinate the work flow of a given team.  May support the review of work and training of other employees.


Education/Experience Requirements:

Roles at this level require industry specific experience.  Roles at this level typically require a university / college degree. With <  7+ years of relevant experience.  Certifications are often required.



  • Previous utility experience in transmission and distribution operations, or other industries utilizing SCADA systems
  • Experience with the NERC CIP compliance framework and/or other regulatory frameworks governing Cybersecurity Operations
  • Experience participating in security and regulatory audits, including evidence gathering and analysis
  • Experience utilizing security products including Tripwire Enterprise, McAfee ESM, Nessus, and Symantec Endpoint Protection
  • Experience with Systems Administration in server environments including Microsoft Windows and Linux Operating Systems
  • Information Security certifications including CISSP, SANS GIAC
  • Relevant work experience between 5 and 7 years



Primary Focus is on daily deliverables, outputs and reporting.  Typically accountable for managing one’s own time and work flow.  Responsibilities are generally tactical in nature and work is typically complex in nature requiring the incumbent to draw on previous knowledge to perform role. Has well established capabilities, acts as a resource to less experienced staff on routine issues.


Decision Impact:

Problems and issues faced are often undefined or vague.  Draws on significant past experience to perform role. Proficient in the body of knowledge of given discipline or specialty area. Accountable for direct level of reasoning and decision making.


Specialized Skills:

  • Strong interpersonal, communication and organizational skills with the ability to exhibit sound judgment and express verbal and written information effectively