Miami, FL, US
19 hours ago
Cybersecurity Analyst

Requisition ID:  84646 

Florida Power & Light Company is the largest electric utility in the U.S., delivering clean, affordable, and dependable electricity to over 12 million Floridians. With one of the nation’s cleanest power generation fleets and top-tier reliability, we are setting new standards in the energy industry. Ready to make an impact? Join our exceptional team today and help shape the future of energy!

 

Position Specific Description

NextEra Energy is seeking a motivated and detail-oriented Cybersecurity Analyst to join our Vulnerability Management team. The ideal candidate will have a basic to medium level of experience in cybersecurity with a strong emphasis on vulnerability management. This role will require familiarity with industry best practices and standards, a process-oriented mindset, and excellent analytical skills.

 

Key Responsibilities:

Perform vulnerability assessments and manage the lifecycle of vulnerabilities using Tenable Nessus or Tenable.sc. Interpret scan results and collaborate with cross-functional teams to develop and implement remediation strategies. Conduct risk assessments to identify and manage cybersecurity risks. Utilize advanced Excel functions to manage, analyze, and visualize large datasets for tracking and reporting vulnerabilities. Follow and improve established processes to ensure consistent and repeatable results. Stay updated with industry best practices, frameworks (e.g., NIST, CIS Controls), and emerging cybersecurity threats.


Cybersecurity Knowledge:

Basic understanding of cybersecurity concepts such as risk assessment, threat modeling, and vulnerability management. Strong understanding of the correlation between risk, vulnerability, and exposure. Ability to interpret vulnerability scan results and collaborate with teams for remediation. Experience configuring and performing vulnerability scans In a corporate landscape Understanding of risk reduction strategies Understanding of change control and ITIL methodologies Understanding of mitigation strategies. Understanding of TCP/IP and Networking concepts Awareness of industry best practices and frameworks (e.g., NIST, CIS Controls). Strong technical skills and the ability to explain technical issues to non-technical audiences.

Strong Excel Knowledge:

Proficiency in advanced Excel functions (e.g., VLOOKUP, pivot tables, conditional formatting, and macros). Ability to manage, analyze, and visualize large datasets for reporting and tracking vulnerabilities.

Process-Oriented Mindset:

Strong organizational skills with attention to detail. Ability to follow, document, and improve processes for consistent and repeatable results.

Additional Skills:

Strong communication and collaboration skills for working with cross-functional teams. Problem-solving skills and the ability to adapt to a fast-paced environment. Detail-oriented and self-motivated with a willingness to learn and grow in the cybersecurity field.

 

Strong Candidates Will Have:


PowerBi Experience

Ability to write and understand DAX queries. Develop interactive dashboards and visualizations in Power BI to present insights to stakeholders (preferred).

Tenable/Vulnerability Scanner Exposure:

Familiarity with Tenable Nessus or Tenable.sc for vulnerability scanning and management.

NERC CIP Experience:

Familiarity with NERC CIP standards and compliance requirements. Understanding of the role of vulnerability management within the NERC CIP framework. Experience with documenting and reporting compliance-related activities.

Other

Red/Purple Team experience Certifications: GSEC, Security+, TCSE, GCIH, etc.

Job Overview

This job performs ongoing cybersecurity risk reviews for new and existing technologies and services and supports ongoing and new cybersecurity projects.  Individuals develop requirements for and implement technical security projects and tools, as well as define the company’s cybersecurity policies and control framework.  This position collaborates with the company’s IT department and business units to identify the need for, select, and deploy technical controls to meet specific security requirements. Employees in this role build processes and standards to ensure security requirements continue to be met.

Job Duties & Responsibilities Administers, operates and monitors NextEra Energy (NEE) information security sensors, logging, alerting and other detection mechanisms to identify and respond to threats Develops a subject matter expertise for one or multiple assigned cybersecurity technology stacks (e.g., identity and access management, network intrusion detection and prevention, host based security tools) Collaborates with security architecture to identify, evaluate and recommend new security technologies for suitability within NEE’s environment and security posture Communicates ongoing cybersecurity activities, priorities and risk measurements or mitigations at multiple organizational levels Provides guidance for security activities and requirements in the system development life cycle (SDLC) and application development efforts. Participates in organizational projects, as required Performs other job-related duties as assigned Required Qualifications High School Grad / GED Bachelor's or Equivalent Experience Experience: 2+ years Preferred Qualifications Certified Information Systems Aud (CISA) certification

 

NextEra Energy offers a wide range of benefits to support our employees and their eligible family members. Click here to learn more.

 

Employee Group:  Exempt
Employee Type:  Full Time
Job Category:  Information Technology
Organization:  Florida Power & Light Company 
Relocation Provided:  Yes, if applicable

 

NextEra Energy is an Equal Opportunity Employer. Qualified applicants are considered for employment without regard to race, color, age, national origin, religion, marital status, sex, sexual orientation, gender identity, gender expression, genetics, disability, protected veteran status or any other basis prohibited by law. We are committed to a diverse and inclusive workplace.

 

NextEra Energy provides reasonable accommodation in its application and selection process for qualified individuals, including accommodations related to compliance with conditional job offer requirements, consistent with federal, state, and local laws. Supporting medical or religious documentation will be required where applicable and permitted by applicable law. To request a reasonable accommodation, please send an e-mail to recruiting-coordinator.sharedmailbox@nexteraenergy.com, providing your name, telephone number and the best time for us to reach you. Alternatively, you may call 1-844-694-4748. Please do not use this line to inquire about your application status.

 

NextEra Energy will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information.

 

NextEra Energy does not accept any unsolicited resumes or referrals from any third-party recruiting firms or agencies. Please see our policy for more information.

#LI-JN2 

Confirm your E-mail: Send Email