Tennessee Valley Authority Cybersecurity Analyst II - 512302 in CHATTANOOGA, Tennessee
Cybersecurity Analyst II - 512302
Job ID:512302Location:CHATTANOOGA, TNRegular/Temporary:Regular
Analyst, Cybersecurity II - 512302
Organization: Technology & Innovation
Department: TVA Cybersecurity Operations
Location: Chattanooga, Knoxville, Nashville, or Memphis, TN or Huntsville, AL
Relocation Offered: No, relocation assistance will not be offered.
Posting Open: 11/22/2021
Posting Closing: at 12/22/21 11:59pm EST
In compliance with federal vaccination requirements, TVA employees must be fully vaccinated against COVID-19 no later than November 22, 2021. Offers of employment for this position are contingent upon receipt of acceptable documentation proving that the candidate is fully vaccinated against COVID-19 prior to their established start date, unless the applicant has requested and been granted an accommodation for disability or religious reasons.
This Senior Analyst ensures the confidentiality, integrity, and availability of TVA systems, networks, and data through the planning, analysis, development, implementation, maintenance and enhancement of cybersecurity programs, policies, and procedures. Promotes awareness of security issues throughout the agency and ensures that users are aware of, understand and adhere to security policies and procedures. Ensures IT security compliance with federal guidelines and standards. Develops, implements and safeguards TVA cybersecurity practices.
Supervisory Responsibility— None
Budget Responsibility— None
Researches, analyzes and translates Federal laws, regulations and security industry best practices and determines applicability and impact to TVA incorporating into agency governance in easily understood presentation.
Develops and manages policies and procedures at the corporate and organizational level ensuring agency cyber security reliability and accessibility to prevent and defend against unauthorized access to systems, networks, and data.
Facilitates and manages agency-wide security programs designed to protect the confidentiality, integrity and availability of cyber assets and data.
Ensures the effectiveness of the Enterprise Cybersecurity training program through appropriate planning, implementation, and evaluation.
Plans and manages agency-wide cybersecurity projects utilizing innovative concepts and approaches where precedents do not exist, ensuring project resources, cost and schedule are appropriately managed.
Conducts and manages systems security evaluations and reviews including development of systems security plans, implementation and maintenance of risk assessments, management of the security authorization of systems, and development and maintenance of security categorizations.
Coordinates, prepares and manages formal responses to cybersecurity inquires from internal and external authorities such as the Office of Inspector General (OIG) and General Accounting Office (GAO).
Prepares agency reports for internal and external audiences including audiences at a federal level.
Communicates directly, independently and with appropriate authority with program management on cyber security issues.
Represents Enterprise Information Security and Policy on agency-wide projects and provides support to various committees (which often include officers of the agency) that have been established to resolve key cybersecurity issues and federal regulations or recommended guidance [Federal Information Security Act of 2002 (FISMA), National Institute of Standards (NIST), etc.]
Responds to incident investigations, performs triage activities, and utilizes structured methodologies to prevent, detect respond to threats.
Supports control and vulnerability assessments to identify weaknesses and assess the effectiveness of existing controls, and recommends remedial action
Develops security processes, work instructions and incident action plans to ensure that security controls are managed and maintained.
Recommends security configuration and operations standards for security systems and applications, including policy assessment and compliance tools, network security appliances, and host-based security systems.
Works with business units to develop incident action plans, alerting and workflow processes to prevent, detect and respond to threats.
Support 24x7x365 cybersecurity monitoring and incident response activities, on-call rotations, travel, and 1st, 2nd, and 3rd shift as needed.
Education– Bachelor’s degree in computer science, cybersecurity, engineering or a related field or equivalent experience
Experience - Three or more years experience in operational security, governance or information system auditing.
Certification/License, etc— None required; CISSP, COMPTIA Security +, preferred
Knowledge/Skills/Abilities— Intermediate information security understanding. Broad knowledge of business functions and related security needs. Demonstrated competencies in analysis. teamwork, customer service, planning/organization, flexibility, stress tolerance and communication. Must be self-motivated and capable of performing most assignments with limited supervision. Must have the ability to manage multiple activities simultaneously. Excellent ability to research, evaluate and make recommendations as to policy applicability. Must possess knowledge and understanding of organizations, policies and operations of TVA. Must have ability to work harmoniously with peers, customers, executives, and other agencies and/or utilities. Must demonstrate tact and effective judgment dealing with confidential/sensitive material and possess the necessary interpersonal skills and excellent communication skills to be able to communicate effectively with all levels of TVA management, vendors, and other senior level professionals.
Equal Employment Opportunity
TVA values and embraces diversity. We encourage all individuals to apply regardless of race, color, national origin, ethnicity, gender, sex, abilities/disabilities, sexual orientation, religion, veteran status and age. We strive to be inclusive of all the people we serve across the Valley.
TVA is an Equal Opportunity employer and complies with all applicable laws and regulations regarding equal employment opportunities. Any applicant or employee who believes s/he has a discrimination claim (including harassment or retaliation) must contact TVA’s Equal Opportunity Compliance office within 45 calendar days of the event or action s/he believes to constitute discrimination, harassment, or retaliation.
All TVA Non-Nuclear employees are covered by TVA's Federal Drug-Free Workplace Program Plan, in accordance with Executive Order 12564, Public Law 100-71 and the Mandatory Guidelines for Federal Workplace Drug Testing. Information regarding the Drug Free Workplace Program can be found at www.samhsa.gov/workplace . TVA Non-Nuclear employees in Testing Designated Positions, including those performing safety-sensitive duties are also subject to random drug testing. TVA Nuclear employees are subject to random alcohol and drug tests in accordance with 10 CFR Part 26 as mandated by the Nuclear Regulatory Commission (NRC).
How to Claim Vet Preference
If you are a U.S. Military Veteran and would like to be considered a preference-eligible veteran for the purposes of your employment application to TVA, please take the necessary actions outlined in the application process. Please submit your military documents each time you apply for a position.
How to Submit Documentation:
1) Upload documents after you complete the application by clicking Careers Home, Cover Letters and Attachments, and Add Attachment, or
2) Email documents to [email protected]