Job Specifications
SOLV Energy is a leading provider of infrastructure services to the power industry, designing, building and maintaining utility scale solar, battery storage and high voltage substation projects nationwide.
Job Description Summary:
The primary responsibility of this role is to monitor, triage, analyze, and investigate security alerts and identified vulnerabilities across the organization's technology environment. This includes validating alerts, conducting log and endpoint analysis, performing threat hunting activities, supporting digital forensics investigations, and leveraging data analytics to identify patterns of malicious activity.
In addition to operational response duties, this position is responsible for continuously improving security monitoring and detection capabilities, identifying and closing visibility gaps, strengthening defensive controls, and proactively protecting company systems and data from emerging cyber threats.
This role is fully remote. Specific location details and expectations will be discussed during the interview process.
Job Description:
This job description reflects management's assignment of essential functions; it does not prescribe or restrict the tasks that may be assigned
Position Responsibilities And Duties
Evaluate, document, and respond to recommendations or alerts from internal security tools and Managed Security Services Provider
Monitor and analyze security logs and alerts to proactively detect, respond, and assist other IT team members with potential security incidents
Conduct regular security assessments and audits to identify vulnerabilities and recommend/take action on appropriate remediation measures
Collaborate with cross-functional teams to develop and implement comprehensive cybersecurity strategies, policies, and procedures
Act as part of the SecOps team and ensure continuous compliance with all security requirements
Proactively identify gaps or conflicts in existing processes and help develop and suggest solutions
Provide guidance and recommendations on the secure deployment of new technologies and systems within the organization
Assist with other security aspects, including vendor security assessments and audit needs
Assist with the education and training of process/control owners to better understand technology control frameworks and their responsibilities
Generate regular reports and technical documentation for the SecOps team
Support the full incident response lifecycle: identification, containment, eradication, recovery, and lessons learned
Review detections for tuning opportunities, with an understanding of how they align to the MITRE ATT&CK framework
Contribute to the development and maintenance of incident response plans and business continuity strategies
Participate in an on-call rotation for security incident response
Minimum Skills or Experience Requirements:
Bachelor's degree in Information Technology, Information Security, Cybersecurity or related field and/or equivalent experience
3+ years of progressively more responsibility in directly related work
Two or more years of experience in utilizing enterprise security solutions including but not limited to SIEM, security detection and response tools, and endpoint security products (Defender, Crowdstrike)
Excellent knowledge of Microsoft 365 Defender including incident response, threat hunting and vulnerability management
Basic scripting experience (PowerShell, Python, KQL)
Experience with email security solutions (Defender, Abnormal, ProofPoint)
Experience in developing and updating Incident Response plans and runbooks
Familiarity with common network, system and web application attacks and mitigations
Familiarity with cloud security concepts (Azure preferred)
Knowledge of Information Security standards and access controls such as ISO 27001/2, PCI DSS, and other international standards
Ability to work effectively in a team environment and in cross-functional teams
Ability to effectively document investigations, procedures, and technical findings
Excellent verbal and written communication skills
Demonstrates initiative, professionalism, and a collaborative mindset
Entrepreneurial spirit
Preferred Qualifications:
Possess one or more of the following certifications (or industry equivalents): Security+, GCIH, CEH, GCED, GCFA, Microsoft SC-200 (or industry equivalents)
Experience with Al, automation and SOAR platforms
Participation in security incident simulations or red/blue team exercises
Familiarity with OT Security as it relates to the energy industry
SOLV Energy Is an Equal Opportunity Employer
At SOLV Energy we celebrate the power of our differences. We are committed to building diverse, equitable, and inclusive workplaces that improve our communities. SOLV Energy prohibits discrimination and harassment of any kind against an employee or applicant based on race, color, age, religion, sex, sexual orientation, gender identity or expression, marital status, national origin, or ethnicity
About the Company
SOLV Energy is a renewable energy solutions provider for utility solar, energy storage, and high voltage projects in North America. Our passionate teams work seamlessly to drive innovation and deliver performance from build to operations, with safety at the forefront of everything we do. We are here for the long haul, developing lasting relationships with our customers, investing in our communities, and offering opportunities for our employees to build meaningful careers in better energy.
Know more