Company Summary Statement

As one of the largest investor-owned utility companies in the United States, PPL Corporation (NYSE: PPL), is committed to creating long-term, sustainable value for our 3.5 million customers, our shareowners and the communities we serve. Our high-performing regulated utilities — PPL Electric Utilities, Louisville Gas and Electric, Kentucky Utilities and Rhode Island Energy — provide an outstanding experience for our customers, consistently ranking among the best utilities in the nation. PPL’s companies are also addressing challenges head-on by investing in new infrastructure and technology that is creating a smarter, more reliable and resilient energy grid. We are committed to doing our part to advance a cleaner energy future and drive innovation that enables us to achieve net-zero carbon emissions by 2050 while maintaining energy reliability and affordability for the customers and communities we serve. PPL is a positive force in the cities and towns where we do business, providing support for programs and organizations that empower the success of future generations by helping to build and maintain strong, diverse communities today.

Overview

The Cybersecurity Systems Engineer is responsible for the health and effectiveness of the technology used for the cybersecurity operations of PPL. This role provides hands on support for the management and troubleshooting of any issues related to this technology and ensures the systems are scaled correctly to provide the optimum level of performance. Must have strategic thinking ability and seek out opportunities to innovate and automate our systems and processes and stay current on the cybersecurity technology trends that will benefit the overall team.

This position is available remote or hybrid with working locations in Louisville, KY; Allentown, PA ; Providence, RI.

Responsibilities

• Configure and troubleshoot security technology and systems including infrastructure related to the SIEM, endpoint protection, and data loss prevention.

• Design and implement security architecture and monitor the availability, serviceability, and recoverability of installed technology security systems.

• Manage the installation and integration of system patches, updates, and enhancements to existing security systems.

• Perform research and analysis on new and emerging technology to evaluate security detection, prevention, and response capabilities.

• Develop automation to expedite remediation and response activities to increase system efficiency and lower the human intervention time on tasks.

• Write comprehensive reports including assessment-based findings, outcomes and propositions for further system security enhancement.

• Implement and manage security technology within Office 365 applications such as Exchange Online, SharePoint Online, and OneDrive for Business. This includes configuring data loss prevention (DLP) policies, email encryption, and anti-phishing protections.

Qualifications

Education

Bachelor’s degree in related technical field

Experience

• At least 7 years’ experience in related technical discipline

• Understanding IT fundamentals, such as network protocols, traffic analysis, TCP/IP, firewall and endpoint logging, etc.

• Proven working experience in installing, configuring and troubleshooting UNIX /Linux based environments.

• Cloud experience, preferably Azure

• Administration of operating systems (Windows, *nix), their security mechanisms, and logging requirements

• Proficient in scripting languages (e.g., Powershell, shell scripts, Perl, Ruby, Python)

• Knowledge of database administration and support

• Experience with SIEMs, IDS/IPS, antivirus software, EDR platforms, etc.

• Knowledge in automation technologies and tools, such as SOAR platforms, Power Automate, etc.

• Capable of troubleshooting security issues, recommend solutions, and implement or foster implementation with necessary administrative groups.

• Strong verbal and written communication skills to articulate complex security issues to different stakeholders and provide updates to senior leadership.

• Ability to collaborate with cross-functional teams.

Preferred Qualifications

• Familiarity with cloud platforms (AWS, Azure, Google Cloud) and their security features

• Professional certifications in CISSP, GCIH, GCIA or relevant SANS GIAC certifications

Education

Bachelor’s degree in related technical field

Experience

• At least 7 years’ experience in related technical discipline

• Understanding IT fundamentals, such as network protocols, traffic analysis, TCP/IP, firewall and endpoint logging, etc.

• Proven working experience in installing, configuring and troubleshooting UNIX /Linux based environments.

• Cloud experience, preferably Azure

• Administration of operating systems (Windows, *nix), their security mechanisms, and logging requirements

• Proficient in scripting languages (e.g., Powershell, shell scripts, Perl, Ruby, Python)

• Knowledge of database administration and support

• Experience with SIEMs, IDS/IPS, antivirus software, EDR platforms, etc.

• Knowledge in automation technologies and tools, such as SOAR platforms, Power Automate, etc.

• Capable of troubleshooting security issues, recommend solutions, and implement or foster implementation with necessary administrative groups.

• Strong verbal and written communication skills to articulate complex security issues to different stakeholders and provide updates to senior leadership.

• Ability to collaborate with cross-functional teams.

Preferred Qualifications

• Familiarity with cloud platforms (AWS, Azure, Google Cloud) and their security features

• Professional certifications in CISSP, GCIH, GCIA or relevant SANS GIAC certifications

• Configure and troubleshoot security technology and systems including infrastructure related to the SIEM, endpoint protection, and data loss prevention.

• Design and implement security architecture and monitor the availability, serviceability, and recoverability of installed technology security systems.

• Manage the installation and integration of system patches, updates, and enhancements to existing security systems.

• Perform research and analysis on new and emerging technology to evaluate security detection, prevention, and response capabilities.

• Develop automation to expedite remediation and response activities to increase system efficiency and lower the human intervention time on tasks.

• Write comprehensive reports including assessment-based findings, outcomes and propositions for further system security enhancement.

• Implement and manage security technology within Office 365 applications such as Exchange Online, SharePoint Online, and OneDrive for Business. This includes configuring data loss prevention (DLP) policies, email encryption, and anti-phishing protections.

Remote Work

The company reserves the right to determine if this position will be assigned to work on-site, remotely, or a combination of both. Assigned work location may change. In the case of remote work, physical presence in the office/on-site may be required to engage in face-to-face interaction and coordination of work among direct reports and co-workers.

Equal Employment Opportunity

Our company is an equal opportunity, affirmative action employer dedicated to diversity and the strength it brings to the workplace. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, national origin, protected veteran status, sexual orientation, gender identify, genetic information, disability status, or any other protected characteristic.