2022 Exelon Hiring Update
Our hiring process looks a bit different today as a result of the COVID-19 pandemic, with 100 percent virtual interviewing and other solutions in place to facilitate proper social distancing, we remain focused on powering possibilities for new talent who are ready to join us in making a difference. Those who apply for employment with Exelon must be fully vaccinated against COVID-19 as a condition of hire (i.e., have received two doses of a two-dose vaccine, or one dose of a single-dose vaccine), subject to approved requests for exemption.

Exelon was recently separated into two publicly traded companies, Exelon and Constellation. Exelon is the parent company for our fully regulated transmission and distribution utilities, delivering electricity and natural gas to more than 10 million customers. Constellation is the largest supplier of clean energy and sustainable solutions to homes, businesses and public-sector customers across the continental U.S., backed by more than 31,000 megawatts of generating capacity consisting of nuclear, wind, solar, natural gas and hydro assets. If you are looking for career opportunities in commercial, generation or home services, please visit jobs.constellationenergy.com for more information.

Sr Insider Threat Analyst

This job posting is no longer active.

Location: , Hybrid Remote, United States
Organization: Exelon Business Servcs Co, LLC
Job ID: 241067
Date Posted: Aug 7, 2022
Job: Security

Share: mail

Job Description


Be a part of something powerful at America's premier energy provider!

At Exelon, we are united by our values and shared vision for a cleaner and brighter future. We encourage curiosity, value diverse perspectives and we never stop looking for ways to be, work and do better. We know the future is in our hands. That's why we're looking for people like you, who have the power to make a difference.

As the nation's largest utility company, we serve more than 10 million customers through six fully regulated transmission and distribution utilities: Atlantic City Electric (ACE), Baltimore Gas and Electric (BGE), Commonwealth Edison (ComEd), Delmarva Power & Light (DPL), PECO Energy Company (PECO), and Potomac Electric Power Company (Pepco). All 18,000 of us are committed to delivering safe, reliable and affordable energy to our customers, strengthening our communities, supporting a clean energy future and reducing our impact on the changing climate.

Our people are the heart and soul of our business. Whether it's powering lives, supporting communities or collaborating with colleagues, an Exelon employee is talented, compassionate, forward-thinking and inspired. We are empowered to evolve and advance our careers in an open and inclusive environment. We pride ourselves on being the kind of place where people want to come and stay. We know that investing in our employees' futures strengthens ours, which is why we offer competitive compensation, incentives and health and retirement benefits.


The Sr. Insider Threat Analyst is a member of the Insider Threat Team with primary responsibility for mitigating, identifying, and responding to insider threat security events. The Insider Threat team is responsible for preventing, detecting, and responding to data exfiltration, workplace violence, systems sabotage, misuse of corporate assets, and other threats. Lead and conduct complex and technical data analysis; develop and tune rules, policies, and alerts for DLP and UEBA applications; develop strategies to deter, detect, and respond to insider threats; and collaborate with security operation centers, digital forensics, and physical security teams.


  • Identify and Respond to Insider Threat Security Events
    • Respond, analyze, and triage alerts from DLP, UEBA and other monitoring tools
    • Characterize and analyze information from enterprise cyber security tools identify anomalous activity and potential threats
    • Coordinate with enterprise-wide cyber defense staff to validate network alerts
    • Analyze security incidents for trends and patterns to uncover anomalies, identify gaps, and propose risk mitigation solutions
    • Manage incident response and investigative leads, including notification and escalation. Coordinate with physical security, legal, and HR teams as required. (50%)
  • Develop Insider Threat Use Cases and Tune DLP and UEBA rules and policies
    • Develop distinct insider threat use cases; identify tools, policies, and rules to monitor for the use case; tune policies and rules to meet use case requirements
    • Based on analysis of alerts, modify rules and policies to increase accuracy and reduce false positives
    • Identify and integrate new data sources to identify insider threat activity (35%)
  • Perform security reviews, cyber defense trend analysis and open-source research.
    • Identify vulnerabilities in security architecture or controls; and recommended changes to resolve or mitigate risk of these vulnerabilities
    • Analyze insider events to identify patterns and develop mitigation strategies
    • Conduct open-source research about industry trends and developments in protecting company assets and countering Insider Threats
    • Prepare timely written reports which summarize significant industry insider events to draw lessons which can be incorporated into the Insider Threat Program (5%)
  • Assist in the development of policy, processes, procedures an associated metrics (3%)
  • Produce and deliver insider threat awareness briefings, debriefings, and training activities. (2%)


Develop and implement innovative solutions to improve the detection, correlation, and analysis of insider risk indicators to protect Exelon's physical assets, electronic assets and personnel. Responsible for enhancing existing technical capabilities to identify and mitigate technical pathways for data exfiltrating and the potential sabotage of Exelon's assets.


  • Bachelor's Degree in Computer Science, Cybersecurity, or related 4-year technical degree with 5 to 8 years of experience in IT or cybersecurity, or equivalent combination of education and work experience
  • Skill in collecting data from a variety of cyber defense resources and ability to interpret information collected to recognize threats
  • Knowledge of DLP, UEBA, and logging applications; and skill tuning policies within these tools
  • Knowledge of incident response and handling methodologies.
  • Knowledge of computer networking concepts and protocols, and network security methodologies.
  • Knowledge of host/network access control mechanisms
  • Knowledge of operating systems
  • Knowledge of scripting languages
  • Knowledge of cyber-attack stages and techniques used by malicious insiders
  • Knowledge of security controls frameworks and ability to assess organizational security posture against these frameworks
  • Skill in conducting trend analysis

  • 5+ years of direct insider threat analysis experience
  • CISSP, SANS GIAC, or other relevant certification
  • Demonstrated skill in modifying and developing UEBA rules through advanced editors and scripting languages
  • Knowledge of Insider Threat investigations, reporting, investigative tools and laws/regulations
  • In depth knowledge of NIST SP 800-53 Cybersecurity Framework
  • Prior experience at an electrical utility and with NERC CIP compliance
  • Strong verbal and written communication skills. Ability to effectively convey complex technical information to both technical and non-technical audiences including investigators, senior management, team members and others

Share: mail

Similar Jobs

Sr Cyber Sec Vul Assess Anlst

Hybrid Remote, United States
Exelon Business Servcs Co, LLC

Supv, Cyber Defense Security Ops Center - Sat/Sun 8PM - 8AM, Mon/Tues Midnight - 8AM

Hybrid Remote, United States
Exelon Business Servcs Co, LLC

Frequent Job Searches

Recently Viewed Jobs

Most Recent Job Searches

Relevant Jobs

Personalize this site