Cybersecurity Analyst (II or III)
Public Utility District No. 1 of Chelan County, Wenatchee, WA, United States
APPLICATION MATERIALS
Applicants are required to submit a combined cover letter and resume in one PDF document. Your cover letter must summarize your education and experience as it relates to the Cybersecurity Analyst II or III role. Incomplete materials will not be considered.
To expedite the application process, combine your cover letter and resume into one PDF document before applying and upload electronically when requested in the online application process.
This position is OPEN UNTIL FILLED and applicants are encouraged to apply immediately. The first review date for application materials is scheduled for April 8.
IMPORTANT NOTE:
Chelan PUD does not sponsor work visas such as H-1B, E-3, F-1, OPT, student visas, TN, or any other visas. Candidates and employees must be eligible to work in the United States without visa sponsorship.
Interested parties are also invited to contact Human Resources at joblist@chelanpud.org to discuss the position.
SALARY RANGE Cybersecurity Analyst II: The starting salary range for this position is $89,200 - $111,500 (based on qualifications). With tenure and strong performance in this role an employee may earn up to a maximum of $133,800 annualized.
Cybersecurity Analyst III: The starting salary range for this position is $103,600 - $129,500 (based on qualifications). With tenure and strong performance in this role an employee may earn up to a maximum of $155,400 annualized.
Introductory Period:
New employees holding regular positions must complete an introductory period of twelve months.
BENEFITS EPOA In addition to competitive wages Chelan PUD employees also enjoy outstanding benefits which include zero cost employer funded medical, dental, and vision healthcare benefits, access to the employee assistance program, and a VEBA health reimbursement account.
Washington state retirement PERS participation and optional 457 plan participation with an employer matching 401(a) plan.
Leave, life & disability benefits including paid leave starting at 21 days per calendar year up to 35 with tenure, 12 paid holidays per calendar year, paid jury duty, short‑term disability & long‑term disability, and basic life, AD&D, and optional voluntary life.
The work life benefits include optional flexible spending accounts for healthcare and dependent care, educational assistance, various rewards and recognition programs and position specific stipends.
For more explanation of the district benefits please visit www.mychelanpudbenefits.org.
JOB POSTING This position will be filled at the Cybersecurity Analyst II or III level, contingent upon the experience of the selected applicant.
Cybersecurity Analyst II Overview The Cybersecurity Analyst II continuously monitors systems and environments—including on‑premises, cloud, and endpoints—evaluates threats, responds to events, and detects potential breaches. They implement and maintain cybersecurity solutions, perform security analysis and audits, and support the identification and remediation of vulnerabilities. The role also includes staying current on developments in the cybersecurity threat landscape, contributing to secure configuration efforts, and collaborating with cybersecurity team members and other IT staff to reduce cybersecurity risk to the District.
Responsibilities
Cybersecurity Analysis, Detection and Response: Continuously monitor network, endpoint, and cloud environments for anomalies, intrusions, breaches, and illegal or suspicious activities. Use tools such as SIEM, EDR, NAC, IDPS, and advanced AI‑enhanced detection and automation tools to support effective analysis. Investigate potential violations of security procedures and document findings. Participate in incident response efforts, identify indicators of compromise, follow documented procedures, and elevate to senior team members as needed. Analyze third‑party threat intelligence from vendors and official sources such as CISA. Use endpoint tools to verify compliance with cybersecurity baselines, standards, and policies. Provide input on technology initiatives by evaluating routine risks and recommending standard security practices under guidance of senior staff.
Cybersecurity Vulnerability and Threat Mitigation: Perform regular vulnerability assessments and security analysis of technology systems and endpoints. Conduct risk assessments in alignment with established team guidelines, recommend standard mitigations based on risk level, prepare and communicate reports with identified risks and remediation status. Apply security patches promptly while minimizing impact to business. Perform routine audits of access controls and sensitive data management to enforce least privilege and proper classification. Verify compliance and timely remediation of deviations.
IT Security System and Program Administration: Perform configuration changes to cybersecurity systems—such as firewalls and email gateways—using established guidelines. Address cases escalated from the Service Desk, including security events, authentication, access, email filtering, and connectivity. Collaborate with higher‑level analysts, engineers, or architects on complex issues. Administer IAM systems, authentication services, and certificate management. Document procedures in line with standards. Support user awareness program by facilitating training, sharing information, and conducting phishing assessments.
Maintain regular attendance; perform duties, comply with District policies, complete required training, and maintain safety procedures in accordance with RCW and WAC.
As a secondary function, drive a motorized vehicle while conducting business on behalf of the District.
Overtime exemption Exempt
Qualifications Education
Bachelor’s Degree (B.S., B.A.) in Computer Science or related field is required.
Equivalent experience (year for year) may substitute for required education.
Experience
2+ years of experience performing cybersecurity analysis in an enterprise environment or related area is required.
District IT or utility operational industry experience is desired.
Licenses and Certifications
Industry‑recognized cybersecurity certifications—such as GCED, CISSP, CEH, GSEC, or other similar certifications—are preferred.
Skills and Abilities
Technical knowledge of computer hardware, networks, security, and support.
Knowledge of networking—including wired and wireless, routing and switching, DNS, NTP, SMTP, SNMP.
Knowledge of IT infrastructure technologies, including SANs, VMWare, Citrix, and load balancers.
Knowledge of operating systems—Windows (workstation and server) and Linux.
Knowledge of enterprise firewalls and email gateway systems.
Advanced knowledge of system analysis, customer needs assessment, and documentation standards.
Knowledge of business software applications used at the District and other utilities.
Knowledge of District software and process design standards.
Knowledge of enterprise security monitoring systems.
Knowledge of threat hunting and incident response.
Ability to communicate clearly, both orally and in writing.
Active learning, listening, analytical, problem‑solving, critical thinking, and time management.
Ability to document work, troubleshoot, train, mentor, and maintain network infrastructure.
Must be proficient in reading, writing, and speaking English.
Cybersecurity Analyst III Overview The Cybersecurity Analyst III continuously monitors enterprise systems—including on‑premises, cloud, and endpoints—to evaluate threats, respond to events, and detect potential breaches. They implement and support enterprise cybersecurity solutions, stay current on developments in the threat landscape, audit controls, identify vulnerabilities, and prioritize patching. They contribute to secure design, configuration, and automation of systems; provide guidance to junior analysts; and collaborate with other teams to promote best practices.
Responsibilities
Cybersecurity Analysis, Detection and Response: Continuously monitor and investigate anomalies across enterprise systems and environments. Lead initial handling of events and incidents, identify indicators of compromise, collaborate with engineers or architects, and share findings internally and externally. Prepare incident response and root‑cause analysis reports, recommend detection logic enhancements, improve automation, and investigate violations of security procedures. Use EDR and related tools to assess compliance. Serve as partner on cross‑functional initiatives.
Cybersecurity Vulnerability and Threat Mitigation: Oversee security patching, prioritize risk‐based remediation, perform regular assessments, create reports, coordinate patch tracking, and conduct audits of access controls and data management. Contribute to development of secure configuration baselines.
IT Security System and Program Administration: Collaborate with engineers or architects on configuration guidelines for systems; perform changes; audit privileges; respond to escalated issues; mentor analysts; maintain IAM processes; document procedures; administer user awareness program; update the Team SharePoint site.
Knowledge Sharing and Mentoring: Provide technical expertise, mentor lower‑level analysts, assist onboarding, and share best practices with other teams.
Maintain regular attendance; comply with District policies, training, safety procedures, RCW and WAC.
As a secondary function, drive a motorized vehicle while conducting business on behalf of the District.
Overtime exemption Exempt
Qualifications Education
Bachelor’s Degree (B.S., B.A.) in Computer Science or related field is required.
Equivalent experience (year for year) may substitute for required education.
Experience
5+ years of experience performing cybersecurity analysis in an enterprise environment or related area is required.
District IT or utility operational industry experience is desired.
Licenses and Certifications
Preferred certifications—CISSP, CEH, CCSP, GSEC, or other related certifications.
Skills and Abilities
Technical knowledge of computer hardware, networks, security, and support.
Knowledge of networking—including wired and wireless, routing and switching, DNS, NTP, SMTP, SNMP.
Knowledge of IT infrastructure technologies—SANs, VMWare, Citrix, load balancers.
Knowledge of operating systems—Windows (workstation and server) and Linux.
Knowledge of enterprise firewalls, email gateway systems, and security monitoring systems.
In‑depth knowledge of major software applications used at the District or other utility providers.
Well‑developed knowledge of vulnerability and patch management, threat hunting, and incident response.
Ability to communicate logically and clearly; active learning, listening, analytical, problem‑solving, critical thinking, time management, mentorship, and training.
Must be proficient in reading, writing, and speaking English.
BACKGROUND SCREENING Pursuant to the NERC standards, Chelan County Public Utility District #1 conducts background screening of personnel who have access to the District’s critical physical and/or cyber assets.
DISCLAIMER The statements contained herein reflect general details as necessary to describe the principal functions for this job, the level of knowledge and skill typically required, and the scope of responsibility. This should not be considered an all‑inclusive listing of work requirements. Individuals may perform other duties as assigned, including work in other functional areas to cover absences or relief, to equalize peak work periods or otherwise to balance the workload.
As part of its recruiting process, Chelan PUD may engage a third‑party vendor to perform previous employment verification, education verification, and reference checking.
EEO Chelan PUD is an Equal Employment Opportunity employer.
We value diversity at all levels of the organization. All qualified applicants will receive consideration for employment without regard to any protected classifications as defined by law.
EEO Law Posters can be found on the main Careers page in English and Spanish.
Chefnan PUD will not be offering any work visa sponsorship for this role.
Pay Transparency Nondiscrimination Provision
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information. 41 CFR 60‑I.35(c)
#J-18808-Ljbffr
To expedite the application process, combine your cover letter and resume into one PDF document before applying and upload electronically when requested in the online application process.
This position is OPEN UNTIL FILLED and applicants are encouraged to apply immediately. The first review date for application materials is scheduled for April 8.
IMPORTANT NOTE:
Chelan PUD does not sponsor work visas such as H-1B, E-3, F-1, OPT, student visas, TN, or any other visas. Candidates and employees must be eligible to work in the United States without visa sponsorship.
Interested parties are also invited to contact Human Resources at joblist@chelanpud.org to discuss the position.
SALARY RANGE Cybersecurity Analyst II: The starting salary range for this position is $89,200 - $111,500 (based on qualifications). With tenure and strong performance in this role an employee may earn up to a maximum of $133,800 annualized.
Cybersecurity Analyst III: The starting salary range for this position is $103,600 - $129,500 (based on qualifications). With tenure and strong performance in this role an employee may earn up to a maximum of $155,400 annualized.
Introductory Period:
New employees holding regular positions must complete an introductory period of twelve months.
BENEFITS EPOA In addition to competitive wages Chelan PUD employees also enjoy outstanding benefits which include zero cost employer funded medical, dental, and vision healthcare benefits, access to the employee assistance program, and a VEBA health reimbursement account.
Washington state retirement PERS participation and optional 457 plan participation with an employer matching 401(a) plan.
Leave, life & disability benefits including paid leave starting at 21 days per calendar year up to 35 with tenure, 12 paid holidays per calendar year, paid jury duty, short‑term disability & long‑term disability, and basic life, AD&D, and optional voluntary life.
The work life benefits include optional flexible spending accounts for healthcare and dependent care, educational assistance, various rewards and recognition programs and position specific stipends.
For more explanation of the district benefits please visit www.mychelanpudbenefits.org.
JOB POSTING This position will be filled at the Cybersecurity Analyst II or III level, contingent upon the experience of the selected applicant.
Cybersecurity Analyst II Overview The Cybersecurity Analyst II continuously monitors systems and environments—including on‑premises, cloud, and endpoints—evaluates threats, responds to events, and detects potential breaches. They implement and maintain cybersecurity solutions, perform security analysis and audits, and support the identification and remediation of vulnerabilities. The role also includes staying current on developments in the cybersecurity threat landscape, contributing to secure configuration efforts, and collaborating with cybersecurity team members and other IT staff to reduce cybersecurity risk to the District.
Responsibilities
Cybersecurity Analysis, Detection and Response: Continuously monitor network, endpoint, and cloud environments for anomalies, intrusions, breaches, and illegal or suspicious activities. Use tools such as SIEM, EDR, NAC, IDPS, and advanced AI‑enhanced detection and automation tools to support effective analysis. Investigate potential violations of security procedures and document findings. Participate in incident response efforts, identify indicators of compromise, follow documented procedures, and elevate to senior team members as needed. Analyze third‑party threat intelligence from vendors and official sources such as CISA. Use endpoint tools to verify compliance with cybersecurity baselines, standards, and policies. Provide input on technology initiatives by evaluating routine risks and recommending standard security practices under guidance of senior staff.
Cybersecurity Vulnerability and Threat Mitigation: Perform regular vulnerability assessments and security analysis of technology systems and endpoints. Conduct risk assessments in alignment with established team guidelines, recommend standard mitigations based on risk level, prepare and communicate reports with identified risks and remediation status. Apply security patches promptly while minimizing impact to business. Perform routine audits of access controls and sensitive data management to enforce least privilege and proper classification. Verify compliance and timely remediation of deviations.
IT Security System and Program Administration: Perform configuration changes to cybersecurity systems—such as firewalls and email gateways—using established guidelines. Address cases escalated from the Service Desk, including security events, authentication, access, email filtering, and connectivity. Collaborate with higher‑level analysts, engineers, or architects on complex issues. Administer IAM systems, authentication services, and certificate management. Document procedures in line with standards. Support user awareness program by facilitating training, sharing information, and conducting phishing assessments.
Maintain regular attendance; perform duties, comply with District policies, complete required training, and maintain safety procedures in accordance with RCW and WAC.
As a secondary function, drive a motorized vehicle while conducting business on behalf of the District.
Overtime exemption Exempt
Qualifications Education
Bachelor’s Degree (B.S., B.A.) in Computer Science or related field is required.
Equivalent experience (year for year) may substitute for required education.
Experience
2+ years of experience performing cybersecurity analysis in an enterprise environment or related area is required.
District IT or utility operational industry experience is desired.
Licenses and Certifications
Industry‑recognized cybersecurity certifications—such as GCED, CISSP, CEH, GSEC, or other similar certifications—are preferred.
Skills and Abilities
Technical knowledge of computer hardware, networks, security, and support.
Knowledge of networking—including wired and wireless, routing and switching, DNS, NTP, SMTP, SNMP.
Knowledge of IT infrastructure technologies, including SANs, VMWare, Citrix, and load balancers.
Knowledge of operating systems—Windows (workstation and server) and Linux.
Knowledge of enterprise firewalls and email gateway systems.
Advanced knowledge of system analysis, customer needs assessment, and documentation standards.
Knowledge of business software applications used at the District and other utilities.
Knowledge of District software and process design standards.
Knowledge of enterprise security monitoring systems.
Knowledge of threat hunting and incident response.
Ability to communicate clearly, both orally and in writing.
Active learning, listening, analytical, problem‑solving, critical thinking, and time management.
Ability to document work, troubleshoot, train, mentor, and maintain network infrastructure.
Must be proficient in reading, writing, and speaking English.
Cybersecurity Analyst III Overview The Cybersecurity Analyst III continuously monitors enterprise systems—including on‑premises, cloud, and endpoints—to evaluate threats, respond to events, and detect potential breaches. They implement and support enterprise cybersecurity solutions, stay current on developments in the threat landscape, audit controls, identify vulnerabilities, and prioritize patching. They contribute to secure design, configuration, and automation of systems; provide guidance to junior analysts; and collaborate with other teams to promote best practices.
Responsibilities
Cybersecurity Analysis, Detection and Response: Continuously monitor and investigate anomalies across enterprise systems and environments. Lead initial handling of events and incidents, identify indicators of compromise, collaborate with engineers or architects, and share findings internally and externally. Prepare incident response and root‑cause analysis reports, recommend detection logic enhancements, improve automation, and investigate violations of security procedures. Use EDR and related tools to assess compliance. Serve as partner on cross‑functional initiatives.
Cybersecurity Vulnerability and Threat Mitigation: Oversee security patching, prioritize risk‐based remediation, perform regular assessments, create reports, coordinate patch tracking, and conduct audits of access controls and data management. Contribute to development of secure configuration baselines.
IT Security System and Program Administration: Collaborate with engineers or architects on configuration guidelines for systems; perform changes; audit privileges; respond to escalated issues; mentor analysts; maintain IAM processes; document procedures; administer user awareness program; update the Team SharePoint site.
Knowledge Sharing and Mentoring: Provide technical expertise, mentor lower‑level analysts, assist onboarding, and share best practices with other teams.
Maintain regular attendance; comply with District policies, training, safety procedures, RCW and WAC.
As a secondary function, drive a motorized vehicle while conducting business on behalf of the District.
Overtime exemption Exempt
Qualifications Education
Bachelor’s Degree (B.S., B.A.) in Computer Science or related field is required.
Equivalent experience (year for year) may substitute for required education.
Experience
5+ years of experience performing cybersecurity analysis in an enterprise environment or related area is required.
District IT or utility operational industry experience is desired.
Licenses and Certifications
Preferred certifications—CISSP, CEH, CCSP, GSEC, or other related certifications.
Skills and Abilities
Technical knowledge of computer hardware, networks, security, and support.
Knowledge of networking—including wired and wireless, routing and switching, DNS, NTP, SMTP, SNMP.
Knowledge of IT infrastructure technologies—SANs, VMWare, Citrix, load balancers.
Knowledge of operating systems—Windows (workstation and server) and Linux.
Knowledge of enterprise firewalls, email gateway systems, and security monitoring systems.
In‑depth knowledge of major software applications used at the District or other utility providers.
Well‑developed knowledge of vulnerability and patch management, threat hunting, and incident response.
Ability to communicate logically and clearly; active learning, listening, analytical, problem‑solving, critical thinking, time management, mentorship, and training.
Must be proficient in reading, writing, and speaking English.
BACKGROUND SCREENING Pursuant to the NERC standards, Chelan County Public Utility District #1 conducts background screening of personnel who have access to the District’s critical physical and/or cyber assets.
DISCLAIMER The statements contained herein reflect general details as necessary to describe the principal functions for this job, the level of knowledge and skill typically required, and the scope of responsibility. This should not be considered an all‑inclusive listing of work requirements. Individuals may perform other duties as assigned, including work in other functional areas to cover absences or relief, to equalize peak work periods or otherwise to balance the workload.
As part of its recruiting process, Chelan PUD may engage a third‑party vendor to perform previous employment verification, education verification, and reference checking.
EEO Chelan PUD is an Equal Employment Opportunity employer.
We value diversity at all levels of the organization. All qualified applicants will receive consideration for employment without regard to any protected classifications as defined by law.
EEO Law Posters can be found on the main Careers page in English and Spanish.
Chefnan PUD will not be offering any work visa sponsorship for this role.
Pay Transparency Nondiscrimination Provision
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information. 41 CFR 60‑I.35(c)
#J-18808-Ljbffr