Share this Job

Senior Cybersecurity Analyst- Red Team

Apply now »

Date: Feb 3, 2023

Location(s): Juno Beach, FL, US, 33408

Company: NextEra Energy

Requisition ID:  68555 

Florida Power & Light Company is America’s largest electric company, providing clean, affordable, and reliable electricity to more than 12 million people in Florida. We operate one of the cleanest power generation fleets in the U.S. and our reliability is among the best in the nation. Our goal is to achieve Real Zero carbon emissions from our operations by 2045 by expanding our solar capacity, increasing battery storage and bringing new renewable energy opportunities to Florida, while improving customer affordability and reliability. Are you interested in becoming a game-changer in the energy industry?  Join our world-class team today! 


Position Specific Description

This position resides in the Threat Defense Services team in Cybersecurity & Technology Risk. This team is responsible for proactive identification of cyber threats and risk posed to Company operations and technology. The Offensive Security Analyst will conduct threat analysis and emulation, provide assessments of vulnerabilities, discover network anomalies, and uncover policy violations. The role integrates intelligence on adversary TTP’s and targets to prioritize offensive operations. The Offensive Security Analyst provides findings from offensive security engagements to the required business units to convey the exploitability of a given network or device. Analyst will work closely with the Vulnerability Management team to contextualize the actual risk of vulnerabilities and applicable severity to the business. They will also work closely with the incident response team in a purple team effort to ensure sufficient monitoring is in place. The Analyst will perform targeted red team engagements against Nextera Energy systems on a cadenced or ad-hoc basis. Candidates prepare and present analysis, in the form of briefings and/or reports, that provide contextual information to managers and/or executives as required. They will be expected to travel 10% of the time, qualify for and maintain NERC CIP access. 


This role is responsible for designing and driving offensive operations against a multitude of computer network systems. There is a focus on adversary emulation and integration of intelligence reports to select and test targets. The Offensive Security Analyst also develops and collaborates with stakeholders to implement counter measures to their findings from an operation. The role also entails working with non-standard networks and hardware. 


  • Conducts offensive operations against a variety of networks and targets ranging from traditional networks to Individual devices
  • Performs red team engagements to strengthen enterprise risk posture 
  • Integrates provided intelligence to emulate adversaries in target selection and exploitation 
  • Collaborates with the Vulnerability Management team to contextualize risk to the business, helping drive remediation effort prioritization 
  • Performs Purple team engagements to strengthen defensive expertise and monitoring capabilities 
  • Provides guidance and expertise to appropriate business units and stakeholders as it relates to remediation efforts 
  • Uses OSINT and other vendor tools to identify any external asset’s exposure to potential threat actors 
  • Collaborates with Threat Hunting Team to detect evidence of possible other exploitation following red team operations 
  • Drives automation of repeatable processes to reduce waste 

Highly Preferred Qualifications:


  • Experience in investigative processes and/or data analytics 
  • Experience in offensive security operations following frameworks such as PTES (Penetration Testing Execution Standard)or OWASP Web Security Testing Guide 
  • Experience with Python, PowerShell, and Bash scripting 
  • Experience with and/or strong understanding of cloud environments such as AWS and other aaS structures 

Preferred Qualifications: 


  • True passion and curiosity when it comes to tactics and techniques of cyber threat actors and how it relates to the corporate environment 
  • Ideal candidate is driven to continuously learn to hone their skills and expertise 
  • The ability to learn about and understand new and potentially complex networks that exist in SCADA enviroments 
  • GPEN, GWAPT, GXPN, GCLD, OSCP or other applicable certifications are a plus

Job Overview

This job performs ongoing cybersecurity risk reviews for new and existing technologies and services and supports ongoing and new cybersecurity projects.  Individuals develop requirements for and implement technical security projects and tools, as well as define the company’s cybersecurity policies and control framework.  This position collaborates with the company’s IT department and business units to identify the need for, select, and deploy technical controls to meet specific security requirements. Employees in this role build processes and standards to ensure security requirements continue to be met.

Job Duties & Responsibilities

  • Administers, operates and monitors NextEra Energy (NEE) information security sensors, logging, alerting and other detection mechanisms to identify and respond to threats
  • Acts as subject matter expert for one or multiple assigned cybersecurity technology stacks (e.g., identity and access management, network intrusion detection and prevention, host based security tools)
  • Collaborates with security architecture to identify, evaluate and recommend new security technologies for suitability within NEE’s environment and security posture
  • Communicates ongoing cybersecurity activities, priorities and risk measurements or mitigations at multiple organizational levels
  • Provides guidance for security activities and requirements in the system development life cycle (SDLC) and application development efforts. Participates in organizational projects, as required
  • Performs other job-related duties as assigned

Required Qualifications

  • High School Grad / GED
  • Bachelor's or Equivalent Experience
  • Experience: 4+ years

Preferred Qualifications

  • Certified Information Systems Aud (CISA) certification


Employee Group:  Exempt
Employee Type:  Full Time
Job Category:  Information Technology
Organization:  Florida Power & Light Company 
Relocation Provided:  Yes, if applicable


Where permitted by applicable law, NextEra Energy requires all employees and new hires to be fully vaccinated for COVID-19 or be willing to receive the COVID-19 vaccination on or before the first day of employment.


NextEra Energy is an Equal Opportunity Employer. Qualified applicants are considered for employment without regard to race, color, age, national origin, religion, marital status, sex, sexual orientation, gender identity, gender expression, genetics, disability, protected veteran status or any other basis prohibited by law. We are committed to a diverse and inclusive workplace.


NextEra Energy provides reasonable accommodation in its application and selection process for qualified individuals, including accommodations related to compliance with conditional job offer requirements, consistent with federal, state, and local laws. Supporting medical or religious documentation will be required where applicable and permitted by applicable law. To request a reasonable accommodation, please send an e-mail to, providing your name, telephone number and the best time for us to reach you. Alternatively, you may call 1-844-694-4748. Please do not use this line to inquire about your application status.


NextEra Energy will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information.


NextEra Energy does not accept any unsolicited resumes or referrals from any third-party recruiting firms or agencies. Please see our policy for more information.


Nearest Major Market: Palm Beach
Nearest Secondary Market: Miami