Cybersecurity Engineer (m/f/d)

Fluence (Nasdaq: FLNC) is a global market leader delivering intelligent energy storage and optimization software for renewables and storage. Our solutions and operational services are helping to create a more resilient grid and unlock the full potential of renewable portfolios. With gigawatts of successful implementations across nearly 50 markets, we are transforming the way we power our world for a more sustainable future. For more information, please visitfluenceenergy.com.

OUR CULTURE AND VALUES

We are guided by our passion to transform the way we power our world. Achieving our goals requires creativity, diversity of ideas and backgrounds, and building trust to effect change and move with speed.

We are Leading

Fluence currently has thousands of MW of energy storage projects operated or awarded worldwide in addition to the thousands of MW of projects managed by our trading platform—and we are growing every day.

We are Responsible

Fluence is defined by its unwavering commitment to safety, quality, and integrity.

We are Agile

We achieve our goals and meet our customer’s needs by cultivating curiosity, adaptability, and self-reflection in our teams.

We are Fun

We value the diversity in thought and experience of our coworkers and customers. Through honest, forthcoming, and respectful communications we work to ensure that Fluence is an inclusive and welcoming environment for all.

Position Overview:

The Cybersecurity Engineer will perform as a member of a dynamic product team ensuring the security of Fluence products. The Cybersecurity engineer must have an analytical mind and a basic understanding of secure design, defense in depth strategies, operations, & security best practices. The Cybersecurity engineer is expected to have the ability to learn quickly and apply internal processes and procedures to execute on assigned projects.

Key Responsibilities Include:

1. Participating in an agile team and tracking day to day activities in Jira.
2. Evaluating and implementing new and state-of-the-art technology to address challenging customer problems. Participate in network and security design review.
3. Ensuring network security and communicating security vulnerabilities of all severities to affected stakeholders within the product organization.
4. Planning, implementing, managing, monitoring, and upgrading security measures for the protection of the organization's data, systems, and networks.
5. Troubleshooting and debugging production environments and providing support to a global organization.
6. Identifying opportunities to improve workflow and creating/maintaining supporting documentation.

What will our ideal candidate bring to Fluence?

1. New or recent graduate from an accredited institution, university or college.
2. The preferred candidate will have a background B.S. degree in Information Technology, Information Security, Cybersecurity, Networking, Computer Science, or related technical field.
3. Understanding of OSI layer and TCP/IP models, defense in depth strategies, and applying secure design principles in securing applications, networks, servers and cloud environments.
4. Ability to collaborate in a team environment and adhere to internal processes and procedures to execute assigned tasks and achieve targets and goals.
5. SDLC Security Integration: Collaborate with cross-functional teams to integrate security measures and best practices into the Software Development Life Cycle (SDLC).
6. Product Security Assurance: Support comprehensive security assessments and audits, vulnerability assessment, risk assessments to identify and prioritize potential security risks, testing, and code reviews for software components utilized in Fluence Industrial Control Systems. Identify potential vulnerabilities and design flaws and provide recommendations for remediation and mitigation.
7. Secure Code Development: Assist software development teams in adopting secure coding practices, including adherence to coding standards and best practices.
8. Threat Modeling: Support threat modeling exercises to identify potential attack vectors and security weaknesses in software components. Work proactively to address these threats during the development process.
9. Incident Response: Collaborate with the Incident Response team to investigate and respond to any security incidents related to ICS software components and assist with incident analysis and recovery efforts.
10. Security Awareness Training: Participate in training sessions to raise awareness among OT and development teams about potential cyber threats and best practices in ICS security.
11. Regulatory Compliance: Stay updated on relevant industry regulations and standards (e.g., NERC CIP, IEC 62443) to ensure compliance and alignment with best practices.
12. Security Documentation: Support the creation and maintenance of technical documentation related to security assessments, vulnerability findings, and recommended remediation measures.
13. Continuous Improvement: Actively participate in the continuous improvement of security processes, methodologies, and tools used in the OT cyber security program.

Fast learner, excellent communication, time management, analytical and interpersonal skills.

Fluence IS AN EQUAL OPPORTUNITY EMPLOYER and fully subscribes to the principles of Equal Employment Opportunity to ensure that all applicants and employees are considered for hire, promotion, and job status without regard to race, color, religion, sex, national origin, age, disability, veteran status, sexual orientation, marital or familial status.