IT Senior Analyst, Cyber Defense and Response (Hybrid)

12/09/2025

Locations: East Berlin, Connecticut; Westwood, Massachusetts; Manchester, New Hampshire

Eversource will not offer immigration-related sponsorship for this position.  Applicants who require immigration sponsorship—either now or in the future—should not apply.  This includes, but is not limited to, direct company sponsorship, listing Eversource as the employer of record on immigration documents, or any work authorization that requires company involvement or documentation (e.g., H-1B, OPT, STEM OPT, CPT, TN, J-1, O-1, etc.).

Eversource supports work-life balance by offering hybrid schedules for certain roles. Eligibility is based on job responsibilities, operational needs, nature of work and team dynamics. Current guidelines require employees to work at least three days in the office, including Tuesdays and Wednesdays, with the third day set by the employee and supervisor based on department needs. These guidelines apply to roles approved for remote work and are subject to change, based on managerial discretion and work performance. All applicants must be able to work up to five days in the office if needed (for example: emergencies, training, or other business needs) or should the policy change.

Role and Scope of Position:
Works in the Eversource Security Operations Center (SOC) which is responsible for managing and protecting computer assets, networks and information systems. This position will act as a point of contact for proper handling of Information Security incidents and provide remediation actions as required. This position also monitors and audits information systems to confirm information security policy compliance and provides management with security policy compliance assessments and system monitoring reports. To accomplish these tasks must have an extensive understanding of digital investigations, and underlying principles of networking, infrastructure and system integration. In addition, provides technical expertise to key security tools and software. This includes requirements in the planning, coordination, programming, and implementation of releases, upgrades or changes to security system software and hardware.

Essential Functions: 

Under minimal direction and supervision:

• Performs Incident Response functions for the SOC team to ensure incidents are handled appropriately to minimize risk and impact to the company.
• Analyzes and processes case work relating to computer security vulnerabilities, phishing, malware, and forensic investigations
• Ability to anticipate and respond to changing priorities, and operate effectively in a dynamic demand-based environment, requiring extreme flexibility and responsiveness
• Leads security incidents to ensure timely mitigation and remediation efforts are completed
• Preserves, harvests, and processes electronic data according to company policies and regulatory requirements. Participates in forensic investigations as required, to include the collection, preservation of electronic evidence, analysis, and creation of a final report
• Produces high quality oral and written work, presenting complex technical matters clearly and concisely with audiences ranging from peers to Sr. Management
• Must be familiar with current and proposed laws, regulations, industry standards, and ethical requirements related to information security and privacy
• Recommends effective process changes to enhance defense and response procedures.
• Evaluates, tests and selects security tools, evaluation products and control products.
• Assists with annual SOX, CIP and SOC assessment and related remediation efforts.

Technical Knowledge/Skill/Education/Licenses/Certifications:

Technical Knowledge/Skill:

• Strong working knowledge of information systems security standards and practices

Education:

• Bachelor’s degree in Information Systems, related technical degree or equivalent experience                    

Experience: 

• Minimum of five (5) years of experience in the field of information security     
• Experience with twoor more of the following required:
  - Security Monitoring; database security, policies and procedures, active directory, cryptography/PKI, application security assessments, risk assessments, network security, security awareness or related information security subject area                      

Licenses & Certifications:

• Two or more SANS incident response or forensics security certifications strongly preferred – ex. GCIH, GCIA
• Current or former Top-Secret clearance strongly preferred

Working Conditions:

• Must be available to work emergency restoration assignment as required.
• Must be available to travel between MA/CT/NH as necessary.
• On-call and need to work off hours

#LI-KS1

#corpajd

Competencies:

Build trusting relationships

Manage and develop people

Foster teamwork and cross-functional collaboration

Lead change

Communicate strategic vision

Create an engaged workforce

Focus on the customer

Take ownership & accountability

Compensation and Benefits:

Eversource offers a competitive total rewards program.Check out our careers site for an overview of our benefits programs. Salary is commensurate with your experience. This position is eligible for a potential incentive.The annual salary range for this position is:

$116,600.00-$129,560.00

Worker Type:

Regular

Number of Openings:

1

Emergency Response:

Responding to emergency situations to meet customers’ needs is part of every employee’s role. If employed, you will be given an Emergency Restoration assignment.  This means you may be called to assist during an emergency outside of your normal responsibilities, work hours and location. 

EEO Statement:

Eversource Energy is an Equal Opportunity and Affirmative Action Employer.  All qualified applicants will receive consideration for employment without regard to age, race, color, sex, sexual orientation, gender identity, national origin, religion, disability status, or protected veteran status.

VEVRRA Federal Contractor