Important Application Submission Information
In order to ensure your application is successfully received before the job posting expires, please submit your application by 11:59 PM on Tuesday, February 10, 2026More than a career - a chance to make a difference in people's lives.
Build an exciting, rewarding career with us – help us make a difference for millions of people every day. Consider joining the Duke Energy team, where you'll find a friendly work environment, opportunities for growth and development, recognition for your work, and competitive pay and benefits.
Position Summary
We are seeking a Lead Cybersecurity IAM Analyst to join our high-performance Identity & Access Management (IAM) team within the Cybersecurity department, as part of the Enterprise Solutions & Services (ES&S) business unit. The focus of this job is to formulate and implement IAM solutions, controls, and collaborate with internal and external partners to ensure the successful execution of IAM strategies against the ES&S and Cybersecurity roadmaps. A Lead Cybersecurity IAM Analyst is responsible for leading and supporting identity and access management initiatives and ensuring the security and integrity of user access to systems and data.
Responsibilities:
Assist and/or lead the implementation of projects across our internal team for advancing our security posture and capabilities. Also assist other areas with project deliverables across Cybersecurity and other business units.
Create documentation for key systems and employ secure configuration management processes.
Work with IAM management to develop, establish, and execute processes and procedures.
Provide operational support for incident tickets, break-fix, consultations, and implementation of change controls .
Train and lead other analysts on the policies and procedures of IAM, review their research, analysis, and conclusions for completeness, and provide feedback and mentoring to staff.
Participate in on-call rotation to provide 24/7 client support.
Communicate complex information, concepts, or ideas in a clear, concise, confident, and well-organized manner through verbal, written, and/or visual means.
Basic/Required Qualifications:
Bachelors degree in Computer Science, Cybersecurity, Managing Information Strategies (MIS), or other closely related discipline.
Eight (8) years minimum related work experience.
In lieu of a Bachelors degree, High School/GED and twelve (12) years minimum related work experience.
Desired Qualifications:
- Masters degree in Computer Science, Cybersecurity, Management Information Systems (MIS), or other closely related discipline.
- CISSP, CISA, CISM, CEH, or comparable industry certification.
- Excellent verbal, written and presentation communication skills in English
- Ability to multitask across multiple projects
- Eight years of experience with Windows 2012 through 2022
- Six years of experience with Microsoft Certificate Services for Public Key Infrastructure (PKI) management
- Six years of experience supporting Active Directory Group Policies (GPO) , Active Directory Federation Services (ADFS), and Azure Active Directory Connect
- Six years of experience supporting Azure Multi-Factor Authentication (MFA) and Self Service Password Reset (SSPR)
- Four years of experience designing, creating and maintaining Azure Conditional Access Policies
- Four years of experience designing, creating and managing PowerShell/Graph API scripts
- Three years of experience supporting Privileged Account Management (PAM) systems
- Two years of experience supporting Windows Hello for Business
- Skill in assessing security controls based on cybersecurity principles (e.g., CIS CSC, CMMC, NIST SP 800-53, Cybersecurity Framework, etc.).
Working Conditions:
Hybrid Mobility Classification – Work will be performed from both remote and onsite locations after the onboarding period. However, hybrid employees should live within a reasonable daily commute to a Duke Energy facility.
#LI-ZM1
#LI-Hybrid
Travel Requirements
5-15%