Security Specialist Principal (Operational Technology)

Job Posting End Date

02-17-2026

Please note the job posting will close on the day before the posting end date.

Job Summary

At AEP, were more than just an energy company!

Were a team of dedicated professionals committed to delivering safe, reliable, and innovative energy solutions. Guided by our mission to put the customer first, we strive to exceed expectations by listening, responding, and continuously improving the way we serve our communities. If you're passionate about making a meaningful impact and being part of a forward-thinking organization, this is the company for you!

Job Description

Responsible for enterprise-wide cybersecurity initiatives focused on protecting industrial control systems and operational technology. Provide direction to team members and lead efforts in the review, evaluation, and recommendation of emerging security technologies relevant to critical infrastructure. Lead and participate in security incidents and projects, directing assignments that enhance the security posture of the organization. Demonstrate advanced problem-solving and decision-making skills, along with deep knowledge of the cybersecurity landscape, particularly in industrial environments. Frequently involved in the implementation, support, and utilization of technical solutions tailored to safeguard operational technology. Mentor team members and provide functional and technical guidance to ensure effective security practices are upheld.

* Applicants must be eligible to obtain a US security clearance*

What You'll Do:

• Lead the Cyber Intelligence & Response Center (CIRC) in the prevention, identification, and response of cyber threats across IT, OT, and cloud environments.
• Analyze logs, network traffic, endpoint telemetry and various other data sources to support investigations.
• Execute containment, eradication, and recovery steps in coordination with stakeholders while balancing the safety and operational continuity in industrial systems.
• Investigate incidents and produce concise response plans and after action reports covering containment, eradication, recovery, evidence preservation, remediation, and root cause analysis.
• Contribute to tabletop exercises, simulations and readiness activities focused on cyber events affecting operations.
• Participate in the development and refinement of playbooks, runbooks, and response procedures.
• Analyze cyber threat intelligence products to assess impacts on critical infrastructure.
• Coordinate incident response efforts with U.S. government agencies and industry peers.
• Collaborate on cyber threat and security best practices with government and industry partners.
• Maintain expertise in OT protocols, ICS, and SCADA systems for comprehensive threat detection.
• Familiar with SIEM platforms and network analysis tools used in OT environments.
• Conduct forensic analysis of host and network events to support investigations.
• Prepare and deliver engaging cyber threat briefings to diverse audiences.
• Reverse engineer malware to understand threats targeting industrial control systems.
• Communicate security challenges effectively to senior leadership.
• Promote diversity and ensure team members receive training for skill development.
• Create presentations on cybersecurity topics and simplify complex concepts.
• Formulate solutions for advanced security challenges and identify process improvements.
• Motivate the team to learn about security trends and foster professional growth.

Nice to Have:

Demonstrable experience in one or more of the following disciplines:

• Incident Response Analyst
• CIRC/SOC Lead
• Threat Intelligence or Counterintelligence Analyst
• Cyber Threat Hunting Analyst
• Malware Reverse Engineer
• Operational Technology Specialist, particularly in securing industrial control systems and related environments.

Certifications:

• CSFA, GCCC, GCDA, GCED, GCFA, GCFE, GCIA, GCIH, GCIP, GCTI, GDAT, GICSP, GMON, GOSI, GREM, GRID, GSOM, GXPN
• OSCP, OSEE
• CERT Incident Response Process Professional
• CREST Certified Host Intrusion Analyst
• CREST Certified Incident Manager
• CREST Certified Malware Reverse Engineer
• CREST Certified Network Intrusion Analyst

What We're Looking For:

Education: Bachelor's degree or associate degree with 2 years relevant experience in system administration/help desk/security (cyber or physical) OR High School Diploma/GED with 4 years relevant experience in IT system administration/help desk/security (cyber or physical); OR graduation from an approved Cybersecurity Program; alternatively, may have non-degree qualifications (such as hands-on demonstrated ability in a technical interview/assessment).

Experience: 4 or more years of Information Technology related experience; OR 2 or more years of security related experience, which may include military/government work experience in addition to any experience identified above.

What You'll Get:

$98,993 - $128,689

In addition to a competitive compensation, AEP offers a unique comprehensive benefits package that aims to support and enhance the overall well-being of our employees.

Compensation Data

Compensation Grade:

SP20-008

Compensation Range:

$98,993.00 - $128,688.00

The Physical Demand Level for this job is: S Sedentary Work: Exerting up to 10 pounds of force occasionally (Occasionally: activity or condition exists up to 1/3 of the time) and/or a negligible amount of force frequently. (Frequently: activity or condition exists from 1/3 to 2/3 of the time) to lift, carry, push, pull or otherwise move objects, including the human body. Sedentary work involves sitting most of the time but may involve walking or standing for brief periods of time. Jobs are sedentary if walking and standing are required only occasionally, and all other sedentary criteria are met.

Hear about it first! Get job alerts by email. Log in to your Candidate Home Account today! If you don't have an account, you can create one.

It is hereby reaffirmed that it is the policy of American Electric Power (AEP) to provide Equal Employment Opportunity in all respects of the employer-employee relationship including recruiting, hiring, upgrading and promotion, conditions and privileges of employment, company sponsored training programs, educational assistance, social and recreational programs, compensation, benefits, transfers, discipline, layoffs and termination of employment to all employees and applicants without discrimination because of race, color, religion, sex (including pregnancy, gender identity, and sexual orientation), national origin, age, veteran or military status, disability, genetic information, or any other basis prohibited by applicable law. When required by law, we might record certain information or applicants for employment may be invited to voluntarily disclose protected characteristics.