FirstEnergy at a Glance We are a forward-thinking electric utility powered by a diverse team of employees committed to making customers’ lives brighter, the environment better and our communities stronger. FirstEnergy (NYSE: FE) is dedicated to safety, reliability, and operational excellence. Headquartered in Akron, Ohio, FirstEnergy includes one of the nation's largest investor-owned electric systems, more than 24,500 miles of transmission lines that connect the Midwest and Mid-Atlantic regions, and a regulated generating fleet with a total capacity of 3,780 megawatts. This position is within FirstEnergy Service Co., a subsidiary of FirstEnergy Corp. This position is in Akron, Ohio, reporting to the Supv of Threat Hunting, but has remote work opportunities while the person must be able to reach the FirstEnergy HQ facility based on business need within one hour travel time. This position may, subject to conditions and availability, qualify to be filled under the same terms but reporting to a regional office in Greensburg PA, Reading PA, Fairmont WV, Holmdel NJ, or Holland (Toledo) OH. The Cybersecurity Automation Developer is responsible for designing, developing, and maintaining automated solutions that scale and mature the organization’s security operations. This role enhances threat detection and accelerates incident response. A primary focus will be reducing manual workloads through automation, standardized playbooks, and repeatable engineering practices. This role designs and implements automation frameworks functions including alert triage, incident response and threat hunting. The Cybersecurity Automation Developer will develop and maintain playbooks and workflows within the SOAR, integrating tools including SIEM and EDR into cohesive automated pipelines. The Cybersecurity Automation Developer will lead initiatives to streamline security monitoring and remediation, create scalable scripting and orchestration solutions using Python, PowerShell, and JavaScript, and leverage APIs and data pipelines to normalize and correlate telemetry from multiple security sources. The Cybersecurity Automation Developer will analyze complex security datasets to identify gaps and opportunities, tune automated processes to reduce false positives, and support advanced detection through analytics and emerging technologies. Additionally, this position provides technical leadership by defining an automation strategy, mentoring junior developers, supporting vendor relationships, and contributing to architecture and lifecycle decisions. Strong communication skills, sound engineering judgment, and the ability to translate technical requirements into practical, scaled solutions are essential for success. Responsibilities Include - Design, develop, and maintain automated security workflows that streamline SOC and Threat Hunting operations, reduce manual effort, and accelerate incident detection, response, and remediation - Lead expert-level development, tuning, and lifecycle management of SOAR playbooks to automate alert triage, enrichment, containment, and response processes - Identify, troubleshoot, and remediate playbook failures, integration issues, and automation errors, performing break-fix and tuning activities prior to production deployment - Architect and maintain integrations between SOAR, SIEM, EDR, and third-party security tools using APIs and custom scripting to ensure reliable data ingestion and orchestration - Develop custom automation scripts and integrations in Python and JavaScript to extend platform capabilities and address unique SOC and enterprise security requirements - Create and maintain dashboards, reports, and metrics to provide visibility into automation performance and effectiveness - Install, validate, and deploy content packs and updates, following change management best practices to promote stable releases from development through production - Serve as the primary subject matter expert (SME) for the SOAR and security automation platforms, providing technical guidance, troubleshooting, and consulting support to the SOC, and Threat Hunting teams. - Design and maintain scalable automation frameworks and data pipelines to normalize, correlate, and enrich security telemetry across enterprise and cloud environments - Monitor and manage platform health, internal databases, and system performance to ensure reliability, data integrity, and continuous availability of automation services - Lead vendor engagement and support activities, including ticket management, platform optimization discussions, and roadmap alignment with Customer Success Engineers - Continuously evaluate and improve automation processes to reduce false positives, eliminate repetitive tasks, and increase efficiency and response quality - Document standards, playbook designs, troubleshooting procedures, and best practices to promote knowledge sharing and operational consistency across the team - Educate and mentor threat hunters and analysts on automation tools, workflows, and best practices to elevate overall SOC effectiveness - Support metrics collection, reporting, and operational communications to leadership and stakeholders Qualifications - Bachelor's degree in computer science, Information Security, or similar discipline is required with 3 years of experience - Industry standard certifications will be considered such as OSCP, GIAC (GCTI, GCIH, GREM, GCFA, GPYC, GASAE, GCSA), CISSP and HTB CPTS - A bachelor's degree in another field with 4 years relevant industry experience in cyber/information security will be considered - In lieu of a degree, 5 years of related experience is required - Related experience includes but is not limited to: SOC (Security Operations Center) experience, IT Security experience in detection, triage, investigation, and remediation of security incidents within a network and cyber automation engineer - Understanding of adversarial techniques (i.e., MITRE ATT&CK framework) - Strong understanding of programming/scripting code (Python, PowerShell, Bash. C#, JavaScript) - Hands-on administration and engineering experience with SOAR (e.g., Cortex XSOAR, Splunk SOAR, Sentinel) platforms including advanced playbook design, integration management, and production support - Experience troubleshooting and remediating automation failures, playbook errors, and platform performance issues in production environments - Experience integrating security technologies (SIEM, EDR, IAM, firewalls, cloud tools) through REST APIs and automated data pipelines - Ability to create, detect, and enhance security content - Ability to develop and maintain automation playbooks and workflows - Ability to handle, protect and preserve highly confidential information - Understanding of networking concepts and technologies - Basic understanding of statistics - Must be organized and comfortable with ongoing changes in priorities - Must be able to work independently with minimal supervision and within a team environment - Strong foundation in cyber security - Understanding of both Linux and Windows operating systems - Demonstrate strong communication skills, both verbal and written - Demonstrate creative problem solving and solutioning Benefits, Compensation & Workforce Diversity At FirstEnergy, employees are key to our success. We depend on their talents to meet the challenges of our changing business environment. We are committed to rewarding individual and team efforts through our total rewards philosophy which includes competitive pay plus incentive compensation, a company-sponsored pension plan, 401(k) savings plan with matching employer contribution, a choice of medical, prescription drug, dental, vision, and life insurance programs, as well as skills development training with tuition reimbursement. Please visit our website at www.firstenergycorp.com to learn more about all of our employee rewards programs. FirstEnergy proudly supports workforce diversity. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, gender identity, age, status as a protected veteran, or status as a qualified individual with a disability. No recruiters or agencies without a previously signed contract. Unable to sponsor or transfer H-1B visas at this time. Safety Safety is a core value for FirstEnergy and is essential to all of our business activities. We ensure employees have the tools, information, and processes to perform their duties in a manner that assures safety for themselves, their co-workers, our customers and the public. Our goals are to provide a safe work environment, to maintain an accident-free, injury-free workplace, and to promote and maintain public safety. To meet these goals, we dedicate ourselves to achieving world-class safety standards. Position Classification Exempt FirstEnergy Human Resources Team

• Manage Leads: You will handle all incoming inquiries, remove spam, and turn valid leads into support tickets using our client's system. • Customer Communication: You will talk to customers to understand their needs and provide information to help them find the right products. • Prepare Quotes and Invoices: You will assist in creating quotes and invoices, making sure they are correct and sent to customers on time. • Track Orders: You will check order statuses, update customers, and work with fulfillment centers to ensure timely shipping. • Support Team: You will help create training materials and assist new team members during their onboarding.

• Own and manage the product backlog for OT Cybersecurity & Connectivity services, ensuring clear priorities and continuous delivery • Drive the rollout and improvement of OT security solutions, including threat detection and secure connectivity across global sites • Coordinate the integration of OT security tools with corporate platforms (e.g., SIEM, identity, remote access) • Act as the main point of contact between plants, security teams, SOC, and infrastructure, ensuring alignment and clear communication • Collect and prioritize requests, improvements, and deployments from different sites and stakeholders • Support the definition of roadmaps and product strategy, based on business needs and security requirements • Track progress, risks, and dependencies, ensuring transparency and structured delivery across initiatives

Description At CDW, we make it happen, together. Trust, connection, and commitment are at the heart of how we work together to deliver for our customers. It's why we're coworkers, not just employees. Coworkers who genuinely believe in supporting our customers and one another. We collectively forge our path forward with a level of commitment that speaks to who we are and where we're headed. We're proud to share our story and Make Amazing Happen at CDW Job Summary: This is a pre-award, contingent position supporting a proposed effort for CDW's federal client and must be able to work fully on-site in Suitland, MD. The Cisco Network Security Engineer is being identified to meet anticipated contract requirements and will not perform operational, engineering, or execution duties prior to contract award. Selection into this role reflects the candidate's qualifications, availability, and eligibility to support the program upon award. What you will do: * Design, implement, and support secure Cisco network and security architectures in classified environments * Support Cisco security platforms including ISE, firewalls, routers, switches, and secure access technologies * Integrate Secureworks managed security services and monitoring capabilities * Ensure compliance with DoD, Intelligence Community cybersecurity standards * Develop and maintain technical documentation and network diagrams What we expect of you: * Active TS/SCI clearance * Bachelor's degree in computer science, Engineering, Cybersecurity, or relevant field (or equivalent experience), 5+ years of experience with Cisco network and security technologies OR, 9 years of experience with Cisco network and security technologies OR * Familiarity with Secureworks security services or managed security solutions * Experience supporting DoD or Intelligence Community environments * Cisco certifications (CCNP Security, CCIE Security, or equivalent), a plus * Security certifications such as CISSP or related credentials, a plus * Prior experience supporting Intelligence or similar IC customers, a plus * CDW is committed to being an AI-fluent organization * We're looking for people who bring curiosity, a learner's mindset, and a willingness to engage with ever-evolving technology and tools. We value adopting AI as a partner, openness to experimentation, and a shared interest in learning together on AI. Our goal is to create a culture where AI enhances- not replaces- human creativity and decision-making. You don't need to be an expert today; what matters is your readiness to explore, adapt, and grow with us as we integrate AI responsibly and effectively into our work.Additionally, CDW is committed to fostering an equitable, transparent, and respectful hiring process for all applicants. During our application process, our goal is to understand your experience, strengths, skills, and qualifications. As an AI forward company, we see AI not just as a tool, but as a catalyst for new ways of thinking, creating, and communicating. We encourage candidates to embrace an AI mindset, one that's curious, adaptive, and ready to explore what's possible. We welcome thoughtful use of AI to expand your perspective and elevate how you share your story, while ensuring your application remains rooted in your own background, judgment, and voice. * We make technology work so people can do great things. * CDW is a leading multi-brand provider of information technology solutions to business, government, education and healthcare customers in the United States, the United Kingdom and Canada. A Fortune 500 company and member of the S&P 500 Index, CDW helps its customers to navigate an increasingly complex IT market and maximize return on their technology investments. Together, we unite. Together, we win. Together, we thrive. CDW is an equal opportunity employer. All qualified applicants will receive consideration for employment without regards to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status or any other basis prohibited by state and local law.