Important Application Submission Information
In order to ensure your application is successfully received before the job posting expires, please submit your application by 11:59 PM on Wednesday, July 8, 2026
Build an exciting, rewarding career with us – help us make a difference for millions of people every day. Consider joining the Duke Energy team, where you'll find a friendly work environment, opportunities for growth and development, recognition for your work, and competitive pay and benefits.
We are seeking a Cybersecurity IAM Analyst with a strong focus on modern authentication, Zero Trust, and identity security controls. This position operates within a large-scale, highly regulated, and heavily audited environment, requiring alignment to cybersecurity frameworks and the ability to deliver solutions that meet both security and compliance requirements.This role provides technical knowledge and experience,supportskey IAM initiatives, and partners across teams to deliver measurable improvements in identity security and authentication practices.
Quickly assesses the current IAM and authentication landscape and identifies high-impact opportunities for improvement
Drives adoption of phishing-resistant MFA and passwordless authentication
Reduces reliance on legacy authentication methods
Improves visibility and control over identity-related risk
Partners effectively with others within Cybersecurity and infrastructure teams to implement practical, scalable identity security solutions
Influences enterprise-wide improvements in identity governance and access controls
Leads initiatives with a high degree of ownership while collaborating across teams in a complex, heavily regulated environment
Builds credibility with stakeholders by delivering clear progress, tangible outcomes, and improved security posture
Delivers measurable improvements within the first 6 – 12 months, particularly in authentication strength, identity risk reduction, and access control maturity
Supportidentity platformsso theyoperate with high reliability and availability,assist withsystem upgrades and change activities in alignment with change management processes to minimize business impact.
Provide support for IAM-related incidents and escalations, partnering with operational teams to resolve issues.
Develop an understanding ofIAM and security concepts,both technical and non-technical
Communicatein a clear, concise, confident, and well-organized manner through verbal, written, and/or visual means
Support the implementation of IAM solutions,follow processes and procedures, andunderstand the Company policies
Support efforts to modernize authentication and identity security controls
Collaborate with security teams to mitigate identity-based risks
Occasionally work outside of standard business hours to support critical IAM activities, including system maintenance and urgent issues requiring advanced support
Perform other IAM-related duties as needed to support the evolving business, security, regulatory requirements, and Company goals
Travel as needed, less than 5%
Bachelors degree in Cybersecurity, Computer Science, Management Information Systems
Minimum 2 years related work experience
In lieu of Bachelors degree(s) AND 2 year(s) related work experience listed above, High School/GED AND 6 year(s) related work experience
Hands-on and working knowledgewith
Designing and implementation of Microsoft Entra ID and components
Multi-domainActive Directory (on-premise) and hybrid identity environments
Designing Conditional Access and MFA solutions
Implementing and supporting Azure Self-Service Password Reset (SSPR)
Designing and managing PowerShell/Graph API scripts
Strong understanding and working knowledgeof authentication concepts and identity security best practices
Excellent verbal, written and presentation communication skills in English
Ability to multitask across multiple projects
Eight years of experience with Windows 2012 through 2022, managing multi-domain forests
Six years of experience with Microsoft Certificate Services for Public Key Infrastructure (PKI) management
Six years of experience supporting Active Directory Group Policies (GPO), Active Directory Federation Services (ADFS), andEntra IDConnect
Six years of experience supporting Azure Multi-Factor Authentication (MFA) and Self-Service Password Reset (SSPR)
Four years of experience designing, creating and maintaining Azure Conditional Access Policies
Four years of experience designing, creating and managing PowerShell/Graph API scripts
Three years of experience supporting Privileged Account Management (PAM) systems
Two years of experience supporting Windows Hello for Business
Skill in assessing security controls based on cybersecurity principles (e.g., CIS CSC, CMMC, NIST SP 800-53, Cybersecurity Framework, etc.).
Hybrid Mobility Classification – Work will be performed from both remote and onsite locations after the onboarding period. However, hybrid employees should live within a reasonable daily commute to a Duke Energy facility.
Office Environment
#LI-ZM1
#LI-Hybrid
Travel Requirements
5-15%
No
No
No. This is not a Visa Sponsored Position. This role requires the ability to work lawfully in the U.S. without employment-based immigration sponsorship, now or in the future.

Duke Energy, a Fortune 150 company headquartered in Charlotte, N.C., is one of America’s largest energy holding companies. The company’s electric utilities serve 8.4 million customers in North Carolina, South Carolina, Florida, Indiana, Ohio and Kentucky, and collectively own 54,800 megawatts of energy capacity. Its natural gas utilities serve 1.7 million customers in North Carolina, South Carolina, Tennessee, Ohio and Kentucky.
Duke Energy is executing an ambitious clean energy transition, keeping reliability, affordability and accessibility at the forefront as the company works toward net-zero methane emissions from its natural gas business by 2030 and net-zero carbon emissions from electricity generation by 2050. The company is investing in major electric grid upgrades and cleaner generation, including expanded energy storage, renewables, natural gas and nuclear.
Our team is available Monday to Friday from 8 a.m. to 5 p.m. EST. If you suspect an emergency, please call 911.