Entergy Cyber Security Analyst - Consolidated Security Operations Center (CSOC) in The Woodlands,
Cyber Security Analyst - Consolidated Security Operations Center (CSOC)
Date: Oct 7, 2021
Legal Entity: Entergy Services, LLC
Posting End Date: 10/21/2021
This role may be filled in Little Rock, AR or The Woodlands, TX
The official title for this role will be Info Sec Analyst
This position may be filled as an Info Sec Analyst II, III, or Sr depending on the candidates experience and qualifications
Entergy Corporation is an integrated energy company engaged primarily in electric power production and retail distribution operations. Entergy owns and operates power plants with approximately 30,000 megawatts of electric generating capacity, including 8,000 megawatts of nuclear power. Entergy delivers electricity to 2.9 million utility customers in Arkansas, Louisiana, Mississippi and Texas. Tracing its history to 1913 and headquartered in New Orleans, Louisiana, Entergy has annual revenues of $11 billion and more than 13,000 employees.
The company’s utility business provides electric retail and wholesale power to customers in four states through five utility operating companies: Entergy Arkansas, LLC; Entergy Louisiana, LLC; Entergy Mississippi, LLC; Entergy New Orleans, LLC; and Entergy Texas, Inc. Entergy also delivers natural gas services to 200,000 customers in New Orleans and parts of Baton Rouge, Louisiana. Entergy is winding down its wholesale generation business, which provides power to wholesale customers primarily from our two remaining nuclear facilities located in the northern United States.
The electric utility industry is rapidly changing, and Entergy is entering an exciting period of growth as we prepare for the future. We are building the premier utility, a utility that delivers sustainable value to all its stakeholders – our customers, employees, communities and owners – as measured by strong net promoter scores, high levels of service, superior and affordable products and services, highly skilled and engaged employees, and industry-leading financial performance. We are focusing our sights on three key priorities — customer centricity, continuous improvement, and creating a culture of belonging for our employees. Join us as we take the next step on our journey to building the premier utility.
Brief Position Description
The Analyst - Consolidated Security Operations Center (CSOC) is responsible for effective execution of 24/7 monitoring operations and incident management. Through maintenance of security programs, the Analyst executes on guidance and ensures all processes and procedures are followed.
Key responsibilities include:
Directeyes-on-glass monitoring and tier-1 support for events and incidents related to security operations in the corporate and OT environments
Assist in monitoring security events from the cyber monitoring tools, end user notifications, etc. to determine security risk and respond according to management direction
Execute on strategy and technology roadmap for the CSOC function
Assist inforensic investigations, as necessary
Assist with response, triage and escalation of security events affecting the company's information assets and activitiesto Tier 2, OT IT Security operations or service provider as directed
After hours and weekend activities as needed to support the business needs
Participate in training and exercises to ensure CSOC team proficiency
Execute on the response process to minimize the impact of risks
Info Sec Analyst II: Two plus years of cyber security experience across multiple disciplines (monitoring, log gathering, event correlation, configuration, behavior analytics, network engineering, application security, database, risk management, project management, etc.)
Info Sec Analyst III: Four plus years of cyber security experience across multiple disciplines (monitoring, log gathering, event correlation, configuration, behavior analytics, network engineering, application security, database, risk management, project management, etc.)
Info Sec Analyst Sr: Six plus years of cyber security experience across multiple disciplines (monitoring, log gathering, event correlation, configuration, behavior analytics, network engineering, application security, database, risk management, project management, etc.)
Hands on experience working with Security Information Management, event management and incident response in a 24/7 SOC environment
Some experience working with a team required to operate in 24/7 shifts
Some experience working with outsourced teams
Ability to work effectively with team members and with customers
Solid organizational and time management skills
Minimum knowledge, skills, and abilities required of the position
Hands-on technical engineering and process management skills
Commitment to customer service with solid oral and written communication skills
Some knowledge of multiple Linux/UNIX OS platforms and Windows-based operating systems
Knowledgeable about security operations, cyber security monitoring, intrusion detection, and secured networks
Some knowledge of security, risk, and control frameworks and standards such as ISO 27001 and 27002, SANS-CAG, NIST, FISMA, COBIT, COSO and ITIL
Understanding of current IT Security trends and best practices in technology
Some knowledge with scripting languages such as Perl or Python
Solid writing and communication skills
Available to travel
Capable of meeting deadlines
Associates degree in computer science, cyber security or a related discipline or equivalent work experience.
Any certificates, licenses, etc., required for the position
ISACA certification, such as CISSP, CISM, CISA are a plus
Vendor credentials offered by companies such as Microsoft and Cisco a plus
Primary Location: Texas-The Woodlands
Job Function :Information Technology
FLSA Status :Professional
Relocation Option: No Relocation Offered
Union description/code :NON BARGAINING UNIT-NBU
Number of Openings :1
Req ID: 104053
Travel Percentage :Up to 25%
An Equal Opportunity Employer, Minority/Female/Disability/Vets. Please clickhere (https://jobs.entergy.com/content/EEO/?locale=en_US) to view the full statement.
As a provider of essential services, Entergy expects its employees to be available to work additional hours, to work in alternate locations, and/or to perform additional duties in connection with storms, outages, emergencies, or other situations as deemed necessary by the company. Exempt employees may not be paid overtime associated with such duties.
Job Segment: Operations Manager, Corporate Security, Engineer, Security, Operations, Engineering