Entergy Information Security Engineer Sr Lead (Identity Mgmt Systems Support) in Little Rock, Arkansas
Information Security Engineer Sr Lead (Identity Mgmt Systems Support)
Apply now »
Date: Apr 12, 2019
Location: Little Rock, AR, US
Brief Position Description:
Reporting to the Manager of Identity Management Systems Support, The Information Security Engineer Senior Lead will provide technical leadership in delivering Identity & Access Management (IAM) system support as part of the overall Information Security Access team. This includes supporting technology which provides access provisioning and authentication services as well as Information and Operational technologies both on premise and through cloud supported platforms.
The Information Security Engineer Senior Lead is expected to perform in the role of senior subject matter expert in all areas of IAM including Role Based Access Controls (RBAC), Single Sign On (SSO), Multifactor Access (MFA), and Privileged Access Management (PAM). This role will be expected to provide mentoring and leadership across the team in support of the Manager of Identity Management Systems Support and will assist in developing policies, processes and procedures which help deliver on the team’s mission to improve services through efficiencies while protecting Entergy’s assets, technologies, systems and customers.
Key responsibilities include:
Plan and deliver execution on the strategy, roadmap and delivery plans for Identity and Access Management (IAM) Systems
Collaborate with other Information Security and Information Technology teams to deliver integrated services providing improved efficiencies and service offerings
Collaborate across other lines of business to evangelize the importance of IAM and build relationships to help grow and improve the Identity program throughout the organization
Develop efficiencies for, and participate in, compliance activities to meet requirements of North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) and Nuclear Regulatory Commission (NRC) Nuclear Cyber (10 CFR 73.54)
Establishing user identities, provisioning and de-provisioning of access, access level changes, federation, etc.
Deliver maintenance of IAM technology infrastructure, managing applications and user-store integrations, directory capabilities, patching, upgrades, etc.
Provide recommendations for and help foster an environment of continual improvement
Support the Enterprise Active Directory (AD) environment, Lightweight Directory Access Protocol (LDAP) services, virtual directory services (VDS) multi-factor authentication (MFA), federation services, privileged account management (PAM) and password management
Five years of Information Security and Identity & Access Management (IAM) experience in a large corporate environment with at least 2 years of experience within the Fortune 500.
Direct experience related to IAM skills/field including; provisioning and workflow, authentication and entitlements, role-based access controls (RBAC), data privacy, and access review and certifications
Knowledge of IAM federated roles and responsibilities within corporate environments including federated identity and web services security through SAML, OAuth 2.0, OpenID Connect, OWIN and ID-WSF, WS-Federation, and WS-Security
Experience supporting IAM technologies such as multi-domain Active Directory environments, multi-domain LDAP environments, multi-factor authentication across different infrastructure topologies including external vendors, federated access services and supporting access review and certifications
Experience in developing processes and supporting different topology models of the IAM stack including cloud-based systems and on – premise systems across multiple data centers as well as various hybrid deployments with high availability of services
Minimum knowledge, skills, and abilities required of the position
Successful hands-on experience deploying and supporting modern IAM systems, protocols and standards, frameworks, federation technologies and solutions within a large enterprise environment
Successful experience with deploying and supporting Microsoft Active Directory and other LDAP technologies within a large enterprise environment
Successful experience with deploying and supporting several of the following; multiple server operating systems, Identity Management Platforms providing manual and automated provisioning services with access certification, Federation Services, Multi-factor authentication technologies, Virtual Directories, Privilege Access Management and self-service password reset technologies.
This is a technical engineering role which also requires excellent process management skills
Demonstrated understanding of working within a process driven environment with attention to the ITEL framework and change management programs
An understanding of interfacing with other Information Security disciplines including Vulnerability Management, Security Operations, Endpoint security and Physical Security
An understanding of energy related regulations (SOX, HIPAA, NERC CIP, FERC, and NRC Nuclear Cyber (10 CFR 73.54)
Knowledge of security, risk, and control frameworks and standards such as ISO 27001 and 27002, SANS-CAG, NIST, FISMA, COBIT, COSO and ITIL
Experience working with both employee and contractor resources in local and remote environments
Motivated self-starter who can identify and resolve problems with little supervision
Exceptional organizational and time management skills are required
Experience working in partnership with colleagues throughout the IT organization and in collaborative teams to achieve common goals
Good communication skills
Available to travel as necessary for business needs
Self-motivated and capable of managing multiple priorities to successful completion
Bachelor’s degree in computer science, cyber security or a related discipline or equivalent work experience also considered.
Bachelor’s degree preferred.
Professional, vendor neutral certifications such as CISSP, CISM, CCSP and/or various GIAC certifications
Relevant credentialing or certifications from one or more of the various IAM vendor platforms
Please note: Authorization to work in the United States is a precondition to employment in this position. Entergy will not sponsor candidates for work visas for this position.
Primary Location: Arkansas-Little Rock
Job Function :Information Technology
FLSA Status :Professional
Relocation Option: No Relocation Offered
Union description/code :NON BARGAINING UNIT-NBU
Number of Openings :1
Req ID: 86434
Travel Percentage :25% to 50%
An Equal Opportunity Employer, Minority/Female/Disability/Vets. Please click here to view the full statement.
As a provider of essential services, Entergy expects its employees to be available to work additional hours, to work in alternate locations, and/or to perform additional duties in connection with storms, outages, emergencies, or other situations as deemed necessary by the company. Exempt employees may not be paid overtime associated with such duties.
Nearest Major Market: Little Rock
Job Segment: Information Security, Corporate Security, Engineer, Systems Engineer, Security, Technology, Engineering
Apply now »