Entergy Jobs

Job Information

Entergy Solution Architect (Security Architecture) in New Orleans, Louisiana

Solution Architect (Security Architecture)

Apply now »

Date: May 22, 2019

Location: New Orleans, LA, US

Company: Entergy

*This position can be filled in New Orleans, LA, Jackson, MS, Little Rock, AR, or The Woodlands, TX.*

Brief Position Description

The Solution Architect is responsible for assisting with design & implementation of a robust information security architecture to ensure security of all Corporate IT, Operational Technology (OT), and Internet of Things (IoT) enabled systems at Entergy. The Solution Architect will implement security solutions to protect the enterprise and maintain compliance with all regulatory requirements. Deliver on continuous improvement of Entergy’s security posture to ensure the security of data and critical systems and will provide Subject Matter Expertise (SME) over security architecture, and policies and procedures as it pertains to security across multiple platforms & technologies.

Key responsibilities include:

  • Assist with the design and implementation of an overall information security architecture strategy that supports the organization's objectives

  • Design and deliver process excellence on delivering world-class IT security architecture for corporate and operational technology needs, including power generation units, nuclear plants, electric substations, SCADA, distribution automation, and advanced metering infrastructure (AMI)

  • Comply with specific requirements of North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) and Nuclear Regulatory Commission (NRC) Nuclear Cyber (10 CFR 73.54)

  • Participate in the design and implementation of information security architecture strategy and technology roadmap to ensure the best balance of security, efficiency, effectiveness, and scalability while protecting against internal/external threats across all platforms

  • Work closely with other team members in order to establish current and future state IT and OT security architectures across multiple technologies and ensure that the solutions are engineered in accordance with these architectures

  • Assist with efforts that tailor the company's security architecture and standards for use in cloud-based environments

  • Design and implement security controls for Advanced Metering Infrastructure (AMI) and (Bulk Electric System) BES communications networks

  • Participate in continuous improvement efforts to incorporate security requirements and testing in the delivery lifecycl

  • Act as a technical resource for the enterprise

  • Assist with technical engagements with audit, regulators, clients, and third parties, when required

Experience needed

  • One to three years of cyber security and architecture experience across multiple disciplines (monitoring, network engineering, mobile devices, various endpoint architectures, application security, physical environments, etc.)

  • Practical technical experience within a Cyber Security role and some utility related or direct electric utility industry experience required

  • Some experience in building cyber resilient architecture, implementation of best practices to secure network and application infrastructure, protect information against unauthorized data access and loss, risk reduction and vulnerability mitigation

  • Exposure to Cyber security programs, specifically Enterprise Security Architecture to include reference security architecture creation, security program assessment, security operations, incident response, forensic analysis, threat intelligence, identity and access management, data protection, penetration testing, Web application security testing, vulnerability and risk management

  • Some knowledge of security products in on-prem, cloud and SaaS models, SIEMs, firewalls, security applications, vulnerability detection, network devices, and endpoint protection

  • Exposure to electric utility customer service, distribution grid technologies and SCADA operations, e.g., Smart Grid, AMI, SCADA, meter data management systems (MDMS), etc.

  • Exposure to relevant technologies like Splunk, Avigilon, PSIM, Nessus, Tripwire or SolarWinds

  • Experience working with outsourced teams

  • Organizational and time management skills

Minimum knowledge, skills, and abilities required of the position

  • Some knowledge of IT Security regulations and guidance such as NIST, FISMA & ISO27001

  • Familiarity with The Open Group Architecture Framework (TOGAF), Open Web Application Security Project (OWASP), Open Security Architecture, National Institute of Standards and Technology (NIST) Cloud Computing Reference Architecture, or other architecture frameworks

  • Technical engineering and process management skills

  • Understanding of reference architectures and designing & implementing proof of concept of cloud security environments

  • Support of security controls for AMI & BES communications network

  • API based services layer for consistent integration with the security systems

  • Some knowledge of multiple UNIX OS platforms and Windows-based operating systems

  • Some knowledge of network concepts - firewalls, load-balancers, and network design

  • Knowledgeable in security technologies

  • Knowledge of security ramifications of energy related regulations (SOX, HIPAA, NERC CIP, FERC, and NRC Nuclear Cyber (10 CFR 73.54)

  • Knowledge of security, risk, and control frameworks and standards such as ISO 27001 and 27002, SANS-CAG, NIST, FISMA, COBIT, COSO and ITIL

  • Knowledge of security technologies including Firewall, IDS/IPS/HIDS, anti-virus, SIEM, Vulnerability Scanning, Threat Intelligence sources and services

  • Awareness of current IT Security trends

  • Some knowledge with scripting languages such as Perl or Python

  • Good writing and communication skills

  • Available to travel

  • Self-motivated, with the ability to manage and follow up on multiple tasks simultaneously

  • Capable of meeting deadlines

Education

Associate’s degree in computer science, cyber security or a related discipline or equivalent work experience.

Any certificates, licenses, etc., required for the position

ISACA certification, such as CISSP, CISM, CISA preferred

Relevant vendor credentials offered by companies such as Symantec preferred

#LI-DNI

Primary Location: Louisiana-New Orleans

Job Function :Information Technology

FLSA Status :Professional

Relocation Option: Level II

Union description/code :NON BARGAINING UNIT-NBU

Number of Openings :1

Req ID: 84591

Travel Percentage :Up to 25%

An Equal Opportunity Employer, Minority/Female/Disability/Vets. Please click here to view the full statement.

WORKING CONDITIONS:

As a provider of essential services, Entergy expects its employees to be available to work additional hours, to work in alternate locations, and/or to perform additional duties in connection with storms, outages, emergencies, or other situations as deemed necessary by the company. Exempt employees may not be paid overtime associated with such duties.

Nearest Major Market: New Orleans

Job Segment: Solution Architect, Architecture, Corporate Security, Engineer, Technology, Security, Engineering

Apply now »

DirectEmployers