Job Information
Entergy Sr Security Architect or Security Architect in New Orleans, Louisiana
Sr Security Architect or Security Architect
Date: Jan 7, 2023
Location: The Woodlands, Texas, United States
Company: Entergy
Posting End Date:
Work Place Flexibility: Hybrid
This position may be filled in The Woodlands TX, New Orleans LA, Jackson MS, or Little Rock AR. Other locations within Entergy’s service territory may be considered
This position will be filled as a Security Architect or Security Architect Sr depending on qualifications and experience of the candidate
Job Summary
The Security Architect utilizes their knowledge of IT and information security engineering to lead and/or participate in the development of assigned projects or solutions. The Security Architect focuses on implementing security requirements for assigned projects and solutions while maintaining compliance with internal and externals policies and regulations.
The Security Architect works closely with the Enterprise Security Architect to ensure projects and solutions are consistent with Entergy’s Information Security strategy and roadmap. The Security Architect provides clear and concise direction to project stakeholders and acts as the “face” of information security for those teams.
Key Responsibilities/Duties
Utilize Information Security reference architectures to develop secure solutions and designs for projects
Provide input to policies, procedures, standards, processes, and templates that are consistent with the Information Security strategy and roadmap
Participate in security and non-security projects to ensure that security requirements are defined and implemented
Perform assessments and threat modeling of existing and emerging technologies to ensure they meet Entergy security and compliance requirements
Evangelize and advocate for information security with stakeholders
Monitor emerging trends in Information Security and technology and make or suggest changes to Entergy’s security posture as necessary
Experience needed
Security Architect: 3+ years of architecture or engineering experience in information security or IT/OT disciplines (detection and response, network security, application security, endpoint security, Identity and Access Management, vulnerability management, system administration, networking, application development, risk management, etc.)
Security Architect Sr: 5+ years of architecture or engineering experience in information security or IT/OT disciplines (detection and response, network security, application security, endpoint security, Identity and Access Management, vulnerability management, system administration, networking, application development, risk management, etc.)
One or more years in a complex and highly-regulated industry (e.g., utilities, financial services, healthcare, etc.)
Experience working with outsourced teams
Experience in working in partnership with colleagues throughout the enterprise
Minimum Knowledge, Skills, and Abilities needed
Familiarity with technologies commonly utilized within an enterprise IT and OT environment
Strong knowledge of multiple information security domains with an emphasis in Cloud services (AWS, Azure, etc.)
Operating systems (*nix, Windows, IOS, etc.)
Networking and network security
APIs
Secure coding/application security
Vulnerability Management
SIEM
Identity and Access Management
Penetration testing
Scripting (Python, PowerShell, Perl, etc.)
Security process and control development
Endpoint protection technology
OT systems and protocols
Smart Grid technology
Some knowledge of IT Security regulations and guidance such as NIST, FISMA & ISO27001
Familiarity with The Open Group Architecture Framework (TOGAF), Open Web Application Security Project (OWASP), Open Security Architecture, National Institute of Standards and Technology (NIST) Cloud Computing Reference Architecture, or other architecture frameworks
Able to be hands-on with technical engineering and process management skills and the ability to advocate positive transformation within the broader information technology organization
Able to design & develop reference architectures
Able to design and develop an API based services layer for consistent integration with the security systems
Knowledge of security ramifications of energy related regulations (SOX, HIPAA, NERC CIP, FERC, and NRC Nuclear Cyber (10 CFR 73.54)
Knowledge of security, risk, and control frameworks and standards such as ISO 27001 and 27002, SANS-CAG, NIST, FISMA, COBIT, COSO and ITIL
Strong writing and analytic ability
Strong ability to concisely and effectively communicate across the enterprise
Organizational and time management skills
Available to travel as needed
Self-motivated, with the ability to manage and follow up on multiple tasks simultaneously
Capable of meeting deadlines
Education needed
Bachelor’s degree in computer science, cyber security, information systems, engineering or a related discipline or equivalent work experience. Master’s degree is a plus.
Certifications needed
ISACA or ISC2 certification, such as CISSP, CISM, CISA are a plus
OSCP is a plus
Relevant vendor credentials offered by companies such as Symantec, Checkpoint, Cisco, Microsoft, etc. are a plus
#LI-JL1
#LI-Hybrid
Primary Location: Texas-The Woodlands Arkansas : Little Rock || Louisiana : New Orleans || Mississippi : Jackson || Texas : Houston || Texas : The Woodlands
Job Function :Information Technology
FLSA Status :Exempt
Relocation Option: No Relocation Offered
Union description/code :NBU
Number of Openings :2
Req ID: 109130
Travel Percentage :Up to 25%
An Equal Opportunity Employer, Minority/Female/Disability/Vets. Please clickhere (https://jobs.entergy.com/content/EEO/?locale=en_US) to view the full statement.
WORKING CONDITIONS:
As a provider of essential services, Entergy expects its employees to be available to work additional hours, to work in alternate locations, and/or to perform additional duties in connection with storms, outages, emergencies, or other situations as deemed necessary by the company. Exempt employees may not be paid overtime associated with such duties.
Job Segment: Developer, Nuclear Engineering, Cloud, Information Security, Computer Science, Technology, Engineering