Entergy Jobs

Information Security Engineer Sr or Sr Lead - Network Security

Date: Mar 11, 2023

Location: The Woodlands, Texas, United States

Company: Entergy

Posting End Date:

Work Place Flexibility: Hybrid

JOB SUMMARY/PURPOSE

This position leads the team in securing Entergy’s networks from internal and external threats across corporate Information Security (IS), Information Technology (IT) and Operational Technology (OT); including data centers, office building, control centers, power plants, and substations. The engineer will drive the execution of processes and develop automation opportunities to monitor, control and detect malicious or anomalous network traffic, maintain established level of network services and network security policies, and remediate any gaps to achieve optimal level of security in the network. The engineer will also drive the team to ensure that network security operations are maintained to be audit ready in compliance with NRC Nuclear Cyber, NERC CIP and Sarbanes-Oxley regulations.

JOB DUTIES/RESPONSIBILITIES

• Execute and assist other engineers in day-to-day operations and maintenance of all the systems/components involved in network security including security devices and technologies such as firewalls, client and site-to-site virtual private networks (VPN), intrusion prevention systems (IPS) and/or detection systems (IDS), certificate management, packet brokers, domain name systems (DNS), software defined networks (SDN) and network segmentation

• Maintain certificate authorities (CA) and certificate validation infrastructures

• Assist with the development and implementation of the strategy, roadmap, and project delivery for network security in coordination with the Security Architecture and Enterprise Architecture functions

• Assist with compliance efforts for network security, specifically requirements in support of North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP), Nuclear Regulatory Commission (NRC) Nuclear Cyber (10 CFR 73.54) and Sarbanes-Oxley

• Drive continuous improvement processes, operational excellence and deliver world-class network security solutions for all corporate and operational technology needs, including business operations, power generation units, electric substations, system control and data acquisition (SCADA) systems, distribution automation (DA), and advanced metering infrastructure (AMI)

• Monitor network security trends and suggest improvements to policy, procedures, tools and technologies to enhance the security of Entergy’s network

• Develop and track metrics for the effectiveness and maturity of network security operations

• Organize the team’s work and assign tasks and projects to team members

• Be the escalation person for technical issues and administrative tasks/questions (timecard, expenses, change management training/questions, etc)

• Direct team members to the proper procedure, process, work instruction, contact person, etc to assist team members in resolving their issue

• Other duties as required

MINIMUM REQUIREMENTS

Minimum education required of the position .

Bachelor's degree in computer science, cyber security or a related discipline; OR equivelant work experience. Master's degree a plus.

Minimum experience required of the position

Information Security Engineer Sr: 6+ years of demonstrated experience in network security administration including enterprise firewall management, VPN, forward and reverse proxy, packet brokers, and certificate management; OR in lieu of a degree 10+ years of demonstrated experience in network security administration including enterprise firewall management, VPN, forward and reverse proxy, packet brokers, and certificate management.

Information Security Engineer Sr Lead: 8+ years of demonstrated experience in network security administration including enterprise firewall management, VPN, forward and reverse proxy, packet brokers, and certificate management; OR in lieu of a degree 12+ years of demonstrated experience in network security administration including enterprise firewall management, VPN, forward and reverse proxy, packet brokers, and certificate management

• Expert experience in leading various network security technical competencies

• Ability to lead cross-functional project teams

• Strong experience working with outsourced teams and vendors

• Strong organizational and time management skills

• Experience working in an on-call team rotation

Minimum knowledge, skills and abilities required of the position

• Expert understanding of general networking and design, operating system platforms, security operations, cyber security monitoring, intrusion detection, secured networks and scripting languages

• Expert understanding of regulatory and compliance requirements; (SOX, NERC CIP, and NRC Nuclear Cyber (10 CFR 73.54)

• Understanding of security and attack frameworks such as Nation institute of Standards and Technologies (NIST) Cyber Security Framework (CSF), Cyber Kill Chain and MITRE ATT&CK

• Strong knowledge of current cyber security trends and evolutions in networking such as Software Defined Networks (SDN) and micro segmentation

• Self-directed and with the ability to operate with significant discretion and manage multiple tasks simultaneously

• Excellent communication skills

• Expert problem-solving skills

• Available to travel

Any certificates, licenses, etc. required for the position

• One or more technical or InfoSec certifications are a plus, i.e. CompTIA, ISACA or ISC2.

• Relevant vendor credentials offered by companies such as Cisco is a plus

• CISSP, CRISC, SSCP certification or able to obtain within first year of employment

#LI-Hybrid

#LI-JL1

Primary Location: Texas - The Woodlands Texas : The Woodlands

Job Function : Information Technology

FLSA Status : Professional

Relocation Option: No Relocation Offered

Union description/code : NON BARGAINING UNIT

Number of Openings : 2

Req ID: 110065

Travel Percentage : Up to 25%

An Equal Opportunity Employer, Minority/Female/Disability/Vets. Please clickhere (https://jobs.entergy.com/content/EEO/?locale=en_US) to view the EEO page, or see statements below.

EEO Statement: The Entergy System of Companies provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a protected veteran in accordance with applicable federal, state and local laws. The Entergy System of Companies complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment including, but not limited to, recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.

The Entergy System of Companies expressly prohibits any form of unlawful employee harassment based on race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, or veteran status. Improper interference with the ability of the Entergy System of Company employees to perform their expected job duties is absolutely not tolerated.

Accessibility: Entergy provides reasonable accommodations for online applicants. Requests for a reasonable accommodation may be made orally or in writing by an applicant, employee, or third party on his or her behalf. If you are an individual with a disability and you are in need of an accommodation for the recruiting process please click here (humanr@entergy.com?subject=Accessibility) and provide your name, contact number, the accommodation requested and the requisition number that you are requesting the accommodation for. Employee Services will contact you regarding your request.

Additional Responsibilities: As a provider of essential services, Entergy expects its employees to be available to work additional hours, to work in alternate locations, and/or to perform additional duties in connection with storms, outages, emergencies, or other situations as deemed necessary by the company. Exempt employees may not be paid overtime associated with such duties.

Entergy Pay Transparency Policy Statement: The Entergy System of Companies (the Company) will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the Company’s legal duty to furnish information. 41 CFR 60-1.35(c). Equal Opportunity (https://www.dol.gov/agencies/ofccp/manual/fccm/2l-equal-opportunity-clauses-and-other-requirements/2l00-equal-opportunity) and Pay Transparency (https://www.dol.gov/sites/dolgov/files/OFCCP/pdf/pay-transp_%20English_formattedESQA508c.pdf) .

The non-confidential portions of the affirmative action program for individuals with disabilities and protected veterans shall be available for inspection upon request by any employee or applicant for employment. Please contact HRCompliance@entergy.com to schedule a time to review the affirmative action plan during regular office hours.

WORKING CONDITIONS:

As a provider of essential services, Entergy expects its employees to be available to work additional hours, to work in alternate locations, and/or to perform additional duties in connection with storms, outages, emergencies, or other situations as deemed necessary by the company. Exempt employees may not be paid overtime associated with such duties.

Job Segment: Nuclear Engineering, Information Security, Cyber Security, Compliance, Network Security, Engineering, Technology, Security, Legal