Entergy Jobs

Job Information

Entergy Mgr, IT - End Point Security in The Woodlands, Texas

Date: Sep 10, 2019

Location: The Woodlands, Texas, United States

Company: Entergy

Brief Position Description

The Endpoint Security Manager is responsible for ensuring the information and operational security of all endpoints connected to Entergy’s environment, including workstations, laptops, mobile devices, severs, and endpoints owned by authorized users (BYOD). The manager will lead discovery & deployment of new and innovative technological solutions to protect our assets, data and people. Lead a highly-skilled team focused on analyzing, designing, developing and delivering solutions built to stop adversaries and strengthen Entergy’s operations.

The Manager will report to the Director of Architecture & Engineering and will manage a team of employees and a flexible pool of contingent workers depending on project needs.

Key responsibilities include:

  • Owning the global endpoint security management plan and execution of policies that will be used across ALL endpoints in the enterprise, including

  • Endpoint baseline configurations

  • Vulnerability management

  • Antivirus protection

  • Data loss prevention

  • Endpoint Detection and Response (EDR)

  • Endpoint Protection Platform (EPP)

  • Policy compliance (e.g. encrypted storage, activity timeout, . . .)

  • Develop and implement strategy & technology roadmap for endpoint security

  • Oversee the implementation, administration, and operation of multiple endpoint security technologies such as FireEye, Symantec, McAfee and BigFix

  • Drive process excellence and maturity to push the envelope on delivering world-class endpoint security for all corporate and operational technology needs, including power generation units, nuclear plants, electric substations, SCADA, distribution automation, and advanced metering infrastructure (AMI)

  • Ensure endpoint security capability complies with specific requirements of North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) and Nuclear Regulatory Commission (NRC) Nuclear Cyber (10 CFR 73.54)

  • Review and approve policy exceptions as required, e.g. operational environment requires that a non-standard endpoint be connected to the network

  • Work with other information security, information technology, risk & compliance personnel to ensure the integrity of all network connected endpoints

  • Collaborate with Advanced Monitoring to create and maintain endpoint behavior profiles used to detect anomalous behavior, including expected installed software and active processes and services

  • Monitor endpoint security trends and emerging security threats and suggest changes to policy, procedures, and tools

  • Attend technical engagement with audit, regulators, clients, and third parties, when required

  • Identify and evaluate security vendor software and integration strategies

  • Produce and track metrics for the effectiveness and maturity of endpoint security technologies and processes

  • Ensure that all endpoint technologies are operationally ready and Consolidated Security Operations Center (CSOC) teams are able to run Tier-1 monitoring & response.

  • Lead digitization efforts to automate routine playbooks and identify opportunities for automation

  • Determine staffing requirements, including recruiting, hiring, training, development, and retention of highly qualified team members

  • Support program planning, engineering work breakdown structure, task estimation, scheduling, change management and quality control of endpoint team’s deliverables

Experience needed

  • Five to seven years of cyber security experience across multiple disciplines (monitoring, log gathering, event correlation, configuration, behavior analytics, network engineering, application security, database, risk management, project management, etc.)

  • Minimum of 3 years of hands on experience managing an endpoint security function

  • Hands on experience designing, developing, testing and implementing Endpoint Security solutions such Symantec, RSA (EMC), FireEye, etc.

  • Solid knowledge in network concepts - firewalls, load-balancers, and network design

  • Experience working with outsourced teams

  • Demonstrated organizational and scheduling skills, strong time management skills

  • Proven ability to lead a team of engineers, architects, and/or external resources

  • Strategically oriented and can influence at the org and enterprise level as needed

  • Expertise in working in partnership with colleagues throughout the enterprise, and in leading collaborative teams to achieve common goals

Minimum knowledge, skills, and abilities required of the position

  • Knowledge of Endpoint security architecture, best practices, Endpoint Protection Platform (EPP) and Endpoint Detection & Response (EDR)

  • Able to be a hands-on manager with technical engineering and process management skills and the ability to advocate and influence positive transformation within the broader information technology organization

  • Broad knowledge of multiple UNIX OS platforms and Windows-based operating systems

  • Well-versed in security operations, cyber security monitoring, intrusion detection, and secured networks

  • Proficient in security ramifications of energy related regulations (SOX, HIPAA, NERC CIP, FERC, and NRC Nuclear Cyber (10 CFR 73.54)

  • Knowledge of security, risk, and control frameworks and standards such as ISO 27001 and 27002, SANS-CAG, NIST, FISMA, COBIT, COSO and ITIL

  • Knowledge of current IT Security trends and evolutions in endpoint security

  • Working knowledge with scripting languages such as Perl or Python

  • Excellent report writing and ability to effectively communicate across the organization

  • Available to travel

  • Self-motivated, with the ability to manage and follow up on multiple tasks simultaneously

  • Capable of meeting deadlines and budgets

  • Ability to coordinate with Entergy’s Audit, Legal, Supply Chain, Communications, Corporate Security and Risk Management organizations to understand requirements and ensure compliance with cyber security policies and standards

Education

Bachelor’s degree in computer science, cyber security or a related discipline or equivalent work experience. Advanced degree preferred.

Any certificates, licenses, etc., required for the position

ISACA certification, such as CISSP, CISM, CISA

Relevant vendor credentials offered by companies such as Symantec

#LI-MM1

Primary Location: Texas-The Woodlands

Job Function : Information Technology

FLSA Status : Professional

Relocation Option: Level I

Union description/code : NON BARGAINING UNIT-NBU

Number of Openings : 1

Req ID: 88016

Travel Percentage :Up to 25%

An Equal Opportunity Employer, Minority/Female/Disability/Vets. Please click here to view the full statement.

WORKING CONDITIONS:

As a provider of essential services, Entergy expects its employees to be available to work additional hours, to work in alternate locations, and/or to perform additional duties in connection with storms, outages, emergencies, or other situations as deemed necessary by the company. Exempt employees may not be paid overtime associated with such duties.

Please note: Authorization to work in the United States is a precondition to employment in this position. Entergy will not sponsor candidates for work visas for this position.

Job Segment: Manager, Corporate Security, Engineer, Law, Security, Management, Engineering, Legal

DirectEmployers