Entergy Jobs

Job Information

Entergy Security Engineer I, II, or III in The Woodlands, Texas

Security Engineer I, II, or III

Date: Aug 4, 2022

Location: The Woodlands, Texas, United States

Company: Entergy

Posting End Date: 08/18/2022

Work Place Flexibility: Hybrid

This position will be filled as an Information Security Engineer I, II or III depending on the candidates experience and qualifications

This position may be filled in Little Rock AR, The Woodlands TX, or New Orleans LA

Brief Position Description:

The Information Security Engineer is responsible for maintaining and evolving a successful security engineering function within Information Security. The security engineering team owns successful deployment and operation of security monitoring tools and processes designed for real-time analysis of events and alerts generated across the enterprise to protect the company’s assets, solutions, and services by reducing time to triage security incidents and risks. This role coordinates security capabilities and industry best practices with all areas of the enterprise.

Key responsibilities include:

  • Implement necessary monitoring policies, reference architectures, and procedures in compliance with statutory and regulatory requirements covering internal and external parties, regulated and non-regulated physical, operational, and business systems throughout the enterprise

  • Assist in satisfying specific requirements to ensure security of the environment in compliance with North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) and Nuclear Regulatory Commission (NRC) Nuclear Cyber (10 CFR 73.54)

  • Execute on strategy & technology roadmap for the implementation and maintenance of Security Information Event Management (SIEM) platform and Endpoint Security toolsets.

  • Drive process excellence and maturity to push the envelope on delivering a world-class Cyber Security function to protect Entergy against cyber threats

  • Support life-cycle management of the SIEM platform and Endpoint Security tools, including assistance with coordination and planning of upgrades, new deployments, and maintenance of current operational systems

  • Execute on world-class cyber defense capability for all information technology and operational technology assets including power generation units, nuclear plants, electric substations, SCADA, distribution automation, advanced metering infrastructure (AMI), email, and networks.

  • Work closely with Consolidated Security Operations Center (CSOC), Threat & Vulnerability Management (TVM), other internal/external teams and management in a 24x7 operational environment

  • Execute the processes to monitor, analyze, and correlate logs and alerts across multiple platforms to identify advanced threats or incidents affecting the enterprise aiding in the development of use case content. This includes any relevant source of security logging or other data.

  • Assist in maintaining documentation and evidence to be used for after action reporting and/or legal evidence

  • Monitor and respond to regulatory developments and industry best practices, with manager direction

  • Accountable for execution of security engineering support of all device classes (server, desktop, mobile, etc.), hosting models (on-premises, external, cloud) and applications to which security platforms apply

  • Work closely with all teams in Information Security to implement use cases for monitoring

  • Deliver on KPIs to measure effectiveness of security engineering and report trends

  • Support security orchestration efforts and help to identify opportunities for automation

  • Collaborate and work across other IT and Information Security areas to design and onboard new systems to follow monitoring standards and best practices

  • Oversee and review work of junior resources as needed

Minimum Experience required:

  • Info Sec Engineer I : 0-2 years of cyber security experience across multiple disciplines (monitoring, log gathering, event correlation, configuration, behavior analytics, network engineering, application security, database, risk management, project management, etc.) or relevant education and training.

  • Info Sec Engineer II : 2 plus years of cyber security experience across multiple disciplines (monitoring, log gathering, event correlation, configuration, behavior analytics, network engineering, application security, database, risk management, project management, etc.) or relevant education and training.

  • Info Sec Engineer III : 4 plus years of cyber security experience across multiple disciplines (monitoring, log gathering, event correlation, configuration, behavior analytics, network engineering, application security, database, risk management, project management, etc.)

  • 1 years of experience working with Security Information Event Management platforms is a plus

  • Experience working with outsourced teams is a plus

  • Experience with vulnerability management, event management, security operations, incident management, and security reporting is a plus

  • Experience in designing, building, implementing, and supporting security monitoring solutions is a plus

Minimum knowledge, skills, and abilities required of the position:

  • Demonstrated technical engineering and process management skills and the ability to advocate and support positive transformation within the broader information technology organization

  • Knowledge of cloud monitoring strategies and techniques

  • Knowledge of Data Loss Prevention practices and procedures

  • Broad knowledge of multiple UNIX OS platforms and Windows-based operating systems

  • Well-versed in security operations, cyber security monitoring, intrusion detection, and secured networks

  • Strong knowledge of security ramifications of energy related regulations (SOX, HIPAA, NERC CIP, FERC, and NRC Nuclear Cyber (10 CFR 73.54)

  • Knowledge of security, risk, and control frameworks and standards such as ISO 27001 and 27002, SANS-CAG, NIST, FISMA, COBIT, COSO, ITIL, and ATT&CK

  • Knowledge of current IT Security trends and best practices in technology, as well as monitoring best practices and tools

  • Working knowledge with scripting languages such as Perl or Python

  • Strong report writing and communication and ability to effectively communicate across the IT organization

  • The ability to work well independently or with a team

  • Available to travel

  • Capable of meeting deadlines

Minimum Education required:

Associate’s degree in computer science, cyber security or a related discipline or equivalent work experience.

Bachelor’s degree preferred.

Any certificates, licenses, etc., required for the position:

Certifications such as CISSP, CISM, CISA or GIAC certifications are a plus

#LI-JL1

#LI-Hybrid

Primary Location: Texas-The Woodlands

Job Function :Information Technology

FLSA Status :Professional

Relocation Option: No Relocation Offered

Union description/code :NON BARGAINING UNIT-NBU

Number of Openings :1

Req ID: 108040

Travel Percentage :Up to 25%

An Equal Opportunity Employer, Minority/Female/Disability/Vets. Please clickhere (https://jobs.entergy.com/content/EEO/?locale=en_US) to view the full statement.

WORKING CONDITIONS:

As a provider of essential services, Entergy expects its employees to be available to work additional hours, to work in alternate locations, and/or to perform additional duties in connection with storms, outages, emergencies, or other situations as deemed necessary by the company. Exempt employees may not be paid overtime associated with such duties.

Job Segment: Nuclear Engineering, Cyber Security, Information Security, Compliance, Network Engineer, Engineering, Security, Technology, Legal

DirectEmployers