Xcel Energy IDS/IPS Cyber Security Engineer Job in Denver, Colorado
Location(s): CO - Denver; MN - Minneapolis
Are you looking for an exciting job where you can put your skills, talents and education to work at a company you can feel proud to be a part of? Do you want a workplace that will challenge you and offer you opportunities to learn and grow? A professional position at Xcel Energy could be just what you’re looking for.
Xcel Energy’s ESS team is responsible for all aspects of security including Cyber, Physical, Enterprise Resiliency,
Governance and Risk services. This dynamic team is growing and evolving to meet the needs of the enterprise while adjusting to the ever changing world we live in. Come join this high-energy team in building a best-in-class Cyber Security program tasked with protecting the critical infrastructure Xcel Energy’s customers depend on.
We are hiring a Cyber Security Network Engineer - to be based out of Denver, CO or Minneapolis, MN.
The successful candidate will have experience working with Information Technology (IT) projects to build-in cybersecurity best practices and managing cyber security controls in IT environments (e.g. cyber security engineering, networking and communications). Ability to performing network and application security administration in IT environments and understand threat assessments while working with commercial and open source security applications, and technologies. Aptitude for understating the Common Vulnerabilities and Exposures. Have programming/scripting experience, and experience as a cybersecurity specialist in a regulated IT environment.
The Cyber Security Network Engineer will assist leadership in effectively developing, implementing, communicating, and executing the Xcel Energy Enterprise Security Services strategy. Assist in steering the Cyber Security Engineering Team efforts which are grounded in prevention and management of advanced threat protection, security, and application flows to the environment. Will work closely with key business partners, internal technology and project teams and external vendors to research, deploy and configure technologies and processes that strengthen the defenses of the enterprise. Will remain knowledgeable about security issues, vulnerabilities, regulatory and legal changes, and security standards that may impact information security.
Work with business units in the planning, designing, implementing, automating and maintaining the managed intrusion detection/prevention systems (IDS/IPS) and associated network defense technologies such as firewall systems and associated software to support these environments.
Ability to tune IDS/IPS systems
Create and modify IDS/IPS signatures
Review logs with ability to analyze and remediate IDS/IPS signatures and associated security configurations.
Conduct testing and necessary troubleshooting of IDS/IPS systems, security policies and rules to guarantee functionality and optimize system performance.
Respond to and completing change request actions that include documenting, scheduling, and implementing changes as necessary around IDS/IPS.
Perform periodic IDS/IPS security compliance reviews, risk assessments, and configuration testing.
Provide specifications and detailed schematics for IDS/IPS systems and network architectures.
Provide specific detailed information for hardware and software selection, as well as implementation techniques and tools for the most efficient security solution to meet business needs including present and future capacity, feature, and secure control requirements.
Respond to outages along with resolving and documenting priority incident tickets.
Assist in the investigation of security incidents as required, recommend corrective actions and articulate process improvements.
Provide reporting to prove compliance with regulations and audit requests.
Providing training to other Cyber Security Engineers and business partners
Bachelor's degree (preferably with a concentration in Computer Science, Technology, Information Security,
Information Systems or Engineering) or the equivalent combination of education, training and professional experience.
Minimum of 5 years’ experience in Cyber Security including 3 years direct experience in Cyber Security Engineering. For the Senior level, a minimum of 8 years of experience including 5 direct years of Cyber Security Engineering is required.
Strong cyber security focus towards computer networking, operating systems, applications, and endpoints
Strong IDS/IPS investigative, troubleshooting and analysis expertise.
Strong conflict resolution and negotiation skills.
Demonstrated verbal/written communication and presentation skills.
Demonstrated leadership skills.
Proven problem solving and business risk analysis skills.
Obtained and/or willing to obtain and maintain industry relevant security certifications
Excellent verbal, written, and interpersonal skills.
Ability to organize, prioritize, and be managed at macro-level.
Ability to multi-task on multiple projects simultaneously.
Ability to transfer knowledge, cross-train, or instruct when working with others.
Must be able to sustain and operate in fast-paced, team-oriented environment.
Proficiency with Microsoft Office Suite.
Expert level troubleshooting with network capture/analysis packages such as Wireshark.
Solid understanding of information security policies, standards, industry best practices, and frameworks. (ISO 27K, NIST 800-53, 800-94, NIST 800-41, FISMA, BITS etc.).
Experience working with regulatory programs such as SOX, NERC CIP, HIPAA, etc.
As a leading combination electricity and natural gas energy company, Xcel Energy offers a comprehensive portfolio of energy-related products and services to 3.4 million electricity and 1.9 million natural gas customers across eight Western and Midwestern states. At Xcel Energy, we strive to be the preferred and trusted provider of the energy our customers need. If you’re ready to be a part of something big, we invite you to join our team.
Posting Notes: CO - Denver || CO - Denver; MN - Minneapolis || United States (US) || Utilities and Corporate Servic || 56130:Cyber Security || Full-Time || Non-Bargaining ||
Requisition Number: 13152
Equal Opportunity Employer: Minority/Female/Disability/Veteran
Individuals with a disability who need an accommodation to apply please contact us at email@example.com