Get Into Energy Jobs

Job Information

Ameren ICS Security Analyst in St Louis, Missouri

If end date is listed, the posting will come down at 12:00 am on that date:

About The Position

• Manages the daily operations, health and maintenance of Ameren’s cybersecurity technology portfolio.

• Maintains a deep understanding of the threat landscape and ensures cybersecurity technology is effectively configured to detect threats.

• Ensures that cybersecurity plans, controls, processes, standards, policies and procedures are aligned with Ameren IT and cybersecurity standards.

• Develops, maintains and communicates Ameren’s digital risk frameworks, governance models and compliance codes and standards.

Key responsibilities include:

• Works within a single security program, area or process, and understands the impact of actions on closely related programs.

• Secures and hardens organization’s enterprise solutions (e.g., applications, servers and networking systems) to protect the organization.

• Supports network and endpoint antivirus, HIPS, disk encryption, and data loss prevention solutions.

• Continuously monitors networks for attacks, malicious software, intrusions and threats.

• Develops proficiency in single security process (e.g., network or endpoint security prevention and detection techniques).

• Works with and supports attack and penetration tools and techniques for all systems and works with the business segments to implement remediation.

• Develops weekly/monthly reports (e.g., vulnerabilities metrics data), and provides input into action planning for senior management review.

• Drafts trends/patterns summary reports; supports execution and implementation of threat intelligence programs.

• Develops application security requirements for development teams, supports application security tools, processes, projects and programs.

• Works with a single (or multiple closely related) business segment to develop and recommend support plans for attack and penetration tools and techniques for control systems.

• Implements remediation plans.

• Tracks employees’ following and understanding of security policies and procedures; makes recommendations for changes.

• Provides cybersecurity and network support for operational systems.

• Provides input into development and definition of cybersecurity processes, standards and policies development.

• Develops and maintains risk mitigation frameworks.

• Develops and maintains surveillance use cases to monitor effectiveness of controls.

• Prepares for internal and external audits.

• Evaluates risks and impacts of new technologies within the Digital and cybersecurity environment.

• Supports direct delivery and execution of cybersecurity engagement activities.

• Develops reports and communication materials on areas of cybersecurity specialization.

• Participates in security and privacy training and education including development of security alerts.

• Detects and uses judgment when participating in incident response activities.

• May be required to provide on-call support for a 7x24x365 operation.

• Coaches less experienced co-workers and provides feedback to enhance skills, knowledge and work performance.

Qualifications

• Bachelor’s degree required, preferably in engineering, mathematics, computer science, business, or cybersecurity.

• 2+ years of relevant experience.

• Will consider candidates without a degree if they have shown/demonstrated having 2+ additional years of equivalent, relevant experience in the tools, systems, and initiatives leveraged by Ameren.

• Professional certification (e.g. Security+, Network+, OSCP, GIAC, CDH) preferred.

In addition to the above qualifications, the successful candidate will demonstrate:

• Working analytical skills

• Knowledge of managing and securing technologies of Platform.

• Working knowledge of defensive techniques — authentication mechanisms, intrusion mechanisms, networking. Working knowledge of common security tools.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, ethnicity, age, disability, genetic information, military service or status, pregnancy, marital status, sexual orientation, gender identity or expression, or any other class, trait, or status protected by law.

DirectEmployers