Get Into Energy Jobs

Job Information

Entergy Senior Information Security Analyst in The Woodlands, Texas

Senior Information Security Analyst

Date: Apr 26, 2021

Legal Entity: Entergy Services, LLC

Description:

This role may be filled in Little Rock, AR or The Woodlands, TX

The official title for this role will be Info Sec Analyst Sr

Brief Position Description

The Senior Analyst - Consolidated Security Operations Center (CSOC) is responsible for effective execution of 24/7 monitoring operations and incident management of cyber and physical security. Through maintenance and supervision of security programs, the Consultant Sr executes on guidance and ensures all processes and procedures are followed within CSOC teams.

Key responsibilities include:

  • Direct eyes-on-glass monitoring and triage for events and incidents related to security operations in the corporate and OT environments

  • Monitor security events from the cyber security monitoring tools, end user notifications, etc. to determine security risk and appropriate response

  • Ensure performance of CSOC complies with specific requirements of North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP)

  • Implement strategy and technology roadmap for the CSOC function

  • Deliver process excellence and maturity to push the envelope on delivering a world-class CSOC function for all information and operational technology assets, including power generation units, electric substations, SCADA, distribution automation, and advanced metering infrastructure (AMI)

  • Assist in forensic investigations, as necessary

  • Participates in response, triage, and escalation of security events affecting the company's information assets, OT and IT Security operations, or service provider as necessary

  • Deliver on the response process in order to minimize the impact of risks

  • Responsible for after hours and weekend activities necessary to support the business needs

  • Assist with maintenance of KPIs within the CSOC team to ensure a high level of productivity, supportability and operational readiness

  • Assist with project related work as required

  • Assist with digitization efforts to automate routine playbooks and identify opportunities for automation

  • Participate in training and exercises to ensure CSOC team proficiency

  • Participate in post-incident reviews to identify lessons learned and best practices

Education needed

Associate’s degree in computer science, cyber security, or a related discipline or equivalent work experience. Bachelor’s degree preferred.

Experiences needed

  • Five years of cyber security experience across multiple disciplines (monitoring, log collection, event correlation, configuration of security systems, behavior analytics, networking, application security, secure database operations, risk management, etc.)

  • Three years of hands on experience working with Security Information Event Management (SIEM) systems and incident response activities in a 24x7 SOC environment

  • Experience working with a team required to operate in 24x7 shifts

  • Experience working with outsourced teams

  • Exposure to operational best practices like ITIL

  • Ability to work effectively with team members and with customers

  • Strong organizational and time management skills

Minimum knowledge, skills, and abilities required of the position

  • Hands-on technical engineering and process management skills and the ability to advocate positive transformation within the broader information technology organization

  • Commitment to customer service with strong oral and written communication skills

  • Knowledge of multiple UNIX/Linux and Windows-based operating systems

  • Proven knowledge about security incident orchestration

  • Strong knowledge on:

  • Security operations

  • Cyber security monitoring

  • Intrusion detection techniques

  • Knowledge of security, risk, and control frameworks and standards such as ISO 27001 and 27002, NIST, FISMA, or COBIT

  • Understanding of current IT Security trends and best practices in technology, as well as monitoring best practices and tools

  • Knowledge with scripting languages such as Perl or Python

  • Self-motivated, with ability to manage and follow up on multiple tasks simultaneously

  • Capable of meeting deadlines

Any certificates, licenses, etc., required for the position

GIAC Certifications preferred but not required

Primary Location: Texas-The Woodlands

Job Function :Information Technology

FLSA Status :Professional

Relocation Option: No Relocation Offered

Union description/code :NON BARGAINING UNIT-NBU

Number of Openings :1

Req ID: 102303

Travel Percentage :Up to 25%

An Equal Opportunity Employer, Minority/Female/Disability/Vets. Please clickhere (https://jobs.entergy.com/content/EEO/?locale=en_US) to view the full statement.

WORKING CONDITIONS:

As a provider of essential services, Entergy expects its employees to be available to work additional hours, to work in alternate locations, and/or to perform additional duties in connection with storms, outages, emergencies, or other situations as deemed necessary by the company. Exempt employees may not be paid overtime associated with such duties.

Job Segment: Information Security, Corporate Security, Engineer, Risk Management, Technology, Security, Engineering, Finance

DirectEmployers