Responsible for the development, design, implementation, maintenance and integration of state-of-the-art cyber security tools in defense and protection of Industrial Control Systems and SCADA systems and corporate computing assets from attack or misuse. Maintains current working knowledge of FERC and NERC CIP security regulations. Responsible for implementation of required security solutions as scheduled and within budgetary constraints. Functions as third tier support for all implemented security controls and systems, such as but not limited to, firewalls, intrusion prevention, end point protection, SIEM, etc.
ESSENTIAL DUTIES & RESPONSIBILITIES
Designs, implements and supports cyber security controls in compliance with all relevant regulations associated with NERC Critical Infrastructure Protection (CIP), HIPAA and Sarbanes Oxley
Works in c ollaboration with other groups to develop standardized security practices, policies and procedures to support the development of high quality, tightly integrated, consistently available, secure, flexible and fault-tolerant transmission network architecture while considering aspects of cyber security and associated protocols and processes
Evaluates, builds, validates and verifies system security designs that integrate security controls to achieve the desired degree of protection commensurate with the adverse impact that loss, compromise or misuse of the Bulk Electric System (BES) Cyber Assets could have on the reliable operation of the system
Assists in designing defensive security architecture by establishing and monitoring the logical and physical boundaries that control data transfer between boundaries based on business need and security requirements
Researches emerging technologies in support of security enhancement and development efforts
Provides consultative services to secure integration of new or modified assets in the company network infrastructure by assisting with identifying requirements and the evaluation, selection and implementation of vendor products and services
Selects, designs, tests and integrates IT security solutions such as QRADAR SIEM, Rapid 7 Vulnerability Management, Firewalls, IDS/IPS, Web Sense DLP, Identity and Access Management, Automated Configuration Management and Monitoring
Assists in developing standard monitoring tool configuration and deployment
Prepares preventative maintenance schedules and backup program necessary to ensure robust network environment including software upgrades and regular maintenance on infrastructure or security related devices
Coordinates with others in the department and engineering customers to apply fixes and patches in the event of a security breach
Assists in testing controls, modifies configurations to strengthen the system and remediates any deficiencies identified
Assists in technology security assessment requests including developing responses to internal and external audits, penetration tests and vulnerability assessments
Creates supply chain controls for vendor development, configuration, shipping and storage assessment
Participates in 24x7 on-call rotation
Mentors junior level team members
Bachelor's degree in Computer Science or related technical area with a minimum of five (5) years of experience in Network Security or Information Technology, or equivalent related experience.
Minimum of three (3) years of experience (in any combination) of the following areas:
Large scale network environment
Managing vendor relationships including product evaluation and licensing knowledge
Designing, developing, implementing and administering security policies and standards
Implementing and administering an information security program focused on compliance with legal and regulatory standards such as NERC Critical Infrastructure Protection
Infrastructure strategic planning and development
Minimum of three (3) years of experience with industrial control systems in an energy utility environment preferred:
Designing critical communications links for mission critical utility applications such as Transfer Trip, SCADA, Operations Centers, Substation and Power Houses preferred
Designing communications links for IP convergence planning and implementation of SCADA over IP, IP based Security and NERC CIP compliance preferred
Designing and implementing large scale Transmission networks preferred
Expert knowledge of network security concepts and technologies, including but not limited to firewalls, IDS/IPS, proxy servers, access control systems, Checkpoint preferred
Experience implementing Cisco Network Access Control (NAC) and Access Control Server (ACS) preferred
Possesses and maintains two or more security certifications GAIC, GPEN, GCIA, GCED, CEH. CISSP and GCIH preferred
Possesses and maintains one or more product certifications such as Checkpoint CCSE, Checkpoint CCSPA, CISSP, GAIC , CEH, Checkpoint CCSA, Tripwire Operator, etc.
Possesses experience with Tripwire or equivalent configuration management technology preferred.
Expert use of MS Office suite, including Visio
Sound judgment; strong analytical and logical problem solving skills
Must possess good communication skills both written and verbal
Strong interpersonal communication and relational skills that support constructive collaboration with multiple business organizations
Ability to participate in a team, manage multiple tasks and contribute to a work environment that is recognized for organization, timeliness, cost-effectiveness, accuracy and results
Adaptable and reliable in the face of conflict, crisis or changing priorities