Must Have:
A degree(s) in information technology, computer science or relevant field may be substituted per *** guidelines for certain years of experience.
Nine or more years of experience in cybersecurity or relevant experience.
Nice to Have:
CISSP, GIAC or similar certification
NERC Compliance Understanding
JOB DESCRIPTION General Overview: At a senior level, maintains and operates a variety of security measures and software that perform cybersecurity functions such as access control, monitoring or vulnerability assessment. Provides support to the end-user community and ensures they have up-to-date protection from malicious software and other cyber threats. Tests and recommends security measures to remediate and mitigate risk. Provides reports and other information related to information security issues as requested by management and other groups. Performs evaluation and analysis of security applications and systems and makes recommendations to management. Recommends best practices to ensure system security across the enterprise. This position utilizes in-depth knowledge of best practices and experience in own discipline to provide and improve services. Takes a new perspective to solve complex problems. Works independently and receives minimal guidance. Acts as a resource for colleagues with less experience. May direct the work of other staff members. x Performs risk assessments and recommends security measures. x Monitors security systems for possible intrusion. x Interacts with end users concerning malware, spam, vulnerabilities and any other cybersecurity issues. x Reviews and creates audit reports on user and system activities. x Reviews system generated logs for anomalies and takes appropriate actions. x Actively probes the network for new threats and risks. x Documents, deploys, reviews and maintains cybersecurity policies, standards, guidelines and procedures. x Plans and implements cybersecurity technology projects. x Provides business continuity/disaster recovery and risk analysis expertise. x Monitors security alerts on internet and other intelligence feeds and determines whether reported threats could impact *** information technology or operational technology systems. x Provides technical consulting to other groups on cybersecurity requirements. x Implements and ensures technical security systems including SIEM, VAT, network IDS, antivirus, web and email filters and firewalls. x Performs cybersecurity incident response activities. x Documents and maintains objective evidence to demonstrate NERC CIP regulatory compliance. x Creates and delivers security training materials and classes for asset owners, software developers and system administrators. x Provides oversight regarding compliance with security regulations, standards and laws. x For incumbents performing as a Cyber Security Coordinator (CSC) A CSC is responsible for the following: x Works with the NERC Compliance Department and Cybersecurity Department to ensure that the necessary processes and procedures applicable to each NERC CIP system are developed and implemented within their respective group; reviews projects relating to the NERC CIP systems which may have a regulatory impact, and makes sure the drawings and documents for that system are updated and stored as required; coordinates NERC compliance implementation, communication, and ensures that users of the respective systems have the necessary training; continually monitors implementation efforts and reporting potential violations to the NERC Compliance Manager and respective management; communicates with the Cybersecurity Manager concerning cybersecurity concerns or actual incidents; and maintains documentation of objective evidence, including Reliability Standard Audit Worksheets (RSAWs) to demonstrate NERC CIP regulatory compliance. This general overview only includes essential functions of the job and does not imply that these are the only duties to be performed by the employee occupying this position. Employees will be required to follow any other job-related instruction and to perform any other job-related duties requested by supervisor or management. Minimum Qualifications: Nine or more years of experience in cybersecurity or relevant experience. A degree(s) in information technology, computer science or relevant field may be substituted per *** guidelines for certain years of experience. Driver s license Preferred Qualifications: CISSP, GIAC or similar certification Knowledge, Skills and Abilities: x Knowledge of business continuity planning and disaster recovery x knowledge of anti-virus and anti-spam technologies x Knowledge of technology asset management x Knowledge of technology hardware and software platforms and systems x Skill in analytical and technical documentation x Skill in verbal and written communication x Skill in articulating complex, technical information to both technical and non-technical audiences x Skill in analyzing significant volumes of detailed information and understanding the security implications x Skill in understanding complex systems across diverse technical platforms x Intermediate skill level in Microsoft office and software update tools x Advanced skill level in network security and web filtering software x Advanced skill level in security vulnerability scanning tools x Ability to balance and manage competing high priority work demands x Ability to build relationships and foster teamwork x Ability to work in a team environment x Ability to conduct sensitive security investigations and maintain confidentiality Work Environment: x Majority of work hours are spent in an office environment x May require working in noisy environments in the vicinity of heavy equipment x Work involves weekends, holidays and non-standard hours x Work involves providing 24/7/365 on-call support on a rotating basis x Work involves traveling and lodging out of town Physical Demands: x Work involves frequent finger/hand manipulation in using a keyboard and mouse
