Information Security Engineer III or Sr (Network Security)

Posting End Date:

–

*This position will be filled as an Info Sec Engineer III or Sr depending on the candidates experience and qualifications*

Brief Position Description

This position assists in securing Entergy’s computer network from internal and external threats across corporate IT, Operational Technology (OT), Wireless, and office locations & physical assets. The engineer will assist with execution of processes and automation opportunities to monitor, control and detect malicious or anomalous network traffic, maintain established level of services and network security policies, and remediate any gaps to achieve optimal level of security in the organizations computer network. The engineer will also work with the Manager and Consultant Sr to ensure that network security operations are maintained to be audit ready in compliance with NRC Nuclear Cyber & NERC CIP regulations.

Key responsibilities include:

• Assist with implementation of the strategy, roadmap and delivery plans for Network Security in coordination with the Network Architecture and Engineering functions
• Execute on day-to-day operations and maintenance of all the systems/components involved in Network Security, as directed
• Maintain network security devices and technologies such as firewalls, VPNs, Intrusion Detection Systems (IDS), certificate management, packet brokers, DNS, DHCP and software defined networks (SDN) and network segmentation technologies
• Maintain Certificate Authorities and Certificate validation infrastructures
• Assist with implementation of email security & monitoring solutions
• Assist with compliance efforts for network security and operations, specifically requirements of North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) and Nuclear Regulatory Commission (NRC) Nuclear Cyber (10 CFR 73.54)
• Support process excellence on delivering world-class network security for all corporate and operational technology needs, including power generation units, nuclear plants, electric substations, SCADA, distribution automation, and advanced metering infrastructure (AMI)
• Monitor network security trends and suggest changes to policy, procedures, and tools to enhance Entergy’s network security posture
• Track metrics for the effectiveness and maturity of network security operations
• Support digitization efforts to automate routine playbooks

Experience needed

• Information Security Engineer III: 2-3+ years of demonstrated experience in network security administration including enterprise firewall management, VPN, forward and reverse proxy, packet brokers, and certificate management.
• • Checkpoint/Palo Alto/Fortinet/Cisco firewall, Symantec/Bluecoat Proxies, Venafi certificate management, Gigamon, F5-Big IP ASM, APM, LTM, GTM, Tufin SecureTrack and SecureChange preferred.
• Information Security Engineer Sr: 3-5+ years of demonstrated experience in network security administration including enterprise firewall management, VPN, forward and reverse proxy, packet brokers, and certificate management.
  • Checkpoint/Palo Alto/Fortinet/Cisco firewall, Symantec/Bluecoat Proxies, Venafi certificate management, Gigamon, F5-Big IP ASM, APM, LTM, GTM, Tufin SecureTrack and SecureChange preferred.
• For Sr: Minimum of 1 year of hands on experience managing network security operations
• Hands on experience managing network security operations
• Experience with complex network and firewall environments including Software Defined Networks (SDN)
• Hands on experience implementing Network Security solutions
• Experience implementing emerging industry-standard PKI Technologies
• Experience working with outsourced teams and vendors
• Strong organizational and time management skills
• Experience working in partnership with colleagues throughout the enterprise and on collaborative teams

Minimum knowledge, skills, and abilities required of the position

• Understanding of general networking and design (Firewalls, DNS, DHCP, VPNs, Routing, Load Balancing, TCP/IP, Packet trace and analysis)
• Understanding of various industry standards including ISA, ANSI, NEMA, NERC, IDC, NEC and NIST standards; specific focus on NIST 800-82, NERC-CIP, IEC-62443 standards would be preferred
• Able to use technical engineering and process management skills
• Knowledge of multiple UNIX OS platforms and Windows-based operating systems
• Knowledge in security operations, cyber security monitoring, intrusion detection, and secured networks
• Understanding of security ramifications of energy related regulations (SOX, HIPAA, NERC CIP, FERC, and NRC Nuclear Cyber (10 CFR 73.54)
• Understanding of security, risk, and control frameworks and standards such as ISO 27001 and 27002, SANS-CAG, NIST, FISMA, COBIT, COSO and ITIL
• Knowledge of current IT Security trends and evolutions in networking such as Software Defined Networks (SDN)
• Understanding of scripting languages such as Perl or Python
• Strong communication skills
• Available to travel
• Self-motivated, with the ability to manage multiple tasks simultaneously
• Capable of meeting deadlines

Education

Associate’s degree in computer science, cyber security or a related discipline or equivalent work experience. Bachelor’s degree preferred.

Any certificates, licenses, etc., required for the position

ISACA certification, such as CISSP, CISM, CISA is a plus

Relevant vendor credentials offered by companies such as Cisco is a plus

#LI-JL1

Primary Location: Texas-The Woodlands
Job Function: Information Technology
FLSA Status: Professional
Relocation Option: No Relocation Offered
Union description/code: NON BARGAINING UNIT-NBU
Number of Openings: 1
Req ID: 103590
Travel Percentage:Up to 25%

An Equal Opportunity Employer, Minority/Female/Disability/Vets. Please click here to view the full statement.

WORKING CONDITIONS: 

As a provider of essential services, Entergy expects its employees to be available to work additional hours, to work in alternate locations, and/or to perform additional duties in connection with storms, outages, emergencies, or other situations as deemed necessary by the company. Exempt employees may not be paid overtime associated with such duties.