Security Architect, Sr (Cloud Security)

Posting End Date:

–

***THIS IS A HYBRID (Remote & Onsite) POSITION***

***This position may be filled in The Woodlands TX, New Orleans LA, Jackson MS, or Little Rock AR. Other locations within Entergy’s service territory may be considered***

Job Summary

The Sr. Security Architect utilizes their knowledge of IT and information security engineering to lead and/or participate in the development of assigned projects or solutions. The Sr. Security Architect focuses on implementing security requirements for assigned projects and solutions while maintaining compliance with internal and externals policies and regulations.

The Sr. Security Architect works closely with the Enterprise Security Architect to ensure projects and solutions are consistent with Entergy’s Information Security strategy and roadmap. The Sr. Security Architect provides clear and concise direction to project stakeholders and acts as the “face” of information security for those teams.

Key Responsibilities

• Oversee cloud security solutions across lifecycle strategy, design, implementation, and operations
• Participate, lead, and jointly deliver security evaluation reports on cloud providers (Azure, AWS, GCP), cloud native platforms (PCF, Docker, Kubernetes, etc.), and Software as a Service solutions
• Establish security requirements for cloud-based solutions by evaluating business strategies and requirements, researching cloud infrastructure security standards such as NIST CSF and NERC CIP
• Provide domain expertise in both public and private cloud and enterprise technology
• Identify and deliver appropriate controls based on industry standards (e.g. CCM) to drive cloud security solutions framework based on business risk and cloud native threats
• Continually evaluate new threats in the cloud, to identify the impact on IT and Business to develop and implement security controls
• Provide recommendations for improvement and risk reduction by assessing clients’ cloud security posture; and act as a change agent with customer organizations to oversee the vulnerability improvements with our clients’ existing IT staff as well as 3rd party vendors support our clients (most often managed IT service providers)
• Utilize Information Security reference architectures to develop secure solutions and designs for projects
• Provide input to policies, procedures, standards, processes, and templates that are consistent with the Information Security strategy and roadmap
• Participate in security and non-security projects to ensure that security requirements are defined and implemented
• Perform assessments and threat modeling of existing and emerging technologies to ensure they meet Entergy security and compliance requirements
• Evangelize and advocate for information security with stakeholders
• Monitor emerging trends in Information Security and technology and make or suggest changes to Entergy’s security posture as necessary

Experience needed

• 5+ years of full-time dedicated experience leading Cloud Security focused roles on delivering security on cloud native, distributed architectural solutions in complex environments is required
• 3+ years of experience in defining security standards and reference architectures used to guide technical resources in secure system implementation and configuration for enterprise cloud systems and consumption of public cloud is a plus
• Familiarity with predominant public cloud providers (AWS, Azure, GCP)
• Understanding of Industry trends in cloud technologies for public, private and hybrid cloud deployments
• One or more years in a complex and highly regulated industry (e.g., utilities, financial services, healthcare, etc.)
• Experience working with outsourced teams
• Organizational and time management skills
• Experience in working in partnership with colleagues throughout the enterprise

Minimum Knowledge, Skills, and Abilities needed

• Familiarity with technologies commonly utilized within an enterprise IT and OT environment
• Strong knowledge of multiple information security domains with an emphasis in Cloud services (AWS, Azure, O365, etc.)
  • Operating systems (*nix, Windows, IOS, etc.)
  • Networking and network security
  • APIs
  • Secure coding/application security
  • Vulnerability Management
  • SIEM
  • Identity and Access Management
  • Penetration testing
  • Scripting (Python, PowerShell, Perl, etc.)
  • Security process and control development
  • Endpoint protection technology
  • OT systems and protocols
  • Smart Grid technology
• Some knowledge of IT Security regulations and guidance such as NIST, FISMA & ISO27001
• Familiarity with The Open Group Architecture Framework (TOGAF), Open Web Application Security Project (OWASP), Open Security Architecture, National Institute of Standards and Technology (NIST) Cloud Computing Reference Architecture, or other architecture frameworks
• Able to be hands-on with technical engineering and process management skills and the ability to advocate positive transformation within the broader information technology organization
• Able to design & develop reference architectures
• Able to design and develop an API based services layer for consistent integration with the security systems
• Knowledge of security ramifications of energy related regulations (SOX, HIPAA, NERC CIP, FERC, and NRC Nuclear Cyber (10 CFR 73.54)
• Knowledge of security, risk, and control frameworks and standards such as ISO 27001 and 27002, SANS-CAG, NIST, FISMA, COBIT, COSO and ITIL
• Strong writing and analytic ability
• Strong ability to communicate across the enterprise concisely and effectively
• Available to travel
• Self-motivated, with the ability to manage and follow up on multiple tasks simultaneously
• Capable of meeting deadlines

Education needed

Bachelor’s degree in computer science, cyber security, information systems, engineering or a related discipline or equivalent work experience. Master’s degree preferred.

Certifications

• ISACA or ISC2 certification, such as CISSP, CISM, CISA preferred
• OSCP preferred
• Relevant vendor credentials offered by companies such as Amazon AWS, Microsoft Azure, etc. preferred

#LI-JL1

Primary Location: Texas-The Woodlands
Job Function: Information Technology
FLSA Status: Professional
Relocation Option: No Relocation Offered
Union description/code: NON BARGAINING UNIT-NBU
Number of Openings: 1
Req ID: 105429
Travel Percentage:Up to 25%

An Equal Opportunity Employer, Minority/Female/Disability/Vets. Please click here to view the full statement.

WORKING CONDITIONS: 

As a provider of essential services, Entergy expects its employees to be available to work additional hours, to work in alternate locations, and/or to perform additional duties in connection with storms, outages, emergencies, or other situations as deemed necessary by the company. Exempt employees may not be paid overtime associated with such duties.