Cyber Security Analyst, Sr.

Electric Reliability Council Of Texas Austin , TX 78719

Posted 4 months ago

Are you an ERCOT Employee? If so please log in to Workday to apply.

Provides support in solving all phases of a large and complex Critical Infrastructure Security (CIS) program. Provides a full range of analytic duties using knowledge of multidisciplinary security concepts, principles and practices applicable to security administration. Responds to, and reports on, IT security incidents, providing initial assessment of impact severity and types of incidents being addressed.

Performs periodic operating system and application security assessments of simple-to-moderate complexity and review for evidence of vulnerability or compromise and assisting with the implementation of resolution. Monitors computing resources for evidence of compromise and report security incidents. JOB DUTIES Understands and applies principles, theories and concepts related to the profession and ERCOT's culture.

Exercises judgment within defined procedures and practices to determine appropriate action. Impact is generally limited to specific assignments or projects. May respond to inquiries and/or provide assistance and/or guidance to lower level workers.

ADDITIONAL JOB DUTIES Implements, monitors and maintains preventive and detective controls Monitors computing resources for evidence of compromise and report security incidents Analyzes compromised computing resources of routine to moderate complexity, to assist in improving security design and policy compliance, and to understand and document new threat profiles Develops and implements mitigation strategies for threat reduction based on monitoring of IT systems Researches, analyzes, designs, tests and implements new or vendor supplied security software solutions Provides up to date documentation and procedures on security software product administration Assists in the development of technical security standards to support policies, including creating, coordinating and monitoring standards and incident investigation procedures Works as a member of the Incident Response Team and perform analysis of security breaches Studies and grows current knowledge of security issues Supports the development, documentation, deployment, review and maintenance of information security policies Communicates information security requirements and principle Ensures compliance with security related regulatory and corporate requirements Designs cyber security monitoring program, including technologies and processes Investigates and analyzes computing resources for evidence of compromise and reports security incidents Enforces security policies and procedures by administering and monitoring security profiles, reviews security violation reports and investigates possible security exceptions, updates, and maintains and documents security controls Functions as a member in the security groups Incident Response Team Analyzes complex compromised computing resources to improve security design and policy compliance, and to anticipate and prevent new threat profiles Develops and defends new technical security standards to support policies, including creating, coordinating and monitoring standards and incident investigation procedures Performs periodic and complex operating system and application security assessments to determine the likelihood of vulnerability or compromise, and prepares possible resolutions for implementation Analyzes security breaches Expands expert knowledge of security issues Reports issues to the department personnel responsible for the resource Serves as a mentor for junior security teammates EXPERIENCE Requires minimum 5 years related work experience in excess of degree requirements Splunk (Preferred) Palo Alto (Preferred) EDUCATION Bachelor's Degree : Cyber Security, Computer Science, MIS, or related discipline (Preferred) or a combination of education and experience that provides equivalent knowledge to a major in such fields is required CERTIFICATION CISSP Certified Information Systems Security Professional (Preferred) CIST Certified Identity and Security Technologist (Preferred) PMP Certification (Preferred) REQUIRED for all levels: Must be able to obtain and maintain U.S. Government SECRET clearance Position level is open to a level 2 or a Senior depending on the candidate's previous experience that is identified.

Are you an ERCOT Employee? If so please log in to Workday to apply.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Sr Cyber Security Risk Assessor Governance Risk And Compliance

HP Inc

Posted 1 week ago

VIEW JOBS 10/9/2019 12:00:00 AM 2020-01-07T00:00 The HP Cybersecurity Sr. Risk Assessor is responsible for end-to-end cyber security risk management, including risk identification, analysis and evaluation, identifying remediation requirements, and tracking associated risks. Assessment targets include third parties as well as internal business assets. In addition to conducting the risk assessment, the Sr. Risk Assessor drives continual process and tool improvements. The position reports to the Cybersecurity Risk Manager and works closely with teams across Cybersecurity, IT, Privacy, Legal, Procurement, and Businesses to help protect HP's assets. Responsibilities * Ensure timely execution of assigned risk assessments. * Identify issues and root causes including oversight and facilitation risk mitigation plans in alignment with HP Policy & Standards * Partner with management stakeholders (including at minimum: Business Units, Supply Chain, IT, Enterprise Risk Management, Procurement) to effectively drive effective, proactive risk management. * Prepare and present risk management reports, scorecards, and briefings as required * Review key metrics and overall performance with internal stakeholders and third parties * Support internal & external audit readiness * Monitor regulatory changes, corporate updates, and geo-political changes and ensure HP cyber security compliance * Support the development and implementation of HP Policy, standards, guidelines, tools, and documentation for consistent execution of risk management activities * Drive development, implementation and integration/automation of risk management tools and processes Qualifications * Bachelor's Degree in Information Security, Cyber Security, or related * 6 years cyber security experience * Demonstrated experience conducting risk assessments, including internal information assurance and third party providers * Experience analyzing SOC reports, application testing reports, SAQ's * Experience with risk management frameworks, methodologies and tool * Strong governance, risk & compliance background * Understanding of ISO 27001/27002/27005, NIST Cybersecurity Framework, PCI DSS, COBIT, and ITIL frameworks, SOC reports, OWASP, pen testing. * Experience utilize API's to enable integration/automation across tools * Experience developing workflows * Experience with PowerBI to create reports and dashboards * Experience with data analytics tools * CRISC certification required; CISSP highly desirable; CISA, CISM desirable * Excellent interpersonal, written, and oral communication skills. * Ability to work in a team as well as independently in a fast-paced, multi-tasking, global environment. * Excellent prioritization and multitasking capabilities. * Highly motivated self-starter who demonstrates initiative. Responsibilities may vary over time and include, but are not limited to, those listed. #Li-Post HP Inc Austin TX

Cyber Security Analyst, Sr.

Electric Reliability Council Of Texas