Job Description

Job Description

At ERCOT, our diverse and dynamic work environment provides a platform on which employees can work together to build the future of the Texas power grid and wholesale market utilizing the latest technologies and resources. We encourage you to join our talented, dedicated workforce to develop world-class solutions for today and tomorrow's energy challenges while learning new skills and growing your career.ERCOT is committed to fostering diversity and inclusion at all levels of our company. It is the cornerstone of our corporate values of accountability, leadership, innovation, trust, and expertise. We accept and celebrate those that join us and recognize that individuals with a wide variety of talents, ideas, and experiences propel the innovation that drives our success. A diverse and inclusive workforce strengthens us and allows for a collaborative environment to solve the challenges that face our industry today and in the future.ERCOT offers the flexibility to work both in and out of the office within the state of Texas, providing our employees with an enhanced work life balance.At ERCOT, our diverse and dynamic work environment provides a platform on which employees can work together to build the future of the Texas power grid and wholesale market utilizing the latest technologies and resources. We encourage you to join our talented, dedicated workforce to develop world-class solutions for today and tomorrow's energy challenges while learning new skills and growing your career.ERCOT is committed to fostering diversity and inclusion at all levels of our company. It is the cornerstone of our corporate values of accountability, leadership, innovation, trust, and expertise. We accept and celebrate those that join us and recognize that individuals with a wide variety of talents, ideas, and experiences propel the innovation that drives our success. A diverse and inclusive workforce strengthens us and allows for a collaborative environment to solve the challenges that face our industry today and in the future.ERCOT offers the flexibility to work both in and out of the office within the state of Texas, providing our employees with an enhanced work life balance.Cyber security plays a key role in designing security systems for new and innovative business solutions that support the operation of the Texas electric power grid and wholesale markets. Come join our team as we innovate and protect our critical infrastructure systems through the latest cyber security tools and technologies.Security Controls Analyst provides support in solving all phases of a large and complex Critical Infrastructure Security (CIS) program. Provides a full range of analytic duties using knowledge of multidisciplinary security concepts, principles and practices applicable to security administration. Responds to, and reports on, IT security incidents, providing initial assessment of impact severity and types of incidents being addressed. Performs periodic operating system and application security assessments of simple-to-moderate complexity and review for evidence of vulnerability or compromise and assisting with the implementation of resolution. Monitors computing resources for evidence of compromise and report security incidents.JOB DUTIES

• Understands the basic principles, theories and concepts related to the profession and learns how to apply them within the ERCOT culture.
• Follows standard practices and procedures in analyzing situations or data from which answers can be readily obtained.
• Contributes to specific objectives and outcomes as directed.
• Strong understanding and experience with IT Change Management and Service Delivery processes.
• Focuses on enterprise vulnerability management across ERCOT.
• Analyze disparate data sources to prioritize vulnerability remediation.
• Assist in improving existing vulnerability management lifecycle.
• Knowledge of scanning and vulnerability analysis tools.
• Confidently relay vulnerability information to various technical and non-technical departments.
• Ability to analyze vulnerabilities (CVEs) to determine remediation prioritization as well as most effective remediation options.
• Assist in internal and external penetration testing engagements.
• Familiarity with implementing and monitoring secure configuration benchmarks.

ADDITIONAL JOB DUTIESCybersecurity Analyst Level 2:

• Researches, analyzes, designs, tests, and implements new or vendor supplied security software solutions
• Provides up to date documentation and procedures on security software product administration
• Assists in the development of technical security standards to support policies, including creating, coordinating, and monitoring standards and incident investigation procedures
• Reports issues to the department personnel responsible for the resource
• Coordinate's resolution efforts with CIS Manager for critical or serious incidents
• Serves as a member of the Incident Response Team and performs analysis of security breaches
• Studies and Increases current knowledge of security issues
• Works with other departments to implement security solutions
• Becomes primary SME for vulnerability assessment tools
• Potentially participates in the on-call rotation

Cybersecurity Analyst Senior Level:

• Researches, analyzes, designs, tests, and implements new or vendor supplied security software solutions
• Provides up to date documentation and procedures on security software product administration
• Assists in the development of technical security standards to support policies, including creating, coordinating, and monitoring standards and incident investigation procedures
• Reports issues to the department personnel responsible for the resource
• Coordinate's resolution efforts with CIS Manager for critical or serious incidents
• Serves as a member of the Incident Response Team and performs analysis of security breaches
• Studies and Increases current knowledge of security issues
• Works with other departments to implement security solutions
• Becomes primary SME for vulnerability assessment tools
• Potentially participates in the on-call rotation
• Escalates concerns with emerging vulnerabilities and potential exposure for remediation
• Enforces security policies and procedures by administering and monitoring security profiles, reviews security violation reports and investigates possible security exceptions, updates, and maintains and documents security controls
• Functions as a member in the security group's Incident Response Team
• Improves security design and policy compliance, and to anticipate and prevent new threat profiles
• Develops and implements mitigation strategies for threat reduction
• Provides guidance for enterprise patching to ensure efficacy of patching procedures and processes
• Performs periodic and complex operating system and application security assessments to determine the likelihood of vulnerability or compromise, and prepares possible resolutions for implementation
• Expands expert knowledge of security issues
• Reports issues to the department personnel responsible for the resource
• Serves as a mentor for junior security teammates

REQUIRED EXPERIENCE

• Requires minimum 2 years related work experience in excess of degree requirements

EDUCATION

• Bachelor's Degree: Cyber Security, Computer Science, MIS, or related discipline (Preferred)
• or a combination of education and experience that provides equivalent knowledge to a major in such fields is required

CERTIFICATIONS

• CISSP Certified Information Systems Security Professional (Preferred)
• GEVA (GIAC Enterprise Vulnerability Assessor), CVA (Certified Vulnerability Assessor), CompTia CNVP, CySA+ (Preferred)

Salary and level will be based on overall experience as determined by ERCOT.WORK LOCATION:

• This position is Hybrid. Employees will be required to be on-site in Taylor, TX at least once a week, or more, as needed based on the business needs as determined by management
• On-site schedules are flexible or may be rotated based on business needs as determined by the Manager
• Remote work is required to be performed from your Texas residence.
• Employees may opt to work on-site more than required or 100% of the time

The foregoing description reflects the minimum qualifications and the essential functions of the position that must be performed proficiently with or without reasonable accommodation for individuals with disabilities. It is not an exhaustive list of the duties expected to be performed, and management may, at its discretion, revise or require that other or different tasks be performed as assigned. This job description is not intended to create a contract of employment with ERCOT. Both ERCOT and the employee may exercise their employment-at-will rights at any time. #LI-HybridExpected Salary Range:$85,178 - $136,285

Job Tags

Contract work, Work experience placement, Remote job, Flexible hours,

Similar Jobs