You will be trusted to:

• maintain knowledge of and ensure compliance with NERC, FERC, and ERCOT reliability standards, including NERC Critical Infrastructure Protection Cybersecurity Standards
• maintain knowledge of and support compliance with local, state, and federal reliability and cybersecurity standards
• design and implement SIEM and other cybersecurity systems and maintain those systems in EMS and SUBWAN environments
• administer, design, and maintain complex SIEM systems, both backend and frontend
• administer and patch the Linux operation of the SIEM environment
• perform security vulnerability evaluations and applies system updates, if applicable; set up use cases, on-boarding logs, dashboards, and alerts on SIEM to support business and NERC CIP needs
• coordinate with other teams to perform annual and on-demand nmap, vulnerability scans against the system
• proactively monitor, analyze, and review security-related log and SIEM alerts from multi-platform EMS computing environment and work with all stakeholders to ensure all cyber security related cases will be taken care and addressed properly
• research, analyze, and implement software patches or hardware changes to fix any SIEM deficiencies
• work in partnership with Enterprise Security, Site Reliability Engineering, and Public safety teams
• act as subject matter expert while working with vendors, documenting best practices, and configuring SIEM system
• document changes made to systems or equipment through appropriate communications and record keeping practices
• document work into logs, files, system prints and other records and through communications, both verbal and written, with other team members and supervisors
• identify cost-effective and optimal solutions that meet stringent security and availability requirements
• provide on-the-job training and guidance for colleagues with less experience
• assist supervisor/manager in screening and hiring activities. 

You qualify with:

• The position requires a Bachelor of Science in Computer Science, Electrical Engineering, or a closely related field plus five years of relevant experience or, alternatively, a Master of Science in one of the foregoing fields plus three years of relevant experience or nine years of relevant experience without a degree.
• In all cases, experience must include three years of relevant experience in front-end and back-end Splunk administration; three years of relevant experience in utilizing SIEM to monitor and set up alerts for security-related events; and three years of relevant experience in a mission critical environment.
• In addition, must be able to administer and configure SIEM applications in a Linux environment.
• The position will be on-call on a rotating, weekly basis (approximately 50% of the time) to provide support for any cybersecurity emergencies.

You are a great fit with:

• See above.

You gain:

• Competitive salary & medical, dental, vision and legal insurance
• Paid time off, including time for vacation, sick and family care leave
• 401(k) match up to 8% that includes a student loan 401(k) contribution program option
• Life and disability insurance
• Wellness program including wellness incentive
• Extensive learning & development programs
• And more - all to create a compelling and rewarding work environment.