Info Sec Engineer Senior Lead

Job Title:Info Sec Engineer Senior Lead

Work Place Flexibility: Hybrid

Legal Entity:Entergy Services LLC

***This is a hybrid position that can be filled in The Woodlands TX Little Rock AR and New
Orleans LA.***

JOB SUMMARY/PURPOSE

This positionleads the team in securing Entergys networks from internal and external threats across corporate Information Security (IS) Information Technology (IT) and Operational Technology (OT); including data centers office building control centers power plants and substations. The engineerwill drive the execution of processes and develop automation opportunities to monitor control and detect malicious or anomalous network traffic maintain established level of network services and network security policies and remediate any gaps to achieve optimal level of security in the network. The engineerwill also drive the team to ensure that network security operations are maintained to be audit ready in compliance with NRC Nuclear Cyber NERC CIP and Sarbanes-Oxley regulations.

JOB DUTIES/RESPONSIBILITIES

• Network Access Control: Execute and assist junior engineers with the engineering deployment and execution of day-to-day operations of Network Access Control (NAC) technologies. This includes the management of authentication policies (802.1X/MAB) endpoint profiling and posture assessment to secure wired wireless and VPN access across IT and OT environments.

• Microsegmentation: Execute and assist junior engineers with the rollout and management of Software-Defined Microsegmentation tools. Focus on providing deep visibility and policy enforcement for East-West trafficwithin data centers and cloud environments ensuring granular security that prevents lateral movement without disrupting critical services.

• Certificate Management:Administer and automate the lifecycle of digital certificates using enterprise certificate management Certificate Authorities (CA) and certificate validation infrastructures to ensure secure encryption across the enterprise.

• Strategy & Trend Analysis: Provide input to the development and implementation of the strategy roadmap and project delivery for network security in coordination with the Security Architecture and Enterprise Architecture functions. Monitor network security trends for their area of support and suggest improvements to policy procedures tools and technologies to enhance the security of Entergys network

• Continuous Improvement: Drive continuous improvement processes operational excellence and deliver world-class network security solutions for all corporate and operational technology needs including business operations power generation units electric substations system control and data acquisition (SCADA) systems distribution automation (DA) and advanced metering infrastructure (AMI)

• Troubleshooting & Root Cause Analysis:Serve as an escalation point for complex network security issues. Lead efforts to identify diagnose and resolve technical friction between security controls and business applications ensuring optimal performance and minimal operational impact.

• Data Analytics & Metrics:Develop and track metrics for the effectiveness and maturity of network security operations. Utilize analytical skillsto design build and modify dashboards and reporting tools(e.g. PowerBI or Splunk) that provide visibility into the effectiveness maturity and health of network security operations.

• Compliance & Regulatory:Assist with compliance efforts for network security specifically requirements in support of North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) Nuclear Regulatory Commission (NRC) Nuclear Cyber (10 CFR 73.54) and Sarbanes-Oxley.

• On-Call & Operational Coverage: Participate in a 24/7 365-day rotational on-call schedule to support critical infrastructure. Available to respond to urgent production issues outside of standard business hours including nights weekends and holidays.

• Leadership:
  • Organize the teams work and assign tasks and projects to team members.
  • Be the escalation person for technical issues and administrative tasks/questions (timecard expenses change management training/questions etc)
  • Direct team members to the proper procedure process work instruction contact person etc to assist team members in resolving their issue

• Coaching / Mentorship: Serve as a subject matter expert coaching junior analysts on advanced security initiatives particularly within NAC and microsegmentation. Guide team members to develop advanced skill sets while improving overall operational security.

• Other duties as required.

MINIMUM REQUIREMENTS

Minimum education required of the position.

Bachelors degree in computer science cyber security or a related discipline; or equivalent work degree a plus.


Minimum experience required of the position

• Information Security Engineer Sr. Lead: 8 years of demonstrated experience in network security administration including microsegmentation technologies network access control VPN solutions (client and site-to-site) PKI/certificate management and enterprise security architecture
• Expert experience in leading various network security technical competencies
• In-depth knowledge and experience deploying and managing cloud security infrastructure and segmentation technologies within cloud platforms like AWS Azure or Google Cloud.
• Knowledge of cloud security best practices and industry standards.
• Ability to lead cross-functional project teams
• Strong interpersonal skills with demonstrated ability to coordinate effectively between internal teams external vendors and cross-functional stakeholders.
• Strong organizational and time management skills
• Experience working in an on-call team rotation

Minimum knowledge skills and abilities required of the position

• Expert understanding of general networking and design operating system platforms security operations cyber security monitoring intrusion detection secured networks and scripting languages
• Expert understanding of regulatory and compliance requirements; (SOX NERC CIP and NRC Nuclear Cyber (10 CFR 73.54)
• Understanding of security and attack frameworks such as Nation institute of Standards and Technologies (NIST) Cyber Security Framework (CSF) Cyber Kill Chain and MITRE ATT&CK
• Strong knowledge of current cyber security trends and evolutions in networking such as Software Defined Networks (SDN) and micro segmentation
• Self-directed and with the ability to operate with significant discretion and manage multiple tasks simultaneously
• Excellent communication skills
• Expert problem-solving skills
• Available to travel (Up to 10%)

Any certificates licenses etc. required for the position

• Relevant vendor credentials or experience with the following is highly preferred:
  • NAC:Cisco ISE Aruba ClearPass or ForeScout.
  • Microsegmentation:Akamai Guardicore Illumio or Cisco Secure Workload.
  • Certificate Management:Venafi AWS Certificate Manager Microsoft CA or Keyfactor.

• Relevant vendor-neutral security credentials such as CISSP CRISC SSCP or CISM certifications or able to obtain within first year of employment

Work Conditions

Office environment with minimal physical requirements. As a provider of essential services Entergy expects its employees to be available to work additional hours to work in alternate locations and/or to perform additional duties in connection with storms outages emergencies or other situations as deemed necessary by the company. Exempt employees may not be paid overtime associated with such duties.

#LI-DG1#LI-HYBRID

Primary Location: Texas-The WoodlandsArkansas : Little Rock
Job Function: Engineering
FLSA Status: Professional
Relocation Option:
Union description/code: NON BARGAINING UNIT
Number of Openings: 1
Req ID: 122326
Travel Percentage:Up to 25%

An Equal Opportunity Employer Minority/Female/Disability/Vets. Please click here to view the EEO page or see statements below.

EEO Statement:The Entergy System of Companies provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race color religion sex gender sexual orientation gender identity or expression national origin age disability genetic information marital status amnesty or status as a protected veteran in accordance with applicable federal state and local laws. The Entergy System of Companies complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment including but not limited to recruiting hiring placement promotion termination layoff recall transfer leaves of absence compensation and training.

The Entergy System of Companies expressly prohibits any form of unlawful employee harassment based on race color religion sex gender sexual orientation gender identity or expression national origin age genetic information disability or veteran status. Improper interference with the ability of the Entergy System of Company employees to perform their expected job duties is absolutely not tolerated.

Accessibility:Entergy provides reasonable accommodations for online applicants. Requests for a reasonable accommodation may be made orally or in writing by an applicant employee or third party on his or her you are an individual with a disability and you are in need of an accommodation for the recruiting process please clickhereand provide your name contact number the accommodation requested and the requisition number that you are requesting the accommodation for. Employee Services will contact you regarding your request.

Additional Responsibilities:As a provider of essential services Entergy expects its employees to be available to work additional hours to work in alternate locations and/or to perform additional duties in connection with storms outages emergencies or other situations as deemed necessary by the company. Exempt employees may not be paid overtime associated with such duties.

Know Your Rights: Workplace Discrimination is Illegal

The non-confidential portions of the affirmative action program for individuals with disabilities and protected veterans shall be available for inspection upon request by any employee or applicant for employment. Please to schedule a time to review the affirmative action plan during regular office hours.

WORKING CONDITIONS:
As a provider of essential services Entergy expects its employees to be available to work additional hours to work in alternate locations and/or to perform additional duties in connection with storms outages emergencies or other situations as deemed necessary by the company. Exempt employees may not be paid overtime associated with such duties.

Please note: Authorization to work in the United States is a precondition to employment in this position. Entergy will not sponsor candidates for work visas for this position.