Cyber Security

Skills

• High School diploma GED and relevant work experience is required; Bachelors Degree in Information Technology Computer Science Cybersecurity or other related field is preferred • 3 years cybersecurity or information technology experience required • 3 years in cybersecurity monitoring working with security tools preferred • Ability to obtain certifications in industry specific and technical fields such as NERC-CIP and CompTIA Security + (ISC)2 CISSP CEH • Advanced understanding of network concepts protocols services and operating systems • Strong technical understanding of vulnerabilities and how attackers can exploit vulnerabilities to compromise systems • Cyber forensics experience preferred • Proven analytical problem solving and research skills with readiness to defend analysis • Advanced verbal and written communication skills • Ability to work in an open and collaborative environment Measures of Success • Actively identifies and remediates cyber and insider threat events and works to completion in a timely manner • Demostrates leadership by helping develop SOC analysts • Demonstrates skills in prioritization and multi-tasking and success in adapting to change in a fast-paced environment • Demonstrates ability to collaborate with internal partners in a professional manner • Demonstrates ability to learn and identify new security methods tactics and threat vectors • Provides consistent and timely intelligence information and trends

Description

Responsible for ensuring the safety of technology platforms inclusive of workstations, server systems, networks, applications, databases and electronic information, and to protect the systems from security violations, access or destruction. Assists with implementing Information Technology security policies covering protocols, applications, networks, client and server systems, personnel and other risk management mechanisms.

Responsibilities

• • Actively monitor and investigate in real-time the organization’s networks, systems, applications, and databases to protect Oncor internal partners and our customers from security violations, access, or destruction
• • Look beyond pre-configured alerts to discover potential security incidents
• • Conduct advanced security event detection and threat analysis for complex and/or escalated security events.
• • Uncover information gaps that can help identify potential threats in the short and long term and recommends security enhancements to management or senior IT staff
• • Research open-source intelligence, social media platforms, and deep/dark web for known and potential external and insider threats capable of impacting our customers.
• • Research and analyze the latest information technology security trends and methods of attack and propose security standards, rules, alerts and best practices for the organization
• • Analyze threat information from a variety of internal and external sources to provide actionable intelligence to maintain and enhance the defenses of Oncor information systems and resources
• • Support internal investigations by performing data and system forensics, and other investigative techniques and conduct computer and mobile device forensic examinations, including preservation, acquisition, and analysis of digital evidence
• • Act as subject matter expert on existing security technologies by administering, integrating, maintaining, and troubleshooting systems to ensure good security posture
• • Produce, review, and finalize reports and presentations for management including security recommendations, on technology security vulnerabilities, both planned in place, and future direction
• • Support Cybersecurity investigations and incident response by making recommendations to management on findings and solutions. Ensure incidents are minimized through design, tools and processes
• • Support onboarding of new security technologies by working with project and vendor teams in order to ensure production system readiness from an operational and technical perspective
• • Performs technical reviews of documentation to ensure computer security integration and compliance with regulations (NERC CIP, SOX, ISO, etc.)
• • Actively engage and collaborate with other groups within the Digital Grid Management team and our internal partners
• • Assist in identyfing technical and regulatory changes in the security landscape
• • Be a change agent to adapt and drive change throughout the organization
• • Strong interpersonal skills, a positive attitude, and the ability to thrive in a fast-paced environment
• • Self motivated, results-oriented with a passion to deliver above par results in a proactive manner
• • Perform all essential aspects and functions of the job as well as any other specific job requirements as assigned