Apply on Employer Site

Georgia System Operations Corporation · 3 months ago

Security Operations Engineer (Levels III - V)

Tucker, GA

Full-time

Onsite

Mid, Senior Level

$97K/yr - $169K/yr

6+ years exp

Georgia System Operations Corporation is focused on protecting cyber assets for digital operations. The Security Operations Engineer role involves conducting cyber asset assessments, ensuring compliance with NERC CIP requirements, and supporting the security of the Bulk Electric System across Georgia.

Electrical DistributionEnergyNon ProfitOil and Gas

Comp. & Benefits

Responsibilities

Develops and maintains components of GSOC's physical and cyber security programs. Leads major Power Technology projects associated with new standards or significant program development initiatives. Documents process changes across departments and works with cross-functional teams to implement new systems, infrastructure, and approved operational changes

Identifies, documents, and implements approved improvements to existing technical and operational processes

Develops, documents, and implements NERC CIP related policies, processes, and procedures

Collaborate with internal and external compliance and audit teams to ensure adherence to regulatory standards, including NERC CIP requirements. Develop and implement policies, processes, and procedures to support compliance efforts

Contributes to corporate efforts in identifying, studying, and implementing new technologies to secure GSOC and GTC's digital operations infrastructure and security posture

Collaborates with other functional departments including GTC's System Protection & Control, Electronic Maintenance, Relay Maintenance, Procurement, Human Resources, and GSOC's Power Technology, Human Resources and SSIT leading efforts to ensure that the systems, networks, and infrastructure are being designed, built, and maintained in compliance with NERC CIP standards and GSOC's cyber security policies and procedures

Serves as Lead Engineer or Architect of major Power Technology enterprise-level projects associated with initiatives with significant impact to GSOC operations and security. Recommends and approves process changes across departments and works with cross-functional teams to implement new systems, infrastructure, and operational changes

Leads initiatives that identify improvements to existing technical and operational processes

Leads corporate efforts in identifying, studying, and implementing technologies to secure GSOC and GTC's digital operations infrastructure and enhance security posture. Works with internal and industry peers to explore innovative solutions and evaluate emerging technologies

Qualification

NERC CIP complianceCybersecurityPower engineeringSystem hardeningFirewall managementIncident managementConfiguration managementWindows Server administrationLinux administrationAnalytical skillsCustomer service attitudeAdaptability to changeLeadership capability

Required

Bachelor's degree in Electrical Engineering, Computer Engineering, Information Systems/Technology, or a related field

Minimum of 6 years of experience in areas above in a cyber security, information assurance, or related positions for Engineer III

Minimum of 10 years of experience in areas above in a cyber security, information assurance, or related positions for Engineer IV - V

Experience configuring, and analyzing local and wide area networks, intranets, extranets, and IP addressing

Experience performing system hardening, patch management, and configuration management

Experience designing, programming, or analyzing computer architectures and operating systems

Experience in Security Patch Management, Configuration Management, Firewall Management, Disaster Recovery, Incident Management, and Information Management desired

Experience in providing 24x7 support for real-time data communications systems and troubleshooting system problems involving real-time data communications systems desired

Experience with virtual environments, VMWare ESXi desired

Experience with Physical Access Control Systems (PACS), Honeywell, Genetec desired

Experience with ITIL-based Asset and Change Management systems desired

Experience with Windows Server/Workstation administration, SQL Server administration, Linux administration desired

Experience working in regulated environments such as NERC CIP or others is highly desired

Associates degree in related field or a Bachelor's Degree in an unrelated field with 10+ years of experience with significant responsibilities related to security operations, such as Security Patch Management, Configuration Management, Firewall Management, Disaster Recovery, Incident Management, and Information Management for Engineer III

High school diploma with 12+ years of experience with significant responsibilities related to security operations, such as Security Patch Management, Configuration Management, Firewall Management, Disaster Recovery, Incident Management, and Information Management for Engineer III

Associates degree in related field or a Bachelor's Degree in an unrelated field with 13+ years of experience with significant responsibilities related to security operations, such as Security Patch Management, Configuration Management, Firewall Management, Disaster Recovery, Incident Management, and Information Management for Engineer IV - V

High school diploma with 16+ years of experience with significant responsibilities related to security operations, such as Security Patch Management, Configuration Management, Firewall Management, Disaster Recovery, Incident Management, and Information Management for Engineer IV - V

Certifications related to Critical Infrastructure, NERC CIP, Cyber Security or Information Systems are a plus

Requires strong technical skills and understanding of various security events across multiple operating system and appliance platforms

Ability to learn and adapt quickly to changes in technologies, processes, and compliance standards

Strong customer service attitude

Strong analytical skills

Ability to document resolutions to customer issues and security alerts

Capability to provide leadership over implementation of processes

Resolve issues amongst a diverse group of stakeholders

Must be able to pass a NERC CIP personnel risk assessment screening