Benton PUD · 9 hours ago
IT Security Engineering II or III
Kennewick, WA
Full-time
Onsite
Mid, Senior Level
$95K/yr - $164K/yr
3+ years expBenton PUD is focused on protecting critical infrastructure against evolving cyber threats. They are seeking a highly motivated IT Security Engineer to support and lead their cybersecurity and physical security programs, ensuring the safety and resilience of essential services and infrastructure.
Utilities
Hiring Manager
Amber Melling, SHRM-SCP
Responsibilities
Support the District’s mission to serve our customers and foster a positive workplace by personally choosing behavior aligned with our values and ethical code
Monitor, audit, and execute security controls and tools to maintain network security by identifying potential security issues to include performing network security threat/impact assessments and scans, recommending security measures, installing and monitoring security devices, and installing patches, and updates as needed; lead mitigation efforts to remediate discovered security deficiencies
Manage the risk of security exposure or compromise within District systems by providing awareness training on information security standards, policies and best practices
Participate as a key member of the Security Incident Response Team by leading investigations and incident response activities, ensuring IR plan is followed and liaising with external support entities such as E-ISAC, DHS, PURMS, etc., as appropriate
Provide guidance and recommendations to ensure the security and resiliency of the converged IT/OT and physical security systems
Ensure a resilient network infrastructure by supporting implementation and securing design principles in network infrastructure and helping establish and verify secure network components and secure communications channels as per design
Establish and maintain logging, monitoring, alerting, and threat-hunting capabilities across cyber and physical security platforms. Monitor and respond to notifications or indications of compromise
Ensure resiliency of secure network authentication and access by supporting design and implementing appropriate encrypted communication methods
Develop, review and assist CISO in standards and policies for cybersecurity practices in both IT and OT environments, working closely with other stakeholders and groups to build out best practices and manageable criteria for increasing security posture
Oversee and technically manage enterprise physical security systems including access control systems (ACS), surveillance cameras, intrusion detection, duress/panic systems, and emergency notification platforms
Ensure the District achieves and maintains mandated compliance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA), NERC CIP, and PCI-DSS by supporting implementation of a comprehensive network security architecture and adhering to internal District security policies
Perform vulnerability assessments, security risk assessments, system audits and penetration testing activities to test and audit existing or proposed systems, networks, functions or software: recommend changes in identified design gaps; and lead remediation or mitigation efforts
Guide program improvement by performing annual security posture assessment and developing tasks and plans to increase posture based on findings and focus areas
Respond to security threats and alerts during and after hours for the purpose of resolving immediate security concerns
Oversee security-related incident reporting and response, conduct after-action review, direct investigations of all security-related incidents; demonstrate sound judgement in working with federal, state, and local law enforcement for potential criminal investigations
Collaborate with internal departments, utilities, vendors, and external agencies to enhance overall security posture and resilience
Complete special projects and other duties as assigned to meet team, department and organization goals
Lead District efforts to achieve and maintain mandated compliance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA), NERC CIP, and PCI-DSS by designing and implementing a comprehensive network security architecture and adhering to internal District security policies
Perform or lead vulnerability assessments, security risk assessments, system audits and penetration testing activities to test and audit existing or proposed systems, networks, functions or software: recommend changes in identified design gaps; and lead remediation or mitigation efforts
Guide program improvement by leading annual security posture assessment and developing tasks and plans to increase posture based on findings and focus areas
Lead investigations regarding suspected malware or phishing attacks and follow digital forensics best practices when handling potential evidence or sensitive information whose integrity must be maintained
Respond to security threats and alerts during and after hours for the purpose of resolving immediate security concerns
Qualification
Required
BA/BS – Computer Science, Cyber Security or related field
3 to 4 years of experience in implementation, theory and troubleshooting as a security engineer with a strong networking background for IT Security Engineer II
5 to 7 years of experience in implementation, theory and troubleshooting as a security engineer with a strong networking background for IT Security Engineer III
In-depth knowledge in server operating systems (Linux, Windows)
In-depth experience with security testing (DoS, XRSF, XXS, Brute Force)
In-depth knowledge of a SIEM application
In-depth knowledge of Network Management Software and Monitoring Tools
In-depth knowledge of Data Loss Prevention, Intrusion Detection and Intrusion Prevention
In-depth knowledge of Automated security testing software
In-depth knowledge of Forensic investigation and analysis
Experience with network protocols and architectures (TCP/IP, VLANs, routing protocols, DNS, DHCP)
Experience configuring, maintaining, and securing enterprise networking equipment and firewalls
Knowledge of electronic and mechanical physical security systems, including access control, video surveillance, intrusion detection, and audit logging
Experience integrating physical security platforms with IT and cybersecurity monitoring systems
Knowledge of risk, vulnerability, and threat assessment methodologies
Strong problem-solving skills to effectively research, investigate and offer solutions to issues that are more complex and difficult in nature
Good verbal and written communication skills with the ability to communicate security-related concepts to a broad range of technical and non-technical staff to include leadership
Ability to stay current with technology and apply training and experience to real world problems
Highly motivated and independent strategist capable of creating and implementing comprehensive security policies
Preferred
Certifications in 1 or more of the following: Cisco Certified Network Associate (CCNA), Cisco Certified Network Professional (CCNP), Cisco Certified CyberOps Associate (CCNA), Certified Information Systems Security Professional (CISSP)
BA/BS is preferred; however, substitution is allowed for those with an approved job-related certification and at least an AA degree, with two (2) additional years of directly related experience
Company
Benton PUD
Benton PUD has been a trusted part of the communities we serve for more than 75 years with a long tradition of forward-thinking anchored in our public power heritage and strong customer service focus.
51-200 employees
Funding
Current Stage
Growth StageCompany data provided by crunchbase