Job Information
Oncor Electric Delivery Co. LLC Information Technology Specialist - Network Security in Dallas, Texas
Description
Salary Range: $105,441 - $140,589
Relocation: No
Summary
The Network Security Specialist is responsible for implementing security designs, compliance and operation of security infrastructure and processes for both Information and Operations Technology (IT/OT) environments. This individual leads resolution of complex network security issues that arise across Oncor networks and environments, and is the subject matter expert on multiple security technologies. This position is also accountable for effectively contributing to projects and delivering objectives and engineering technical solutions that meet the needs of the client while following industry standards. This role is also expected to keep abreast of the changing security landscape including evolving threats, regulations and technologies. Technical certifications may be required depending on the specific role.
Key Roles & Responsibilities
Directly or through others, the incumbent will:
Design, monitor and maintain the connectivity and security of systems to ensure the optimal and stable operation of Oncor security infrastructure across IT and OT environments
Support the development, configuration, maintenance, and optimization of new and existing security infrastructure, tools and processes
Assist in the coordination of on and offshore Network Security Operations resources that support various network security infrastructure such as firewalls, Virtual Private Networks (VPN), Network Access Control (NAC) devices and associated tool sets that help monitor and control Oncor's network
Provide oversight and support for the implementation of all security related changes following appropriate change management and control procedures
Serve as a stakeholder for and in some cases lead security related project efforts and deliverables including security reviews and assessments on new tools, systems, software, hardware, services, etc. to be deployed in an Oncor environment
Establish and provide enforcement of security baseline standards, architecture and guidelines across the enterprise as well as contributes to and execute upon security policies, procedures and standards
Provide thought leadership and advisory on security best practices across the enterprise participating in events around cyber awareness and various security discussions with teams across Oncor
Stay aware of security current events, vulnerabilities, etc. that could impact Oncor’s network, and form mitigation and response plans as appropriate with the correct urgency
Adhere to and ensure compliance with applicable requirements around security policies, standards and regulations (NERC CIP, SOX, ISO, etc.)
Assist with IT/OT Security investigations, including participation with Cyber Security Incident Response Plan (CSIRP) activities and making recommendations to management on findings and solutions
Develop and maintain security design and architecture documentation, as-builts and formal procedures for consistency and increased productivity
Provide input to short- and long-term strategic plans to make certain security infrastructure meets existing and future requirements
Continually seek security improvements for the benefit of Oncor and its business objectives
Manage Service Level Agreements (SLAs) in accordance with Oncor policies, procedures, contractual agreements
Analyze requirements, re-engineer and implement a streamlined Provisioning workflow from order through support
Provide incident management support, and ensure incidents are minimized through root cause analysis, design, tools and processes
Interact with peers, management, service provider personnel, and key vendors during network and security incidents and events to keep all parties informed
Support existing products by responding to issues arising from internal testing and field use of the systems
Perform all essential aspects and functions of the job as well as any other specific job requirements
Education, Experience, & Skill Requirements
Bachelors Degree in Information Technology, Computer Science or other related field is preferred; minimum High School diploma, GED and relevant work experience is required
At least 5 years’ experience in network and cyber security with required experience in installation, configuration, management, and audit of security infrastructure, processes and standards, specifically around firewalls, VPN, NAC, and cloud security and network infrastructure
Previous project leadership and/or supervisor experience preferred
In-depth knowledge of information and network security management
Demonstrated ability to work with limited supervision
Proven experience in the development of moderate to complex reports and presentations
Proven analytical, problem solving and research skills
Demonstrated interpersonal and relationship building skills
Demonstrated organizational and prioritization skills
Advanced verbal and written communication skills
Demonstrated ability in collaborating with others and building/developing teams
Measures of Success
Compliance with technology security architecture, policies and processes
Minimized risks and security breaches
Successful integration and operation of network security tools, process and resources
Establishes departmental goals and objectives, and functions with autonomy
Ensures adherence to defined internal controls with a focus on policy and strategy implementation
Manages systems and procedures to protect departmental assets and requires practical knowledge in leading and managing the execution of processes, projects and tactics across the security function
Successful implementation of new and/or enhanced security tools and processes
Effective oversight of security posture regarding architecture, policies and processes
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information. 41 CFR 60-1.35(c)