Title: Cyber Security Analyst
Location: Birmingham, Al;
Status: Full-time employee
Department Name: Specialized Cyber Security
Purpose: This position supports the Southern Company Specialized Cyber Security information security program to ensure the company’s information assets are adequately protected. The successful applicant will collaborate with Generation, Transmission, Gas, and PowerSecure utility and commercial business units to define and implement business security requirements and goals, and to identify and resolve business security issues. The position also supports information security compliance programs in response to regulations such as NERC, FERC, TSA, as well as other state, local, and federal security requirements.
Education / Experience:
Possess a broad-based and in-depth knowledge of information security methodologies, tools, technologies and best practices and how they relate to the organization Ability to understand technical information security issues/concepts and bring to senior management in an understandable manner Strong cyber assessment skills required to adequately convey and remediate information security vulnerabilities 5+ years’ experience in positions directly related to cyber security assessment, information security, information technology, and/or consulting expertise Cyber Security certifications highly preferred (CISSP, CISA, CISM, GIAC) Industry certification a plus (CCNA/CCNP/ACE/PCNSE) Valid state driver’s license
Job Responsibilities:
Serves as a subject matter expert in specialized aspects of information security and emerging and advanced technologies Supports Operational Technology (OT) and the enterprise in all aspects of information security administration; trusted to handle confidential situations and data; conducts investigations and analysis as directed Consults with the Technology Organization (TO) and business units on the purchase and/or design of complex and/or strategically significant information security projects, emerging technologies, or technology-related services before they are implemented Analyzes business data use processes against vulnerabilities and threats and counsel’s business units on consequences Collaborates with cross-functional teams responsible for information systems security to ensure the confidentiality, integrity, and availability of data stored, processed and transmitted Engages with TO and business units to evaluate and implement security process for critical infrastructure and key resources Coordinates with corporate security to ensure cohesive security plans, coordinate audit and compliance efforts, and to identify blended physical and cyber attacks Provides governance and oversight to business unit security activities to ensure compliance with all corporate information security policies and procedures Establishes and executes program updates as necessary to adapt to the changing threat landscape as well as local, state, and federal security requirements
Competencies:
Experience with enterprise class network and security infrastructure Experience directly managing and maintaining the VMware infrastructure, including deploying, configuring, and updating virtual machines (VMs) and VM images Experience with Microsoft Windows Security and patch management Experience managing an Active Directory domain Experience with information security regulation as it applies to the electric and gas utility industry Experience with technical security solutions (SIEM, Privileged Remote Access, Threat Intel, Virtualization, End Point Security, IDS/IPS) Ability to prioritize work and complete assignments with little direction Ability to think outside the box by providing innovative, creative solutions to complex issues
Additional Information:
Must be able to pass background requirements This position is part of the Insider Threat Program This position requires travel to remote locations (less than 20%). Overnight travel is expected but not often.