EMS Security Analyst (Energy Management System)
Description
EMS Security Analyst (Energy Management Systems)
This position could be filled in Birmingham, AL or Atlanta, GA
Summary of Position Duties
The EMS Security Analyst position is responsible for the maintenance, monitoring and support of the cyber security applications and associated systems utilized in the Energy Management Systems (EMS) department with a focus on IPS/IDS, firewalls, and network services. The successful applicant will assist in administration activities, developing, testing, and implementing security hardware/ software, plans, policies and procedures. In addition, the successful candidate will maintain awareness of up-to-date threat and vulnerability sources and identify respective countermeasures. The successful candidate will work with team members to support the administration of security systems required to operate a real-time supervisory control and data acquisition (SCADA) system.
Education
Degree in Electrical Engineering (ABET accredited), Computer Science, MIS or equivalent experience
Industry certification (CCNA, CCNP, CISSP) or equivalent experience
Job Responsibilities
Create and maintain procedures for applying firewall rules to a production environment
Administration of Infoblox IPAM, DNS, DDNS, DNS firewall, DHCP, DNS tunneling prevention, and NetMRI
Administration of Riverbed network performance monitoring, application performance management, and wide area network analysis, NetFlow collection and analysis, and WAN optimization.
Administration of APCON network packet broker
Administration of Tufin firewall security policy
Lead initiatives to optimize firewall rules and remove unused rules, objects, and topologies
Create and maintain procedures for applying IPS/IDS signature definitions to a production environment
Lead initiatives for system tuning to reduce IPS/IDS and network tools false positives
Evaluate new security technologies and provide input into EMS strategic plan
Provide technical support for the Sarbanes-Oxley, FERC, NERC and SERC compliance audits
Perform daily support of security monitoring processes/products
Partner with others to help troubleshoot, identify, and resolve production issues as related to security issues
Maintain a current knowledge of new security technologies and security practices
Perform all work following EMS Change Management policies
Proactively seek and provide input to plans for system security improvements
Support the development, analysis and monitoring of security tools used to protect real-time SCADA systems
Partner with customers to help them understand both the technical and procedural aspects of information security technologies
Monitor security logs and take appropriate actions to respond to events
Support capacity planning and performance engineering solutions for the infrastructure that supports EMS
Required Knowledge/Skills
Experience with TCP/IP and networking knowledge - specific experience with secure protocols, Internet Security (Firewalls, IDS, IPS, DNS, DMZ's) is preferred
Experience with configuration, rule creation, and maintenance of Checkpoint firewalls
Experience with Checkpoint NGFW, including software blades
Experience with IPS/IDS products such as Checkpoint, Tipping Point, Snort, Sonicwall, Fortinet
Experience in troubleshooting issues related to firewalls and networks; experience with centralized monitoring systems
Ability to analyze a packet capture
Experience with accessing and remediating vulnerabilities
Working knowledge of UNIX and Windows based operating systems
Comprehensive knowledge and understanding of information security best practices
Experience with and ability to meet Critical Infrastructure Protection (CIP), Sarbanes-Oxley and other federal regulatory compliance requirements
Excellent interpersonal skills and the ability to communicate effectively in both an oral and written manner
Ability to work effectively in a team environment through cooperation and communication
Ability to effectively organize tasks, manage multiple priorities, meet schedules, and deliver on commitments
High degree of focus on quality, reliability, efficiency
Recognition of cyber security threats and risks, and importance of protecting the Bulk Electric System
Ability to build and maintain relationships with key customers and co-workers
Capacity to learn and apply new technologies and concepts
Superb diagnostic, troubleshooting, analysis and problem-solving skills
Self-motivated, takes initiative, proactive
Must pass Insider CIP and Insider Threat Protection background check
Southern Company (NYSE: SO) is America's premier energy company, with 46,000 megawatts of generating capacity and 1,500 billion cubic feet of combined natural gas consumption and throughput volume serving 9 million customers through its subsidiaries . The company provides clean, safe, reliable and affordable energy through electric operating companies in four states, natural gas distribution companies in seven states, a competitive generation company serving wholesale customers across America and a nationally recognized provider of customized energy solutions, as well as fiber optics and wireless communications . Southern Company brands are known for excellent customer service, high reliability and affordable prices that are below the national average. Through an industry-leading commitment to innovation, Southern Company and its subsidiaries are inventing America's energy future by developing the full portfolio of energy resources, including carbon-free nuclear, 21st century coal, natural gas, renewables and energy efficiency, and creating new products and services for the benefit of customers. Southern Company has been named by the U.S. Department of Defense and G.I. Jobs magazine as a top military employer, recognized among the Top 50 Companies for Diversity by DiversityInc, listed by Black Enterprise magazine as one of the 40 Best Companies for Diversity and designated a Top Employer for Hispanics by Hispanic Network. The company has earned a National Award of Nuclear Science and History from the National Atomic Museum Foundation for its leadership and commitment to nuclear development and is continually ranked among the top energy companies in Fortune's annual World's Most Admired Electric and Gas Utility rankings. Visit our website at www.southerncompany.com.
Southern Company is an equal opportunity employer where an applicant's qualifications are considered without regard to race, color, religion, sex, national origin, age, disability, veteran status, genetic information, sexual orientation, gender identity or expression, or any other basis prohibited by law.
Job Field: Information Technology
Job Type: Standard
Primary Location: Alabama-Metro Birmingham/Eastern AL-Birmingham
Operating Company: Southern Company Services
Other Locations: Georgia-Metro Atlanta-Atlanta
Job Type: Standard
Travel (Up to...): Yes, 25 % of the Time
Work Location(s):
APC Corporate Headquarters - 600 North 18th Street (600BIRMINGHAM)
600 North 18th Street
Birmingham, 35203
Atlanta Region Office - 760 Ralph McGill Blvd (760ATLANTA)
760 Ralph McGill Blvd
Atlanta, 30312
Req ID: SCS2010386
