---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Sr. Security Analyst
Location: Austin, Texas, United States
Type: Permanent F/T
Closing Date: 2008-02-15
The Company
The Electric Reliability Council of Texas (ERCOT) manages the flow of electric
power to approximately 20 million Texas customers – representing 85
percent of the state’s electric load and 75 percent of the Texas land
area. As the independent system operator for the region, ERCOT schedules power
on an electric grid that connects 38,000 miles of transmission lines and more
than 500 generation units. ERCOT also manages financial settlement for the
competitive wholesale bulk-power market and administers customer switching for
5.9 million Texans in competitive choice areas.
Austin Area
Austin is the capital of Texas and is situated in the central part of the state
referred to as the “Hill Country.” This city is known as the
“Live Music Capital of the World,” is the home of University of Texas
Longhorns and has the best Tex-Mex and barbeque restaurants on the face of this
earth. Austin and its surrounding communities enjoy mild winters and the cost
of living there compares favorably to many other parts of the US.
Summary of Responsibilities
The Senior Security Operations Analyst is responsible for ensuring that
ERCOT’s internal and external security posture is monitored for the latest
threats and risks. The Senior Security Operations Analyst provides recommended
actions and implements them as needed. The Senior Security Analyst in
conjunction with the Security Operations team is responsible for management and
administration of Information Security technologies at ERCOT. The Senior
Security Analyst will work with the ISSD Manager to ensure that the Security
Operations team provides effective and efficient services in support of
ERCOT’s information security objectives.
Essential Job Functions
• Monitor computing resources for evidence of compromise and report
security incidents.
• Respond to, and report on, IT security incidents, providing initial
assessment of impact severity and types of incidents being addressed.
• Function as a senior member in the security group’s Incident
Response Team.
• Analyze compromised computing resources of routine to moderate
complexity, to assist in improving security design and policy compliance, and
to understand and document new threat profiles.
• Develop and implement mitigation strategies for threat reduction based
on monitoring of IT systems.
• Research, analyze, design, test and implement new or vendor supplied
security software solutions.
• Provide up to date documentation and procedures on security software
product administration.
• Provide guidance for enterprise patching to ensure efficacy of patching
procedures and processes
• Assist in the development of technical security standards to support
policies, including creating, coordinating and monitoring standards and
incident investigation procedures
• Perform periodic operating system and application security assessments
of routine-to-moderate complexity and review for evidence of vulnerability or
compromise, assisting with the implementation of resolution.
• Study and maintain current knowledge of security issues
• Report issues to the department personnel responsible for the resource
• Perform other duties as assigned
JOB REQUIREMENTS
---------------------------------------------------
• A bachelor's degree preferably in Computer Science or Engineering or
equivalent work experience.
• Minimum of 7 years of work experience in IT security.
• CISSP and/or other security certifications preferred.
• Experience developing security operations procedures and controls.
• Hands on experience with intrusion detection/protection systems and
security enterprise management systems.
• Experience identifying, monitoring and investigating computer and
network intrusions.
• Demonstrated expertise and experience in computer security incident
response.
• Experience profiling network traffic to detect possible intrusions from
inside or outside networks.
• Demonstrated proficiency in tools, techniques and countermeasures in
network vulnerabilities.
• Demonstrated ability to conduct vulnerability testing and penetration
analysis of computers and networks.
• Expert knowledge of TCP/IP, networking design, routing architectures,
network security systems and protocols.
• Working knowledge of UNIX and Windows systems security.
• Experience providing computer forensic support to investigations in the
form of evidence seizure, computer forensic analysis, and data recovery.
• Demonstrated proficiency in security operations and best practices.
• Strong customer service, communication and presentation skills required.
• Strong project management, time management and organizational skills
required.
CONTACT
---------------------------------------------------
Please send resume to hr@ercot.com
ERCOT
Michael Hagan
mhagan@ercot.com
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
