About the position

This position leads the team in securing Entergy’s networks from internal and external threats across corporate Information Security (IS), Information Technology (IT) and Operational Technology (OT); including data centers, office building, control centers, power plants, and substations. The engineer will drive the execution of processes and develop automation opportunities to monitor, control and detect malicious or anomalous network traffic, maintain established level of network services and network security policies, and remediate any gaps to achieve optimal level of security in the network. The engineer will also drive the team to ensure that network security operations are maintained to be audit ready in compliance with NRC Nuclear Cyber, NERC CIP and Sarbanes-Oxley regulations.

Responsibilities

• Execute and assist other engineers in day-to-day operations and maintenance of all the systems/components involved in network security including security devices and technologies such as firewalls, client and site-to-site virtual private networks (VPN), intrusion prevention systems (IPS) and/or detection systems (IDS), certificate management, packet brokers, domain name systems (DNS), software defined networks (SDN) and network segmentation
• Maintain certificate authorities (CA) and certificate validation infrastructures
• Assist with the development and implementation of the strategy, roadmap, and project delivery for network security in coordination with the Security Architecture and Enterprise Architecture functions
• Assist with compliance efforts for network security, specifically requirements in support of North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP), Nuclear Regulatory Commission (NRC) Nuclear Cyber (10 CFR 73.54) and Sarbanes-Oxley
• Drive continuous improvement processes, operational excellence and deliver world-class network security solutions for all corporate and operational technology needs, including business operations, power generation units, electric substations, system control and data acquisition (SCADA) systems, distribution automation (DA), and advanced metering infrastructure (AMI)
• Monitor network security trends and suggest improvements to policy, procedures, tools and technologies to enhance the security of Entergy’s network
• Develop and track metrics for the effectiveness and maturity of network security operations
• Organize the team’s work and assign tasks and projects to team members
• Be the escalation person for technical issues and administrative tasks/questions (timecard, expenses, change management training/questions, etc)
• Direct team members to the proper procedure, process, work instruction, contact person, etc to assist team members in resolving their issue
• Other duties as required

Requirements

• Associate degree in computer science, cyber security or a related discipline or equivalent work experience. Bachelor’s degree strongly preferred. Master's degree a plus.
• 8+ years of demonstrated experience in network security administration including enterprise firewall management, VPN, forward and reverse proxy, packet brokers, and certificate management.
• Expert experience in leading various network security technical competencies
• In-depth knowledge and experience deploying and managing cloud security infrastructure with cloud platforms like AWS, Azure, or Google Cloud.
• Expert knowledge of cloud security best practices and industry standards.
• Ability to lead cross-functional project teams
• Strong experience working with outsourced teams and vendors
• Strong organizational and time management skills
• Experience working in an on-call team rotation
• Expert understanding of general networking and design, operating system platforms, security operations, cyber security monitoring, intrusion detection, secured networks and scripting languages
• Expert understanding of regulatory and compliance requirements; (SOX, NERC CIP, and NRC Nuclear Cyber (10 CFR 73.54)
• Understanding of security and attack frameworks such as Nation institute of Standards and Technologies (NIST) Cyber Security Framework (CSF), Cyber Kill Chain and MITRE ATT&CK
• Strong knowledge of current cyber security trends and evolutions in networking such as Software Defined Networks (SDN) and micro segmentation
• Self-directed and with the ability to operate with significant discretion and manage multiple tasks simultaneously
• Excellent communication skills
• Expert problem-solving skills
• Available to travel
• Authorization to work in the United States is a precondition to employment in this position.

Nice-to-haves

• One or more technical or InfoSec certifications preferred, i.e. CompTIA, ISACA or ISC2. Relevant vendor credentials offered by companies such as Palo Alto and AWS.
• CISSP, CRISC, SSCP certifications or able to obtain within first year of employment