Puget Sound Energy is looking to grow our community with top talented individuals like you! With our rapidly growing, award-winning energy efficiency programs, our pathway to an exciting and innovative future is now.
PSE's Security, Risk and Compliance team is looking for qualified candidates to fill an open Senior IT Security Analyst position! Specific details regarding the work arrangements for this position will be discussed in further detail during the interview process.
Job Description
PSE's Security, Risk & Compliance team is looking for qualified candidates to fill an open Senior IT Security Analyst position! Specific details regarding the work arrangements for this position will be discussed in further detail during the interview process.
Puget Sound Energy's Cyber Risk Management team is looking for a strategic, experienced professional to join us as a Senior IT Security Analyst. Our Cyber Risk Management team identifies cybersecurity risks and protects PSE from potential cybersecurity threats through IT security risk assessments and contract reviews, vulnerability assessments and management, and penetration testing.
Why you should work @ PSE IT:
We are leaders in delivering technology solutions that drive IT innovation within the energy industry and create long-term value for our customers. Across our organization, you'll find diverse thinkers who thrive in a culture of collaboration and teamwork while enjoying a flexible work environment that fosters creativity, commitment, and most importantly - a work-life balance.
If you're looking for a well-rounded, opportunity-rich career path, you have come to the right place. Join us and help make a difference in achieving a clean-energy future through technology and teamwork.
In this role you will:
1. Develop, deliver, maintain or monitor IT security policies, standards, and best practices.
2. Perform security, vulnerability and threat assessments and security incident management.
3. Uphold the safety compliance standards inherent to PSE's operating and/or field procedures related to work responsibilities. Promote a culture of total safety.
4. Demonstrate commitment to conduct business honestly, ethically and consistent with our core values and Code of Conduct. Ensure duties are performed in accordance with all regulatory compliance obligations.
Job Responsibilities
1. Analyze application security needs based on the sensitivity or proprietary nature of the data, and ensure all systems are utilized for management-approved purposes only.
2. Provide technical expertise and guide the administration of security tools that control and monitor information security.
3. Research, evaluate, design, test, recommend, and plan implementation of new or improved information security software or devices.
4. Provide expert working knowledge of the day-to-day operating environment, available tools, operating techniques, and customer applications.
5. Apply security, risk or compliance fundamentals, concepts and principles in at least one process area.
6. Update processes, procedures and policies as necessary.
7. Provide advice and guidance regarding the implementation of security compliance controls.
8. Determine causes of security and compliance violations and recommend corrective actions to ensure data security.
9. Develop work plans and manage to the project schedule.
10. May act as a member of IT security incident response team.
11. Proficiently apply IT methods, professional knowledge and PSE standards and practices to complex tasks and situations.
12. Intuitively grasp familiar, stable system performance situations.
13. Respond to unfamiliar, undefined, unexpected, or unstable situations with the professionally prescribed standard response.
14. Use standard analytical tools and rules to determine root cause and resolve the broad range of common system or application problems.
15. Update or create documentation based on work performed.
16. Work with IT professionals and managers, primarily within own segment.
17. Effectively relate to business partners, professional peers, and other team members.
18. Work with project manager to develop realistic work estimates, financial budgets and project schedules. Review project deliverables for accuracy.
19. Coach less experienced IT professionals.
20. Estimate resource requirements for medium-sized, straightforward projects.
21. Operate under general direction.
22. Perform other duties as assigned.
Minimum Qualifications
1. Bachelor's degree and 5 years of experience in a related field, or combination of specialized training or experience and five years of directly relevant experience.
2. Technical proficiency in security-related hardware and software; ability to function as a consultant to other IT groups on security matters.
3. Knowledge of security controls for servers and workstations.
4. Understanding of various operating environments, e.g. UNIX, Windows, Linux, Cisco IOS, AIX, Cisco UCS, VMWare.
5. Knowledge of working with network routers, LAN bridges, and the communication architectures which link them together.
6. Understanding of security 'firewall' gateways and their designs, configuration and management.
7. Knowledge of security and internal control frameworks such as: ISO 27001, NIST 800-53, COBIT and COSO.
8. Experience with implementation and management of compliance requirements such as NERC and SOX.
Desired Qualifications
1. Effective written and verbal communication skills are key for success in this role and you must also be passionate about mentoring and coaching junior level employees to ensure bench strength and support internal career progression.
2. Ability to effectively adapt to and apply rapidly changing technology to business needs.
3. Knowledge and understanding of business needs, with the ability to establish and maintain a high level of customer trust and confidence.
4. Proven ability to work under stress in emergencies; flexibility to handle pressure coming from all directions at one time.
5. Strong analytical and problem-solving skills.
6. Strong customer focus and ability to manage client expectations.
7. Highly desirable are certifications in one or more of the following:
* Certified Information Security Manager (CISM)
* Certified Information Systems Auditor (CISA)
* Certified Information Systems Security Professional (CISSP)
* SANS-GIAC certifications family
* Security Plus
Additional Information
At PSE we value and respect our employees and provide them opportunities to excel. We offer a competitive compensation and rewards package.
The pay range for this position is $114,300.00-$201,000.00, and this position is eligible for annual goals-based incentive bonuses.
PSE offers a suite of benefits to our employees. Employees are eligible for medical, dental, vision, basic life, and short- and long-term disability insurance. There are additional voluntary options of supplemental life insurance, accidental death and dismemberment insurance, flexible spending accounts for health care and dependent daycare, and an Employee assistance program (EAP). For long term savings, PSE offers a 401(k) investment option and a cash balance retirement plan. Employees will also receive Paid Time Off (PTO) and Paid Holidays throughout the calendar year. Detailed benefit overviews can be found on our Career page - Why Work For Us (pse.com).
Families and businesses depend on PSE to provide the energy they need to pursue their dreams. Our steadfast commitment to serving Washington communities with safe, dependable and efficient energy started in 1873. Today we're building the Northwest's energy future through efforts like our award-winning energy efficiency programs and our leadership in renewable energy.
Puget Sound Energy is committed to providing equal employment opportunity to all qualified applicants. We do not discriminate on the basis of race, color, religion, sex, national origin, age, sexual orientation, gender identity, marital status, veteran status or presence of a disability that with or without reasonable accommodation does not prevent performance of the essential functions of the job, or any other category prohibited by local, state or federal law.
Should you have a disability that requires assistance and/or reasonable accommodation with the job application process, please contact the Human Resources Staffing department at jobs@pse.com or 425-462-3017.
#J-18808-Ljbffr