At ERCOT, our diverse and dynamic work environment provides a platform on which employees can work together to build the future of the Texas power grid and wholesale market utilizing the latest technologies and resources. We encourage you to join our talented, dedicated workforce to develop world-class solutions for today and tomorrow’s energy challenges while learning new skills and growing your career.
ERCOT is committed to fostering inclusion at all levels of our company. It is the cornerstone of our corporate values of accountability, leadership, innovation, trust, and expertise. We know that individuals with a wide variety of talents, ideas, and experiences propel the innovation that drives our success. An inclusive and diverse workforce strengthens us and allows for a collaborative environment to solve the challenges that face our industry today and in the future.
JOB SUMMARY
Plan, implement, upgrade, and monitor security measures for the protection of computer networks and information. Provides a full range of analytic duties using knowledge of multidisciplinary security concepts, principles and practices applicable to security administration. Develops, recommends and enhances preventive and detective controls. Monitors and verifies that ERCOT’s internal and external computer security systems are protected from the latest threats and risks.
Implements, monitors and maintains preventive and detective controls. This may include any combination of the following: Designs architectures and controls for cyber security. Monitors, evaluates and executes security procedures. Monitors computing resources for evidence of compromise and reporting security incidents. Responds to, and reports on, IT security incidents, providing initial assessment of impact severity and types of incidents being addressed. Analyzes compromised computing resources of routine to moderate complexity. Supports the development, documentation, deployment, review and maintenance of information security policies. Communicates information security requirements and principles. Ensures compliance with security related regulatory and corporate requirements.
This position may be filled at any of several levels indicated below.
JOB DUTIES
- Monitors computing resources for evidence of compromise and reports security incidents, including initial assessment of impact severity and incident type
- Investigates and analyzes computing resources for evidence of compromise, including complex systems, to improve security design, ensure policy compliance, and anticipate emerging threat profiles
- Analyzes security breaches and participates as a member of the Incident Response Team, including serving in senior and leadership roles
- Designs and supports cybersecurity monitoring programs, including technologies and processes
- Enforces security policies and procedures by administering and monitoring security controls, reviewing violation reports, and investigating exceptions
- Develops and implements mitigation strategies for threat reduction based on monitoring of IT systems
- Conducts periodic operating system and application security assessments, recommending remediation actions to address vulnerabilities
- Researches, evaluates, tests, and implements new or vendor-supplied security software solutions
- Maintains up-to-date documentation and procedures for security software and system administration
- Develops and supports technical security standards and incident investigation procedures to align with organizational policies
- Reports security issues to responsible personnel and coordinates response and resolution efforts
- Serves as a subject matter expert in assigned areas
- Mentors and provides guidance to junior security team members
- Continuously expands and applies knowledge of current and emerging security issues
Position level is open depending on the candidate's previous experience that is identified. (Level 2 or Senior considered).
EDUCATION
- Bachelor’s degree in Cyber Security, Computer Science, MIS, or a combination of education and experience that provides the applicant with knowledge equivalent to a major in of such fields is required at all levels
EXPERIENCE
- Level 2: Minimum 2 years (in excess of degree requirements stated above) of progressively responsible experience in IT security
- Level 3: Minimum 3 years (in excess of degree requirements stated above) of progressively responsible experience in IT security
- Senior: Minimum 5 years (in excess of degree requirements stated above) of progressively responsible experience in IT security
CERTIFICATIONS & LICENSES
- COMPTIA Security+ (required)
- CISSP and/or other security certifications preferred for all levels
WORK LOCATION – Taylor, TX:
- Employees will be required to be on-site in Taylor, TX at minimum 2 days per week, or more, as needed based on the business needs as determined by management
- On-site schedules are flexible or may be rotated based on business needs as determined by the Manager
- Remote work is required to be performed from your Texas residence.
- Employees may opt to work on-site more than required or 100% of the time
The foregoing description reflects the minimum qualifications and the essential functions of the position that must be performed proficiently with or without reasonable accommodation for individuals with disabilities. It is not an exhaustive list of the duties expected to be performed, and management may, at its discretion, revise or require that other or different tasks be performed as assigned. This job description is not intended to create a contract of employment with ERCOT. Both ERCOT and the employee may exercise their employment-at-will rights at any time. #LI-DN
ERCOT is firmly committed to equal employment for all qualified persons without regard to race, sex, medical condition, religion, age, creed, national origin, citizenship status, marital status, sexual orientation, physical or mental disability, ancestry, veteran status, genetic information or any other protected category under federal, state or local law.
Expected Salary Range:
$99,230 - $168,715