Cyber Security Compliance Analyst

Job Details

Status

open

End Date

Until Filled

Job ID

122

Job Type

FULL TIME/EMPLOYEE

Job Description

US:MD:HUGHESVILLE

FULL TIME

Southern Maryland Electric Cooperative has an immediate opening for a Cyber Security Compliance Analyst.

Scope of Position:

Ensures all cyber-security technical components of NERC CIP compliance program are properly implemented to reduce risk of non-compliance sanctions and promote reliability and security of the Bulk Electric System (BES).

Primary Responsibilities

· Responsible for advanced TripWire administration and configuration, with a goal towards enhancing and further refining TripWire infrastructure as it relates to application, database, machine logs, troubleshooting, management reporting and customer queries.

· Support and lead vendor integrators coordinating the procurement, design, integration and implementation of the Cybersecurity tools in support of NERC Critical Infrastructure Protection (CIP) for Industrial Control Systems.

· This position will manage a risk-based process for the assessment and mitigation of any information or cyber security risk, consisting of supply chain partners, vendors, consumers and any other third parties.

· Responsible for ensuring accurate and timely resolutions to all assigned issues relating to critical infrastructure security.

· Research, investigate, communicate, and integrate actionable threat intelligence information in Cyber Security Operations and IT systems.

· Facilitate vulnerability scanning, analysis, prioritization and remediation.

· Work effectively with business units to facilitate information security risk assessment and risk management processes and adhere to the SMECO Internal Compliance Program (ICP).

    Candidate must be knowledgeable in network and security management and monitoring software; be capable of problem analysis and problem resolution at both a strategic, tactical and operational level; have strong written, verbal skills, project management and technical analysis skills.

    The starting salary range for this position is $75,000-$97,200. SMECO offers and excellent benefits program including a 401k 6% dollar for dollar match and additional 3% non-elective company contribution.

    Interested candidates should apply via SMECO’s website at www.smeco.coop/careers.

    All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.

    REQUIRED SKILLS:

    Education:

    Bachelor’s or advanced degree in Information Technology/Computer Science, Engineering or related field. Experience will be considered in lieu of degree requirement. Information security certifications/qualifications such as CISSP, CISA, CISM, or SANS GIAC are preferred, but not required. 

    Experience:

    Minimum five years progressive work experience in Information Technology, cyber security, programming, computer/server administration, network engineering, and/or technical writing with strong analytical skills, and written and verbal communications skills. Previous experience working for an electric utility with NERC CIP experience/exposure preferred. 

    Skills:

    a. Knowledge in network and security management and monitoring software. 

    b. Problem analysis and problem resolution at both a strategic, tactical and operational level, 

    c. Strong written, verbal skills, project management and technical analysis skills.

    Notice of Equal Opportunity Employment

    We expect employees to be honest, trustworthy, and operate with integrity. Discrimination and all unlawful harassment (including sexual harassment) in employment is not tolerated. We encourage success based on our individual merits and abilities without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, disability, marital status, citizenship status, military status, protected veteran status or employment status. We support and obey laws that prohibit discrimination everywhere we do business. We fully consider all qualified applicants including those with a criminal history.