Information Security Engineer--short-term assignment

Energy Services Group International - The Woodlands, TX

Full-time
Save

Our electric utility client is looking for us to supply a contractor for a projected 3-month assignment in their Woodlands location.

Key responsibilities include:

  • Support the global endpoint security management plan and execution of policies that will be used across ALL endpoints in the enterprise, including

o Endpoint baseline configurations
o Vulnerability management
o Antivirus protection
o Data loss prevention
o Endpoint Detection and Response (EDR)
o Endpoint Protection Platform (EPP)
o Policy compliance (e.g. encrypted storage, activity timeout)

  • Implement strategy & technology roadmap for endpoint security
  • Support the implementation, administration, and operation of multiple endpoint security technologies such as FireEye, Symantec, McAfee and BigFix
  • Assist Manager in driving process excellence and maturity to push the envelope on delivering world-class endpoint security for all corporate and operational technology needs, including power generation units, nuclear plants, electric substations, SCADA, distribution automation, and advanced metering infrastructure (AMI)
  • Ensure endpoint security capability complies with specific requirements of North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) and Nuclear Regulatory Commission (NRC) Nuclear Cyber (10 CFR 73.54)
  • Review policy exceptions as required, e.g. operational environment requires that a non-standard endpoint be connected to the network
  • Work with other information security, information technology, risk & compliance personnel to ensure the integrity of all network connected endpoints
  • Work with Advanced Monitoring to create and maintain endpoint behavior profiles used to detect anomalous behavior, including expected installed software and active processes and services
  • Monitor endpoint security trends and emerging security threats and suggest changes to policy, procedures, and tools
  • Identify security vendor software and integration strategies
  • Track metrics for the effectiveness and maturity of endpoint security technologies and processes
  • Support digitization efforts to automate routine playbooks and identify opportunities for automation
  • Support program planning, engineering work breakdown structure, task estimation, scheduling, change management and quality control of endpoint team’s deliverables

Experiences needed

  • Five to seven years of cyber security experience across multiple disciplines (monitoring, log gathering, event correlation, configuration, behavior analytics, network engineering, application security, database, risk management, project management, endpoint protection, etc.)
  • Minimum of 1 year of hands on experience managing an endpoint security function
  • Experience designing, developing, testing and implementing Endpoint Security solutions such Symantec, RSA (EMC), FireEye, etc.
  • Knowledge in network concepts - firewalls, load-balancers, and network design
  • Experience working with outsourced teams
  • Strong organizational and time management skills
  • Expertise in working in partnership with colleagues throughout the enterprise, and participating in collaborative teams to achieve common goals

Minimum knowledge, skills, and abilities required of the position * Knowledge of Endpoint security architecture, best practices, Endpoint Protection Platform (EPP) and Endpoint Detection & Response (EDR) * Able to support technical engineering and process management and advocate and influence positive transformation within the broader information technology organization * Strong knowledge of multiple UNIX OS platforms and Windows-based operating systems * Well-versed in security operations, cyber security monitoring, intrusion detection, and secured networks * Skilled in security ramifications of energy related regulations (SOX, HIPAA, NERC CIP, FERC, and NRC Nuclear Cyber (10 CFR 73.54) * Knowledge of security, risk, and control frameworks and standards such as ISO 27001 and 27002, SANS-CAG, NIST, FISMA, COBIT, COSO and ITIL * Knowledge of current IT Security trends and evolutions in endpoint security * Working knowledge with scripting languages such as Perl or Python * Strong report writing and ability to effectively communicate across the IT organization * Available to travel * Self-motivated, with the ability to follow up on multiple tasks simultaneously * Capable of meeting deadlines and budgets Education Associate’s degree in computer science, cyber security or a related discipline or equivalent work experience. Bachelor’s degree preferred.

Job Types: Full-time, Temporary, Contract

Salary: $45.00 to $65.00 /hour

Experience:

  • Perl or Python: 3 years (Preferred)
  • cybersecurity: 5 years (Required)
  • Endpoint Security solutions such Symantec, RSA (EMC), FireEy: 1 year (Preferred)
  • ISO 27001 and 27002, SANS-CAG, NIST, FISMA, COBIT, COSO ITIL: 3 years (Preferred)
  • endpoint security: 1 year (Preferred)

Education:

  • Bachelor's (Preferred)

Location:

  • The Woodlands, TX (Preferred)

Contract Length:

  • 3 - 4 months