Support the Cyber Security Center by conducting monitoring of security tools, assessing threats, security events, and risks involving any of Tri-State’s technology infrastructures. Follow standard operating procedures for detecting, classifying, and reporting incidents under the supervision of the CSC Manager in partnership with other Cyber Security Engineers. Drive security architecture discussions and tool selection. Evaluate and recommend security solutions to management, manage security functions, and resolve security issues.
REQUIRED JOB QUALIFICATIONS
Education and Training
Bachelor’s degree in computer science, information technology, business administration or other related area or equivalent combination of experience and education.
Knowledge, Skills, and Ability:
Strong understanding of Internet Protocol (IP), Transmission Control Protocol (TCP)/IP, and other network administration protocols.
Working technical knowledge of Microsoft server infrastructure and networking, Linux/Unix variant operating systems, and Cisco networking.
Familiarity with governance and controls frameworks, such as International Organization of Standardization (ISO), Control Objectives for Information and Related Technology (COBIT), National Institute of Standards and Technology (NIST), Committee of Sponsoring Organizations (COSO) and Information Technology Infrastructure Library ( ITIL).
Working knowledge of security architectures and devices.
Working knowledge of threat intelligence consumption and management.
Working knowledge of root causes of malware infections and proactive mitigation.
Working knowledge of lateral movement, footholds, and data exfiltration techniques.
Track record of creative problem solving, and the desire to create and build new processes.
Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate option.
Excellent oral and written communications skills.
Ability to maintain effective working relationships.
Eight (8) years of IT cyber security related experience with at least one to three (1 – 3) years of security management, analysis and/or tuning support experience.
Experience with security architecture and operational support.
Experience in security technologies (firewall, antivirus, intrusion detection/prevention, security information event monitoring, vulnerability scanning, data loss prevention, encryption, PKI, Identify Access Management, Rights Management Services, etc.).
Experience in designing security/control processes, procedures and formal support documentation.
Experience in incident/forensic response planning and execution.
Experience with auditor coordination and control compliance.
Experience administering or utilizing security information and event management systems.
Experience with active threat hunting and adversary tracking.
Experience working in fast paced environments and ability manage workload even during times of stress or escalated activity.
Willingness to travel for investigations, meetings and training as needed. (Must possess a valid driver’s license.)
DESIRED JOB QUALIFICATIONS
One or more of the following certifications preferred:
Certified Information Systems Security Professional (CISSP)
Certified Intrusion Analyst (GCIA)
Certified Incident Handler (GCIH)
Reverse Engineering Malware Analyst (CREM)
Global Information Security Certification (GIAC )
Certified Ethical Hacker (CEH)
Certified Information Systems Auditor (CISA)
Project management experience.
Advanced Degree in a related discipline.
Experience in Supervisory Control and Data Acquisition (SCADA) and Industrial Control Systems (ICS).
Experience in Sarbanes-Oxley (SOX) and North American Electric Reliability Corporation Critical. Infrastructure Protection (NERC CIP) compliance.
Experience in multiple technical and business disciplines.
Experience in designing and delivering security awareness training.
PHYSICAL AND MENTAL DEMANDS: The physical demands and work environment characteristics described here are representative of those that must be met by an employee to successfully perform the essential functions of the position. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Physical demands: While performing the duties of this position, the incumbent is primarily required to sit, stand, walk, stoop, bend and frequently utilize a keyboard/computer. Specific vision abilities include close vision, peripheral vision, depth perception and the ability to adjust focus.
Mental demands: While performing the duties of this position, the incumbent will be required to problem solve, read, write and analyze data, work under schedules and deadline pressure, present information to others, work independently and use discretion and judgment for confidential or sensitive projects/issues.
Work Environment: While performing the duties of this position, the employee is exposed to an office environment indoors, and will occasionally travel outdoors to multiple locations dependent on work.
How to Apply:
Tri-State: Join the people behind the power. Tri-State recognizes the value of a highly-engaged and committed workforce and provides an excellent benefits program that includes medical, dental, retirement and life insurance. Please visit our careers site at www.tristategt.org/careers/for more details.
Tri-State Generation and Transmission Association is a wholesale electric power supplier owned by the 43 electric cooperatives that it serves. Tri-State generates and transmits electricity to its member systems throughout a 200,000 square-mile service territory across Colorado, Nebraska, New Mexico and Wyoming.
Serving approximately 1.5 million consumers, Tri-State was founded in 1952 by its member systems to provide a reliable, cost-based supply of electricity. Headquartered in Westminster, Colo., about 1,500 people are employed by Tri-State throughout its four-state service area.
Tri-State's power is generated through a combination of owned baseload and peaking power plants that use coal and natural gas as their primary fuels, supplemented by purchased power, federal hydroelectricity allocations and renewable resource technologies. Tri-State delivers power to its members through a transmission system that includes substation facilities, telecommunications sites and over 5000 miles of high voltage transmission lines.