Entergy Corporation
Information Security Engineer (Cybersecurity)
Entergy Corporation, Little Rock, Arkansas, United States, 72208
Job Title:
Information Security Engineer (Cybersecurity)Work Place Flexibility:
HybridLegal Entity:
Entergy Services, LLC***This position may be filled in The Woodlands, TX or Little Rock, AR. Other locations within Entergy's service territory may be considered - Texas, Arkansas, or Louisiana******This position will be filled as an Info Sec Engineer III-SR depending on the candidate’s qualifications and experience***JOB SUMMARY/PURPOSE:The Identity Management Systems Engineer assists in delivering Enterprise Identity Security access provisioning and authentication services for employees and vendors, Information Technology and Operational Technology, and with the capability to support cloud and on-premise platforms. The Engineer executes on policies to ensure critical applications, systems and data are protected from unauthorized access while managing the identities and access rights of people both inside and outside the organization.JOB DUTIES/RESPONSIBILITIES:Assist in executing on the strategy, roadmap and delivery plans for Identity and Access Management (IAM) SystemsDay-to-day operations of IAM systems to create a successful identity programAssist with compliance activities to meet requirements of North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) and Nuclear Regulatory Commission (NRC) Nuclear Cyber (10 CFR 73.54)Assist with establishing user identity, provisioning and de-provisioning access, access level changes, federation, etc.Assist with maintenance of IAM technology infrastructure, managing application and user-store integrations, directory capabilities, patching, upgrades, etc.Support the Enterprise Active Directory (AD) environment, Lightweight Directory Access Protocol (LDAP) services, virtual directory services (VDS), multi-factor authentication (MFA), federation services, privileged account management (PAM) and password managementSupport all system use of Role-Based Access Control (RBAC) for verifying and granting access to their resourcesMINIMUM REQUIREMENTSMinimum education required of the position:Associate degree in computer science, cyber security or a related discipline or equivalent work experience.Minimum experience required of the position:Info Sec Engineer III:
4 plus years of identity management experience or relevant experienceInfo Sec Engineer, SR:
6 plus years of identity management experience or relevant experienceExperience related to IAM skills/field: (i.e. provisioning and workflow, authentication and entitlements, role-based access controls (RBAC), data privacy, and IAM solutions) is a plusExposure to IAM federated roles and responsibilities within corporate environments is a plusExposure to federated identity and web services security concepts such as SAML, OAuth 2.0, OpenID Connect, OWIN and ID-WSF, WS-Federation, and WS-Security is a plusExperience with IAM technologies like Active Directory, LDAP, multi-factor authentication across different infrastructure topologies including external vendors is a plusExperience in supporting different topology models of IAM stack across cloud, on-prem, Multi-Data Centre with 100% availability of the service is a plusExperience working with outsourced teams is a plusMinimum knowledge, skills and abilities required of the position:Awareness of modern Identity Management protocols and standards, frameworks, federation technologies and solutionsKnowledgeable in Identity and Access Management products with proven technical capabilities with those solutionsExperience with enterprise directory solutionsSome technical engineering and process management skillsUnderstanding of security operations, access management, intrusion detection, and physical securityAwareness of security ramifications of energy related regulations (SOX, HIPAA, NERC CIP, FERC, and NRC Nuclear Cyber (10 CFR 73.54)Knowledge of security, risk, and control frameworks and standards such as ISO 27001 and 27002, SANS-CAG, NIST, FISMA, COBIT, COSO and ITILGood organizational and time management skillsAble to work in partnership with colleagues (e.g. corporate security) throughout the IT organization, and in collaborative teams to achieve common goalsWORKING CONDITIONS:As a provider of essential services, Entergy expects its employees to be available to work additional hours, to work in alternate locations, and/or to perform additional duties in connection with storms, outages, emergencies, or other situations as deemed necessary by the company. Exempt employees may not be paid overtime associated with such duties.Please note:
Authorization to work in the United States is a precondition to employment in this position. Entergy will not sponsor candidates for work visas for this position.
#J-18808-Ljbffr
Information Security Engineer (Cybersecurity)Work Place Flexibility:
HybridLegal Entity:
Entergy Services, LLC***This position may be filled in The Woodlands, TX or Little Rock, AR. Other locations within Entergy's service territory may be considered - Texas, Arkansas, or Louisiana******This position will be filled as an Info Sec Engineer III-SR depending on the candidate’s qualifications and experience***JOB SUMMARY/PURPOSE:The Identity Management Systems Engineer assists in delivering Enterprise Identity Security access provisioning and authentication services for employees and vendors, Information Technology and Operational Technology, and with the capability to support cloud and on-premise platforms. The Engineer executes on policies to ensure critical applications, systems and data are protected from unauthorized access while managing the identities and access rights of people both inside and outside the organization.JOB DUTIES/RESPONSIBILITIES:Assist in executing on the strategy, roadmap and delivery plans for Identity and Access Management (IAM) SystemsDay-to-day operations of IAM systems to create a successful identity programAssist with compliance activities to meet requirements of North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) and Nuclear Regulatory Commission (NRC) Nuclear Cyber (10 CFR 73.54)Assist with establishing user identity, provisioning and de-provisioning access, access level changes, federation, etc.Assist with maintenance of IAM technology infrastructure, managing application and user-store integrations, directory capabilities, patching, upgrades, etc.Support the Enterprise Active Directory (AD) environment, Lightweight Directory Access Protocol (LDAP) services, virtual directory services (VDS), multi-factor authentication (MFA), federation services, privileged account management (PAM) and password managementSupport all system use of Role-Based Access Control (RBAC) for verifying and granting access to their resourcesMINIMUM REQUIREMENTSMinimum education required of the position:Associate degree in computer science, cyber security or a related discipline or equivalent work experience.Minimum experience required of the position:Info Sec Engineer III:
4 plus years of identity management experience or relevant experienceInfo Sec Engineer, SR:
6 plus years of identity management experience or relevant experienceExperience related to IAM skills/field: (i.e. provisioning and workflow, authentication and entitlements, role-based access controls (RBAC), data privacy, and IAM solutions) is a plusExposure to IAM federated roles and responsibilities within corporate environments is a plusExposure to federated identity and web services security concepts such as SAML, OAuth 2.0, OpenID Connect, OWIN and ID-WSF, WS-Federation, and WS-Security is a plusExperience with IAM technologies like Active Directory, LDAP, multi-factor authentication across different infrastructure topologies including external vendors is a plusExperience in supporting different topology models of IAM stack across cloud, on-prem, Multi-Data Centre with 100% availability of the service is a plusExperience working with outsourced teams is a plusMinimum knowledge, skills and abilities required of the position:Awareness of modern Identity Management protocols and standards, frameworks, federation technologies and solutionsKnowledgeable in Identity and Access Management products with proven technical capabilities with those solutionsExperience with enterprise directory solutionsSome technical engineering and process management skillsUnderstanding of security operations, access management, intrusion detection, and physical securityAwareness of security ramifications of energy related regulations (SOX, HIPAA, NERC CIP, FERC, and NRC Nuclear Cyber (10 CFR 73.54)Knowledge of security, risk, and control frameworks and standards such as ISO 27001 and 27002, SANS-CAG, NIST, FISMA, COBIT, COSO and ITILGood organizational and time management skillsAble to work in partnership with colleagues (e.g. corporate security) throughout the IT organization, and in collaborative teams to achieve common goalsWORKING CONDITIONS:As a provider of essential services, Entergy expects its employees to be available to work additional hours, to work in alternate locations, and/or to perform additional duties in connection with storms, outages, emergencies, or other situations as deemed necessary by the company. Exempt employees may not be paid overtime associated with such duties.Please note:
Authorization to work in the United States is a precondition to employment in this position. Entergy will not sponsor candidates for work visas for this position.
#J-18808-Ljbffr