Talent.com
CIP Cyber Secuity Specialist

CIP Cyber Secuity Specialist

NRG EnergyHouston, Texas, United States
job_description.job_card.1_day_ago
serp_jobs.job_preview.job_type
  • serp_jobs.job_card.full_time
job_description.job_card.job_description

As an NRG employee, we encourage you to take charge of your career and development journey. We invite you to explore exciting opportunities across our businesses. You'll find that our dynamic work environment provides variety and challenge. Your growth is key to our ongoing success-take the lead in shaping your career development, goals and future!

Job Summary

Job Summary

Ensures execution of the security services and CIP compliance for generating plants. Will be responsible for maintaining inventories, configuration baselines, security logging and patching. Will work with compliance and controls personnel to implement and maintain the program and serve as the primary contact for the services.

Essential Duties / Responsibilities :

Essential Duties / Responsibilities

  • Ensure compliance to all NERC-CIP Standards at NRG's facilities.
  • Primary responsibility for CIP compliance at assigned site.
  • Create and maintain compliance or operational procedures as required.
  • Be the lead for all CIP related Physical and Electronic Access Control for identified site.
  • Be the primary contact for issues with Physical Security at all assigned sites for Physical Security Perimeters, including verifying those needing accesses, response to breaches and security system failures.
  • Determination, verification and justification of all open ports and enabled services on Cyber Assets.
  • Assessment of security patches and updates for all Cyber Assets.
  • Deployment or mitigation of required security patches and updates to all Cyber Assets.
  • Insure that Cyber Assets are protected by Antivirus / Antimalware applications; update as required.
  • Insure required logging and alerting of Cyber Assets is functional; respond to detection of various types of alerts or breaches.
  • Be the administrator for personnel needing electronic access, both local and remote, to Cyber Assets.
  • Follow NRG's Policy and Procedure for reporting of Cyber or Physical Security Incidents. Assist in testing of the Incident reporting procedure annually.
  • Perform and verify backups of Cyber Assets.
  • Create and maintain disaster recovery procedures and assist with performance
  • Follow and assist others in following the NRG Policy and Procedures for Change Management.
  • Perform Cyber Vulnerability Assessments as needed.
  • Provide accurate documentation for all NERC evidence requirements; complete evidence collections tasks in NRG's workflow program in a timely manner.
  • Assist with Compliance Requirements at other sites in the region as needed as well as being available to assist team members at other sites across the NRG fleet if needed.
  • Work with team members on projects and new, innovative ideas.
  • Working with various teams, prepare evidence needed for NERC Audits.
  • Maintain great working relationships with site personnel and other teams.
  • Some travel required- approximately 15-25%.
  • Other duties as required.

Working Conditions

Working Conditions

  • Work in an open office or power plant environment
  • Work overtime and non-standard working hours as directed

    • Minimum Requirements

    Minimum Requirements

  • Over three years of experience in Cybersecurity, NERC-CIP compliance, and / or power generation and transmission operations.
  • Hands-on experience with Distributed Control Systems (DCS).
  • Strong understanding of Operational Technology (OT) environments and Balance of Plant (BoP) systems.
  • Skilled in performing system backups and restoration procedures for OT systems.
  • Proficient in asset protection strategies, including antivirus / antimalware deployment, security patching, and continuous security monitoring.
  • Experience in configuring, patching, and maintaining Windows-based servers and workstations, including anti-malware management.
  • Solid working knowledge of Microsoft Access, Word, Excel, Visio, and Unix systems for both server and workstation environments.
  • Practical experience with Unix / Linux operating systems.
  • Familiarity with OT network infrastructure, including firewalls, switches, and routers.

    • Preferred Qualifications

    Preferred Qualifications

  • Bachelor's degree in information technology, engineering or related area
  • Cybersecurity certifications such as GCIP, CISSP, CISA, Security+
  • NERC-CIP experience and knowledge of NERC-CIP Standards and Requirements.
  • Knowledge and / or experience working with Distributed Control Systems (DCS).
  • Knowledge of OT Technologies and Balance of Plant (BoP) Systems.
  • Experience working with Ovation, T3000, Symphony +, or GE Control Systems
  • Experience using vulnerability scanning tools.
  • Experience provisioning and maintenance of PACS.
  • Administration experience of Windows and as related to both servers and workstations.
  • Demonstrated ability to communicate (verbal and written) with all levels of internal and external customers.
  • Demonstrated ability to work independently and as a team member.
  • Demonstrated ability to set priorities and to respond to changing demands.
  • Ability to exercise discretion and independent judgment in applying established techniques, procedures or standards; demonstrated ability to maintain confidentiality.

    • Additional Knowledge, Skills and Abilities

    Additional KSAs

  • Socialize innovative ideas with the team and others.
  • Performs moderately complex work assignments under minimal supervision.
  • Works to resolves moderately complex issue and seeks guidance from team members on escalated issues.
  • Demonstrated ability to communicate (verbal and written) with all levels of internal and external customers.
  • Demonstrated ability to work independently and as a team member.
  • 1 year or more of experience with system management (patching, troubleshooting, administration)
  • Demonstrated ability to set priorities and to respond to changing demands.
  • Ability to exercise discretion and independent judgment in applying established techniques, procedures or standards; demonstrated ability to maintain confidentiality.

    • Physical Requirements

    Physical Requirements

    Demand

    Frequency

  • Requires lifting as appropriate to complete duties

    • Occasional

    Statement

    Statement

    NRG Energy is committed to a drug and alcohol free workplace.To the extent permitted by law and any applicable collective bargaining agreement, employees are subject to periodic random drug testing, and post-accident and reasonable suspicion drug and alcohol testing. EOE AA M / F / Vet / DisabilityLevel, Title and / or Salary may be adjusted based on the applicant's experience or skills.Official description on file with Human Resources.

    NRG Energy is committed to a drug and alcohol-free workplace. To the extent permitted by law and any applicable collective bargaining agreement, employees are subject to periodic random drug testing, and post-accident and reasonable suspicion drug and alcohol testing. EOE AA M / F / Vet / Disability. Level, Title and / or Salary may be adjusted based on the applicant's experience or skills.

    Official description on file with Talent.

    serp_jobs.job_alerts.create_a_job

    Cyber Specialist • Houston, Texas, United States

    Job_description.internal_linking.related_jobs
    • serp_jobs.job_card.promoted
    • serp_jobs.job_card.new
    Workday Security Architect

    Workday Security Architect

    VirtualVocationsPasadena, Texas, United States
    serp_jobs.job_card.full_time
    A company is looking for a Workday Security Architect to lead the redesign and optimization of a large enterprise Workday security environment. Key Responsibilities Lead design sessions with stake...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_hours
    • serp_jobs.job_card.promoted
    Senior Cloud Security Architect

    Senior Cloud Security Architect

    VirtualVocationsHumble, Texas, United States
    serp_jobs.job_card.full_time
    A company is looking for a Senior Information Security Architect (Remote).Key Responsibilities Develop and implement a comprehensive cloud security strategy aligned with organizational goals and ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Internal Investigations Specialist

    Internal Investigations Specialist

    VirtualVocationsHumble, Texas, United States
    serp_jobs.job_card.full_time
    A company is looking for a Specialty Investigator - Internal Investigations.Key Responsibilities Investigate suspected internal fraud and financial crimes, documenting findings in a case manageme...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_1_day
    • serp_jobs.job_card.promoted
    • serp_jobs.job_card.new
    Security GRC Analyst

    Security GRC Analyst

    VirtualVocationsHouston, Texas, United States
    serp_jobs.job_card.full_time
    A company is looking for a Security GRC Analyst.Key Responsibilities Lead the strategy, execution, and improvement of the compliance program, including assessments and policy documentation Devel...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_hours
    • serp_jobs.job_card.promoted
    Software Security Engineer

    Software Security Engineer

    VirtualVocationsHumble, Texas, United States
    serp_jobs.job_card.full_time
    A company is looking for a Software Security Engineer, Experienced or Senior (Virtual).Key Responsibilities Operationalize the open-source policy and process through automation Independently inv...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_1_day
    • serp_jobs.job_card.promoted
    Cyber Security Specialist

    Cyber Security Specialist

    VirtualVocationsHumble, Texas, United States
    serp_jobs.job_card.full_time
    A company is looking for a Cyber Security Logistics Specialist SME II.Key Responsibilities Reviews and updates system artifacts and develops baseline impact values for medical devices Documents ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_1_day
    • serp_jobs.job_card.promoted
    Application Security Engineer

    Application Security Engineer

    VirtualVocationsHumble, Texas, United States
    serp_jobs.job_card.full_time
    A company is looking for an Application Security Engineer to join their security team.Key Responsibilities Conduct application security assessments, including threat modeling and penetration test...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    • serp_jobs.job_card.new
    Security Analyst Consultant

    Security Analyst Consultant

    VirtualVocationsHumble, Texas, United States
    serp_jobs.job_card.full_time
    A company is looking for a Security Analyst - Consultant.Key Responsibilities Champion DevSecOps through security automation by designing, implementing, and maintaining security tools Monitor an...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_hours
    • serp_jobs.job_card.promoted
    • serp_jobs.job_card.new
    CISSP Security Architect

    CISSP Security Architect

    VirtualVocationsHumble, Texas, United States
    serp_jobs.job_card.full_time
    A company is looking for a MeF Security Architect to lead security architecture and serve as the key point of contact for security-related decisions. Key Responsibilities Develop and extend MeF se...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_hours
    • serp_jobs.job_card.promoted
    • serp_jobs.job_card.new
    Workday Security Analyst

    Workday Security Analyst

    VirtualVocationsHouston, Texas, United States
    serp_jobs.job_card.full_time
    A company is looking for a Workday Security Analyst to configure, maintain, and advise on security within the Workday application ecosystem. Key Responsibilities Manage Workday security configurat...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_hours
    • serp_jobs.job_card.promoted
    Security DevOps Engineer

    Security DevOps Engineer

    VirtualVocationsHumble, Texas, United States
    serp_jobs.job_card.full_time
    A company is looking for a Security DevOps Engineer with expertise in Azure security and compliance.Key Responsibilities Identify and remediate security vulnerabilities in Azure workloads and dev...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_1_day
    • serp_jobs.job_card.promoted
    • serp_jobs.job_card.new
    Senior Corporate Security Engineer

    Senior Corporate Security Engineer

    VirtualVocationsHumble, Texas, United States
    serp_jobs.job_card.full_time
    A company is looking for a Senior Corporate Security Engineer to enhance enterprise security operations.Key Responsibilities Manage and optimize Sumo Logic SIEM for threat detection and investiga...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_hours
    • serp_jobs.job_card.promoted
    Enterprise Denial Analyst

    Enterprise Denial Analyst

    VirtualVocationsHumble, Texas, United States
    serp_jobs.job_card.full_time
    A company is looking for an Enterprise Denial Analyst responsible for reviewing technical denial claims and optimizing financial outcomes in the revenue cycle. Key Responsibilities Review technica...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_1_day
    • serp_jobs.job_card.promoted
    Senior IT Security Engineer

    Senior IT Security Engineer

    VirtualVocationsHouston, Texas, United States
    serp_jobs.job_card.full_time
    A company is looking for a Senior IT Security Operations Engineer.Key Responsibilities Monitor, detect, analyze, and respond to security events and incidents using various security tools Conduct...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    • serp_jobs.job_card.new
    Specialty Investigator - Ohio

    Specialty Investigator - Ohio

    VirtualVocationsHumble, Texas, United States
    serp_jobs.job_card.full_time
    A company is looking for a Specialty Investigator to investigate suspected external fraud and financial crimes.Key Responsibilities Investigates suspected external fraud and financial crimes Doc...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_hours
    • serp_jobs.job_card.promoted
    CIP Cyber Secuity Specialist

    CIP Cyber Secuity Specialist

    NRG EnergyHouston, TX, United States
    serp_jobs.job_card.full_time
    As an NRG employee, we encourage you to take charge of your career and development journey.We invite you to explore exciting opportunities across our businesses. You'll find that our dynamic work en...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_1_day
    • serp_jobs.job_card.promoted
    • serp_jobs.job_card.new
    SafeTrace Analyst

    SafeTrace Analyst

    VirtualVocationsPasadena, Texas, United States
    serp_jobs.job_card.full_time
    A company is looking for a SafeTrace Analyst to support Epic's SafeTrace Tx module.Key Responsibilities Support system build, troubleshooting, and reporting for blood product tracking and transfu...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_hours
    • serp_jobs.job_card.promoted
    SAP Application Security Engineer

    SAP Application Security Engineer

    VirtualVocationsHumble, Texas, United States
    serp_jobs.job_card.full_time +1
    A company is looking for an Application Security Engineer with expertise in SAP systems for a short-term contract.Key Responsibilities Assess and strengthen security configurations within SAP ABA...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_1_day
    • serp_jobs.job_card.promoted
    • serp_jobs.job_card.new
    Principal Incident Response Analyst

    Principal Incident Response Analyst

    VirtualVocationsHumble, Texas, United States
    serp_jobs.job_card.full_time
    A company is looking for a Principal Incident Response Analyst to coordinate incident response activities and enhance security measures. Key Responsibilities Manage and initiate incident and respo...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_hours
    • serp_jobs.job_card.promoted
    • serp_jobs.job_card.new
    State Licensed Background Investigator

    State Licensed Background Investigator

    VirtualVocationsHumble, Texas, United States
    serp_jobs.job_card.full_time
    A company is looking for a Background Investigator to conduct remote investigations and report findings.Key Responsibilities Conduct desktop-based investigations and document findings Prepare de...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_hours