IT - Security Analyst

Aera Energy   •  

Bakersfield, CA

Industry: Energy & Utilities


5 - 7 years

Posted 80 days ago

This job is no longer available.

Job Description

Key Deliverables:
Working as a member of the Aera Security Team, position will deliver:

  • A work environment with respect, honesty, and teamwork
  • Security infrastructure supporting firewalls, intrusion detection and prevention, Internet access, mail filtering, sandboxing, SIEM, and security analytics.
  • Information System risk assessments and associated mitigating controls
  • Reviews of organizational technical compliance with security standards, processes and the application of associated controls
  • Identification and implementation of key security technologies
  • Investigations into alleged or actual information security incidents
  • Information Security awareness to the Aera workers
  • Information security consultation and expertise to the company

Roles and Responsibilities

  • Maintain and support security infrastructure
    • Primary support of firewalls, including troubleshooting and analysis
    • Primary support of IDS/IPS, including policy tuning and investigations
    • Primary support of web proxy with SSL decryption
    • Primary support of mail filtering in hybrid cloud environment
    • Administration of sandboxing technologies
    • Administration of cloud security analytics with integration to SIEM
  • Review of SIEM events and investigate suspicious activity
  • Conduct Information System risk assessments on new and existing IT systems and develop appropriate controls
  • Providing expert advice on risks and mitigating controls
  • Carrying out and reporting on threats and vulnerabilities and possible business impacts
  • Contributing to and applying the standard compliance and incidents practices
  • Supporting audit activities and ensuring response on proposed actions
  • Maintaining the quality of control self-assessments
  • Assisting with the investigation of information security incidents

Required Skills

  • 5+ years’ experience as a Security/Network Administrator or equivalent knowledge
  • Extensive experience with firewalls, IPS/IDS, web proxy, mail filtering, vulnerability management, SIEC, DLP, NAC, multi-factor authentication, and other IT Security technologies and processes
  • Knowledge of TCP/IP Protocols, network analysis, and network/security applications
  • Knowledge of common Internet protocols and applications
  • Working knowledge of Windows, Linux, UNIX, Oracle, Cisco, and SQL Server security desirable
  • Working Knowledge of endpoint security suites
  • Ability to multi-task, prioritize, and manage time effectively
  • Strong attention to detail
  • Excellent interpersonal skills and professional demeanor
  • Excellent verbal and written communication skills
  • Excellent customer service skills
  • Experience with Incident, Problem and Change management processes in enterprise environments.
  • Ability to work in a fast paced environment, interact with staff, peers and customers on a technical & professional level.
  • Demonstrated ability to work under pressure and deliver to meet SLA’s.
  • Familiarity with ISO 27000 series documents
  • Familiarity with ICS (Industrial Controls Systems) standards (e.g. ISA, API, NIST…)
  • Working knowledge of Purdue Model Reference Architecture
  • IT Security auditing knowledge a plus

Required Experience

  • BS Degree in Computer Science, MIS, Information Security, or similar fields desirable
  • CISSP or equivalent information security certification desirable
  • Must have solid understanding of network engineering (CCNA a plus)
  • 5 or more years IT Security required
  • Critical Infrastructure / Oil and Gas experience desirable
  • Availability to provide 24x7 on-call support on a rotational basis