The National Rural Electric Cooperative Association (NRECA), with offices in Arlington, VA and Lincoln, NE is the trade association for over 900 consumer-owned electric cooperatives serving more than 42 million people. NRECA is committed to harnessing the strength of America's electric cooperatives into a single powerful voice. NRECA has won the following awards over the past few years:
* Top Workplace by the Washington Post * 100 Best Places to Work - ComputerWorld Magazine * 50 Best Places to Work - The Washingtonian * CARE Award Recipient - Recognizing organizations that promote a positive work-life balance * Best Place to Work Award Recipient - Lincoln, NE * Gold Well Workplace - Wellness Councils of America * State of NE Governor's Wellness Award - Grower Level
At NRECA, we work with people who are leaders in their fields. They are down-to-earth, hardworking professionals committed to helping our members serve their communities. Our work is interesting, constantly evolving, and requires new skills to meet the evolving needs of a dynamic industry. In this collegial, inclusive work environment, united around the compelling purpose and history of electric cooperatives, we thrive. And topping it off, NRECA cares about each person's overall well-being, encouraging health, financial security, and a sustainable work/life balance. EEO/AA- M/F/Disability/Protected Veteran Status/Genetic Data
Summary TSE Cyber Security Engineer P.3
R esponsible for the day-to-day maintenance and operation of cyber security s ystems to ensure that controls are adequate and effective. Protects digital files and information systems against unauthorized access, modification or destruction . Analyzes scenarios, provides solutions and recommendations to protect the environment, customers, and employees. Monitors computer networks for security issues, maintains security software, and documents any security issues or breaches. Has a passion to continue to learn everything and anything about cyber security related topics.
Essential Duties and Responsibilities:
Monitors computer networks for security issues and identif ies and mitigate s network vulnerabilities and explain s how to avoid them.
Investigates intrusion incidents, conducts forensic investigations /analysis and mounts incident responses. Documents security breaches and assesses the damage they cause. Fixes detected vulnerabilities to maintain a high-security standard.
Conducts security assessments of network infrastructure, hosts and applications to identify vulnerabilities and plans, recommends and implements appropriate security tools and countermeasures necessary to protect TSE systems.
Leads patch management efforts with the ability to plan and successfully deploy patches in a timely manner while understanding business impact. Analyzes patch results for internal/external penetration testing.
Applies ISO27001 specifications for a framework of policies and procedures that include all legal, physical and technical controls involved in an organization's risk management.
Maintains knowledge on current information technology trends and security standards and researches security enhancements and make recommendations to management.
Leads cyber-security efforts with vendors to perform tests and audits to uncover network vulnerabilities. Coordinates security plans with outside vendors
Assesses the risks and benefits of new technology (i.e., cloud computing, software, etc.) to store, manage and process TSE's data and makes recommendations to management.
Works with customers to help install SSL certificates and maintain Cloudflare accounts.
Develops and implements TSE policies and best practices for IT cyber-security. Delivers security awareness training to users of TSE systems are knowledgeable on current practices.
Requirements and Qualifications
Formal Education Required:
Bachelor's degree in computer science or related field. MBA in information systems desired .
5 years ' experience in information security or related field. Experience with computer network pen etration testing and techniques and supporting security of multisite CMS environmen ts, specifically Drupal or WordP ress. Experience with cloud - ba sed web servers and databases desired. Experience with Linux and bash shell scripting is a plus
The right candidate should have at least one of the certifications below:
Certified Information Systems Security Professional (CISSP)
Certified Information Security Manager (CISM)
Certified Information Systems Auditor (CISA)
Certified in Risk and Information Systems Control
Certified Ethical Hacker
Global Information Assurance Certification
Vendor credentials offered by companies such as Microsoft and Cisco
Knowledge, Skills and Abilities Required:
Knowledge of firewalls, proxies, SIEM, DLP, AV, anti - virus, anti-malware, patch management , web server hardening practices and IDPS concepts as demonstrated by prior work experience.
Knowledge of the fundamentals of TCP/IP, computer networking, routing and switching and the language, protocol and functioning of the internet as demonstrated by prior work experience.
Ability to organize and manage time, multi-task, operate under pressure and prioritize projects using effective organization skills as demonstrated by prior work experience.
Ability to work well within a team of professionals as demonstrated by prior work experience.
Ability to exercise judgment and discretion in the execution of all duties and responsibilities as demonstrated by prior work experience.
Ability to effectively use Microsoft Office tools (Excel, Word, Power Point) and project management software in the day-to-day essential duties of the job as demonstrated by prior work experience.
Ability to communicate, both verbally and in writing, with a diverse membership and employees in a clear and precise manner as demonstrated by prior work experience.
ADA Requirements :
The worker is required to have close visual acuity to perform an activity such as: preparing and analyzing data and figures; transcribing; viewing a computer terminal and extensive reading.
Exerting up to 20 pounds of force occasionally, and/or up to 10 pounds of force frequently, and/or a negligible amount of force constantly to move objects. If the use of arm and/or leg controls requires exertion of forces greater than that for sedentary work and the worker sits most of the time, the job is rated for light work.
All qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or other legally protected status. Reasonable Accommodation Requests NRECA is committed to working with and providing reasonable accommodation to individuals with physical and mental disabilities. If you need special assistance or an accommodation while seeking employment, please e-mail firstname.lastname@example.org or call: 703-907-5992 - NRECA Arlington Human Resources. Please call 402-483-9275 - NRECA Lincoln Human Resources, for Lincoln, NE employment opportunities. We will make a determination on your request for reasonable accommodation on a case-by-case basis. EEO is the Law The law requires NRECA to post a notice describing the Federal laws prohibiting job discrimination. For information regarding your legal rights and protections, please click on the following link: EEO is the Law and EEO is the Law Supplement . Pay Transparency Non-Discrimination NRECA will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay. Please see the Pay Transparency Nondiscrimination Provision for more information. E-Verify As a Federal Contractor, NRECA is required to participate in the E-Verify Program to confirm eligibility to work in the United States. For information please click on the following link: E-Verify
Internal Number: req289
BACK TO TOP
For assistance reach out to Customer Service at email@example.com or 888.491.8833 x 1919.