Position Summary Description
Under direct supervision, monitor Seminole’s networks and cyber assets for potential security incidents and data breaches. This includes monitoring of the network infrastructure (firewall, switches, etc.), the SIEM systems for cybersecurity threats, and assisting with threat mitigation and incident response. Additional responsibilities include administrating the cybersecurity awareness program and participating in the security training. Lastly, support the NERC CIP regulatory standards on applicable systems and during audits.
Qualifications and Education Requirements
Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, Computer Engineering, or a closely related field is required from an accredited institution. Two (2) years of similar experience may be substituted for each one (1) year of formal education.
Core Competencies: Adaptable, Collaborative, Conscientious, Critical-Thinking, Outcome-Driven and Professional
Technical Competencies/Skills:
- Basic cybersecurity knowledge
- General administration for MS Windows systems
- Understanding of network architecture
- Fundamental of firewalls, switches, and routers
- Knowledge of Security Information Event Management (SIEM) systems
- Proficiency with Microsoft Office Applications
Soft Competencies/Skills:
- Effective verbal/nonverbal, listening, and written communications
- Analytical
- Problem Solving
- Works Independently
- Organization
Essential Functions
- Monitors firewalls, SIEM systems, network security equipment, and similar devices.
- Supports the cybersecurity training/education programs encompassing the enterprise.
- Provides cyber security support for all Seminole departments and users, as necessary.
- Assists with security reviews, identify potential issues, and assist with mitigating identified problems.
- Supports Seminole’s cybersecurity training/education programs administered corporate wide.
- Supports cyber security related projects, as necessary.
- Makes recommendations for changes to improve service and/or contain costs.
- Assists with incident response, recovery, and containment activities in support of the NERC Reliability Standards (CIP-003, 008 and 009).
- Remains current on cybersecurity threats, technological advancements and industry trends.
- Provides weekly progress reports on all assigned tasks and activities.
- Produces cybersecurity related data, alerts and reports as requested.
- Performs other duties as applicable to the position or as assigned.
- NERC Compliance: Performs NERC Compliance Program roles if/as designated in Seminole’s Standard Ownership Matrix (SOM) including ongoing evidence retention in “audit-ready” form. You should also be familiar with Seminole’s Enterprise Internal Compliance Program (ENT-GCD-RGC-EP-054) to further your understanding of Seminole’s compliance program and the context of your duties and responsibilities attendant to your designation in the SOM.
Physical Requirements
Must be able to follow established protective measures including wearing required personal protective equipment (PPE). Must possess a valid driver’s license and acceptable Motor Vehicle Report.
Working Conditions
Some travel and work outside of normal business hours. While working in certain areas of the plant or substation there is the potential for exposure to hazards typical of an industrial working environment. Maintains critical cyber equipment in a real-time environment that requires 24/7 on-call support and is subject to call out at any time which may include extended periods during inclement weather or other emergency conditions.
“Disclaimer - Management may modify this job description at any time and may require the performance of additional duties, or modification of physical requirements, with or without advance notice.”
