This position implements and supports Wabash Valley Power Alliance’s security policies and architecture to ensure the confidentiality, integrity, and availability of all company assets under the guidance of senior Technical Service’s staff. This position contributes to protecting the Wabash Valley Power and our Member Cooperatives power grid reliability and our business operations. Success requires a desire to work with a broad range of technologies in small team to protect critical infrastructure.
ESSENTIAL DUTIES AND RESPONSIBILITIES:
Actively architect, design, administer, monitor, and support the infrastructure team installing and maintaining security architecture technology processes and products including security information and event management, anti-malware, intrusion detection, public key management, certificate management, physical security management, and identity & password management solutions.
Work in conjunction with Infrastructure team to identify and mitigate vulnerabilities.
Respond to security events and incidents.
Hunt for cyberthreats and risks hiding inside systems and data before attacks occur based on available threat intelligence
Monitor network, systems, and logs to ensure availability to all systems in conjunction with Managed Security Service Providers.
Administer, manage, and use system and applications vulnerability scanning tools.
Investigate and lead response activities to security events and potential incidents in accordance with prescribed procedures.
Back up Cybersecurity Analyst for day to day events and provide leadership in more advanced analysis.
Perform additional activities needed to demonstrate regulatory compliance with NERC CIP security standards, Federal Energy Regulatory Commission requirements, Personally Identifiable information requirements, Protected Health Information Requirements, and Department of Energy expectations.
Keep abreast of the latest security issues and brief senior Technical Services staff of emerging threats including both general threats and those specifically targeting the electric sector and industrial control systems.
Travel as necessary to power plants and substations and complete work within mandatory safety requirements.
Obtain and maintain security certifications as required.
Perform other duties as assigned.
EDUCATION AND/OR WORK EXPERIENCE REQUIREMENTS:
Bachelor’s Degree in Cybersecurity, Computer Science, Information Systems, Information Security & Assurance, Information Technology, Engineering or related field required.
Maintain a CISSP or similar certification demonstrating an advanced knowledge of security fundamentals
Obtain specific certifications as expected as part of career development.
PREFERRED EDUCATION AND EXPERIENCE:
Additional system, networks, or cybersecurity related certifications are a plus.
Current knowledge and experience with NERC CIP Reliability Standards
Knowledge of the NIST Cybersecurity Framework, Electric Sector Cybersecurity Capability Maturity Model, CIS 20 Security Controls, or other common cybersecurity frameworks
Ability to safely and successfully perform the essential job functions consistent with the ADA, FMLA and other federal, state and local standards, including meeting qualitative and/or quantitative productivity standards.
Ability to maintain regular, punctual attendance consistent with the ADA, FMLA and other federal, state and local standards
Must be able to lift and carry up to 25 lbs.
Must be able to talk, listen and speak clearly on telephone
About Wabash Valley Power
Headquartered in Indianapolis, Indiana, Wabash Valley Power is a not-for-profit electric cooperative and wholesale provider of reliable, affordable electricity to our 23 electric distribution member cooperatives. These cooperatives in turn serve more than 300,000 homes, businesses, and farms in Indiana, Illinois, and Missouri.
As a not-for-profit co-op, we do things a bit differently—and that’s the point. Because we aren’t influenced by shareholders, we make our decisions with our members in mind. That means we value things like teamwork, and putting families first. It also means a business model that’s designed for stability and growth. It’s a Deliberately Different approach to the energy industry, and that’s great news for the people who count on us.
We believe what benefits our employees benefits our company. That’s why we put employees first—your health, your family, and your development. These aren’t just slogans: We offer continuing education, flex time, health benefits, a 401(k) match and pension plan, and much more. Here are just a few of the things that make our company culture unique:
• No Sweat - We offer a wellness program that includes a payroll cr...edit for medical insurance, an on-site fitness center for your convenience and extra vacation days for participating. We’ll even throw in a fitness device reimbursement to keep you on track!
• Flex Time - Our flexible schedule means you can work in your appointments or family events and maintain a comfortable work-life balance.
• Stay in School - We value employees who have a desire to learn, so we provide funds for continuing education. We also offer in-house training and ongoing development through our internal GROW program.
• Keep it Casual - When you work for us, you work in comfort. Blue jeans are the norm in our office and we make them look good!
• Work Hard, Play Hard - We reward our employees with generous vacation time, to the tune of up to five weeks off a year. Even our new employees receive credit for prior work experience.