These specifications are solely a guide to some of the attributes sought by Sawnee EMC (SEMC) for this position and are not intended and should not be viewed as a job description. They are not intended to cover each aspect of the position as the scope and duties of a given position may change or be temporarily altered based on the business needs of SEMC.
PURPOSE:
- To monitor and protect the Cooperative’s network(s), computers systems, and data from security issues, install/maintain security software, establish baseline configurations, document any security issues or incidents found and promote cyber-safety awareness and best practices.
- Demonstrates an awareness that the job exists to effectively serve each SEMC member, and at every opportunity to achieve increased member and public understanding for support SEMC.
DEMANDS:
- Bachelor’s degree in Cyber Security, Computer Information Systems, Computer Science, Information Systems, or related field.
- A minimum of three (3) years of overall security experience and three (3) years of direct experience in technical information security; or equivalent experience as solely determined by the Corporation.
REQUIREMENTS:
- Knowledge of common security technologies and tools gained through experience including Next-Gen firewalls, SIEM, vulnerability management, web, and email security, WAF, NAC, EDR/XDR, IPS/IDS, DLP, and security awareness.
- Knowledge and experience of operational information security processes including alert monitoring, threat detection, incident response, system, and architecture hardening.
- Knowledge and understanding of Azure security features.
- Experience reviewing raw log files, correlating data, and analyzing logs from various sources.
- Understanding of security risks associated with software, hardware, and cloud-based resources.
- Understanding of authentication technologies and protocols such as MFA, SSO, SAML, OAuth, and FIDO.
- Understanding of security frameworks, compliance, and standards such as NIST, CIS, and PCI.
- Functional understanding of DNS, DHCP, VPN, TCP/IP, Ethernet, and other networking technologies and concepts.
- Proficiency with Active Directory, Azure AD (Entra ID), Group Policy management and development.
- Proficiency with Windows Server administration and understanding of Windows event management.
- Knowledge of scripting, such as PowerShell, SQL, and KQL.
- Experience working in ITSM systems to manage daily workloads.
- Must have thorough working knowledge of MS Office products; Internet configuration and technologies;
- Must have a strong working knowledge of Network and System security.
- Ability to read, analyze, and interpret common scientific and technical journals, reports, and legal documents. Ability to respond to common inquiries, vendors, or members of the business community.
- Ability to define problems, collect data, establish facts, and draw valid conclusions. Ability to interpret an extensive variety of technical instructions in mathematical or diagram form and deal with several abstract and concrete variables.
- Ability to communicate well with all departments of the corporation, as well as members of the corporation.
- A valid Georgia driver’s license.
- Regular and reliable attendance and punctuality record.
- Flexibility for irregular work hours, including evenings and weekends as necessitated by circumstances.
- This position requires that this individual report in time of natural disaster and weather-related emergencies and recognize that the Corporation (SEMC) is an electric utility.
- Ability to work in a constant state of alertness and safe manner as an essential job function.
RESPONSIBILITIES:
- Provides agility and capability in identifying, detecting, protecting, and responding to cyber threats and predicting threats; recommends solutions for the Information Services (IS) team; verifies problem resolution and maintains records of work performed.
- Effectively and timely responding to issues with computer security vulnerabilities, phishing, malware, and forensic investigations and serves as subject matter expert specializing in host and network-based detection and prevention suites.
- Analyze and assess the security risks and vulnerabilities of the organization's systems, networks, and data.
- Develop, implement, and maintain security baseline configurations.
- Design, implement, and maintain security solutions and policies to protect the organization's assets and information.
- Monitor systems for security gaps, implement effective cyber security solutions, and provide pertinent data to the Information Services team.
- Monitor and respond to security incidents and breaches and conduct investigations and forensics.
- Monitor IPS/IDS for anomalous traffic patterns.
- Perform security audits, assessments, and tests to identify and remediate security gaps and weaknesses.
- Provide security awareness and training to the organization's staff.
- Research and stay updated on the latest cyber security trends, threats, and best practices.
- Collaborate with other IS and business teams to ensure the alignment and integration of security standards and practices.
- The employee processes and maintains confidential material in a circumspect manner.
- Recommends or performs minor remedial actions to correct problems.
- Provides updates, status, and completion information to manager, problem request tracking system, and/or users, via voice mail, e-mail, or in-person communication.
- Maintains current knowledge on advances and changes in occupational field, SEMC policies, programs, and services, and in the electric utility industry in general.
- Continues expanding knowledge and capability within job and organization through the independent pursuit of self-study courses and outside course offerings.
- This position reports directly to the Vice President of Information Services
- This job has no supervisory responsibilities.
- Requires the reliable and accurate performance of duties, to include decision-making responsibilities.
- Internal Communication: This position’s internal customers consist of all SEMC employees and assigned contract workers. External Communication: This position’s external customers include all SEMC members, the public, as well as vendors, legal advisors, regulatory agencies, and professional organizations.
WORKING CONDITIONS
- Requires the ability to work under frequent deadline pressures, multiple changing priorities, and frequent interruptions, along with assisting staff as needed.
- Ability to enter data, look at a computer monitor for extended periods of time, interact effectively with others through verbal communication, video, and email. Sedentary physical requirements regularly required to sit, speak, and hear, use hands to key, grasp, handle or feel; reach with hands and arms. Duties are performed with extended periods of time spent working with a computer and reading small-print materials.
- Physical requirements of standing, walking, bending, stooping, kneeling, crawling, reaching, grasping, lifting, carrying, pushing, pulling within the light strength level, occasionally extending into the medium strength level.
- The vision requirements include close vision, distance vision, depth perception and ability to adjust focus.
- The employee is occasionally exposed to the risk of electrical shock.
- The position includes general office conditions with frequent external meetings with employees and the public.
- The noise level in the work environment is usually moderate.
- The employee is frequently required to lift twenty-five (25) pounds. The employee is occasionally required to lift fifty (50) pounds.
- While performing the duties of this job the employee may be exposed to outside weather conditions.
- Position requires operation of a motor vehicle.
Reasonable accommodations may be made to enable qualified individuals with disabilities and disabled veterans to perform the essential functions.
Sawnee EMC is an Equal Opportunity and Affirmative Action Employer of Females, Minorities, Veterans, and Individuals with Disabilities.
Sawnee Electric Membership Corporation is an Equal Opportunity and Affirmative Action Employer of Females, Minorities, Veterans and Individuals with Disabilities.
Sawnee EMC is a VEVRAA Federal Contractor.
Reasonable accommodations may be made to enable qualified individuals with disabilities to perform the essential functions.
Drug Free Workplace
XJ6