Work Place Flexibility:
Hybrid

Legal Entity:

Entergy Services, LLC

*This position may be filled in Little Rock AR, The Woodlands TX, or New Orleans LA. Relocation assistance and sponsorship is not provided.*

*This position will be filled as an Information Security Engineer III or Sr depending on the candidates experience and qualifications.*

Brief Position Description:

The Senior Information Security Engineer is responsible for proactively improving and evolving a successful security engineering function within Information Security. The Security Engineering team owns the deployment and operation of security monitoring tools and processes designed for real-time analysis, triage, and response to events and alerts generated across the enterprise to protect the company’s assets, solutions, and services by reducing response time to security incidents and risks. This role focuses on interpreting cyber security event data, security validation tests, user behavior analytics, third-party threat intel, and XDR data to develop security detection and response use cases, as well as tuning the systems supporting alert, response, and forensic data creation.

Key responsibilities include:

• Act as primary detection engineer. Lead identification and implementation of detection and response use cases in partnership with the security operations center utilizing telemetry from sources such as SIEM, XDR, Security Validation, External Threat Intelligence, User Behavior Analytics, and other security event data sources.
• Implement monitoring policies, reference architectures, and procedures in compliance with statutory and regulatory requirements across the enterprise.
• Ensure security of the environment in compliance with NERC CIP and NRC Nuclear Cyber standards.
• Execute strategy and technology roadmap for the SIEM platform.
• Drive process excellence to deliver a world-class Cyber Security function.
• Support lifecycle management of SIEM and related monitoring platforms, including upgrades and maintenance.
• Implement security measures for all device classes and hosting models, including on-premises, cloud, and external environments.
• Collaborate with internal teams to develop and implement monitoring use cases, including security orchestration and automation.
• Monitor, analyze, and correlate logs and alerts to identify threats or incidents.
• Maintain documentation and evidence for after-action reporting or legal purposes.
• Stay updated on regulatory developments and industry best practices.
• Oversee work of junior resources as needed.

Minimum Requirements:

Education:

• Associate degree in computer science, cybersecurity, or related field or equivalent work experience.
• Bachelor’s degree preferred.

Experience:

• For Engineer III: 4+ years in cybersecurity across multiple disciplines; experience with SIEM platforms is a plus; experience with outsourced teams, vulnerability management, incident response, and security reporting is beneficial.
• For Senior Security Engineer: At least 6 years of cybersecurity experience; experience developing detection and response use cases based on the Mitre ATT&CK Framework; familiarity with security tools and frameworks; experience with outsourced teams, vulnerability assessments, and monitoring solutions.

Knowledge, Skills, and Abilities:

• Technical engineering and process management skills.
• Knowledge of cloud monitoring, security orchestration, automation, user and entity behavior analytics.
• Broad knowledge of UNIX and Windows OS security.
• Understanding of security operations, intrusion detection, and network security.

Additional Qualifications:

• Knowledge of regulations such as SOX, HIPAA, NERC CIP, FERC, NRC Cybersecurity standards.
• Experience with security automation, user behavior analytics, and security frameworks like ISO 27001, NIST.
• Scripting skills (Perl, Python) a plus.
• Strong communication skills and ability to work independently or in teams.

Certifications:

• CISSP, CISM, CISA, GIAC certifications are a plus.

Additional Details:

#LI-TR1

#LI-HYBRID

Locations: Little Rock AR, New Orleans LA, The Woodlands TX

Job Function: Information Technology

FLSA Status: Professional

Relocation: No

Number of Openings: 1

Req ID: 119827

Travel: Up to 25%

EEO Statement: We provide equal employment opportunities regardless of race, color, religion, sex, gender, sexual orientation, gender identity, national origin, age, disability, or veteran status. We comply with applicable laws and prohibit unlawful employment practices.