Troops to Energy Jobs

Job Information

MidAmerican Energy Company IT Security Operations Analyst III in Des Moines, Iowa

Primary Job Duties and Responsibilities (Essential Job Function)

Performs operational activities including threat hunting, security event monitoring, evaluation, containment and mitigation efforts for security events. Responds to real-time security incidents and supports activities for response, containment and event forensics. Provides a lead role on the Computer Incident Response Team (CIRT). Builds and maintains event alerts in the Security Information and Event Management (SIEM) system and other monitoring tools. Performs development and maintenance activities for security applications and assets. Uses knowledge of network infrastructure, anti-virus software, end point protection systems and other technologies to provide timely and effective cyber incidence response. Provides technical leadership to security operations analysts 1 and 2. Provides trend analysis and risk assessment to management about vulnerabilities in the environment.

Discovers threat activity, anomalies, and security incidences using packet capture, endpoint security platforms and logged event data across the network from a variety of sources both internal and external. (30%)

Consults with IT project teams and staff across all technology disciplines to provide direction on security requirements in accordance to security policies and standards. (15%)

Supports and maintains the Security Information and Event Management (SIEM) and Intrusion Detection Systems (IDS) as needed. This includes system design and enhancements using application development languages and performing complex database scripting and reporting. (10%)

Supports organization as a senior subject matter expert and lead analysts, IT security operations level 1 or 2 as required. (10%)

Assists in the development and maintenance of incident response procedures for security events that require the mobilization of IT resources to respond to network or system intrusions or malicious code. (10%)

Maintains strong understanding of all electronic security perimeters to ensure adequate defense in depth design across the IT enterprise. (5%)

Assists in complex forensic and investigation activities where advanced technical security skills are required. (5%)

Performs log management and security event evaluation for the enterprise, maintaining evidence, where required to support compliance obligations. (5%)

Maintains strong understanding of all electronic security perimeters to ensure adequate defense in depth design across the IT enterprise. (5%)

Provides timely and accurate cross-platform support in response to security threats that may arise that poses a risk systems across the company's computing enterprise. (0-5%)

Performs any additional responsibilities as requested or assigned. (0-5%)

Bachelor's degree in computer science, information technology or related field or equivalent work experience. (Typically six years of additional related, progressive work experience would be needed for candidates applying for this position who do not possess a bachelor's degree.)

A minimum of two years additional directly related technical experience is required.

Five years of experience with Security Information and Event Management and Intrusion Detection systems with associated incident response experience.

Demonstration of knowledge of security principles is desired through achievement or active pursuit of advanced security certification including CISM or CISSP.

Application development experience using programming languages such as PERL as well as open source security tools such as SNARE, SNORT, etc.

Ability to construct and execute complex database queries using SQL. Technical knowledge of complex operating systems, database, network software and disaster recovery practices.

Knowledge of information technology terms, equipment, systems, functions and major vendors.

Excellent oral and written communication skills, including presentation skills. Effective interpersonal skills and customer relationship skills. Effective analytical, problem-solving and decision-making skills.

Project management skills; ability to prioritize and handle multiple tasks and projects concurrently.

Employees must be able to perform the essential functions of the position with or without an accommodation. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, protected veteran status, or disability status.

Job: *Corporate Security

Organization: *Corp - Corporate Security & Resilience

Title: IT Security Operations Analyst III

Location: IA-Des Moines

Requisition ID: 2000723