Location: Hybrid, Charlotte/ Raleigh, NC (2 days onsite/week)
Duration: 12 months contract
Job Description:
- The Senior Cyber Security Governance and Risk Analyst is directly responsible for ensuring the operational reliability of Client s Bulk Electric System and Natural Gas Pipeline through demonstrated compliance with requirements defined by NERC CIP Standards and TSA Security Directives. To be successful, the Senior Cyber Security Governance and Risk Analyst must have a functional understanding of the IT Systems and Tools that support these environments, including:
Footprints and Service Now IT service management tools
Splunk
Ansible Automation Platform
Tripwire Enterprise / IP360
Palo Alto Panorama
Microsoft applications including Word, Excel, Visio, and PowerPoint
Other internally developed applications that support these environments
Responsibilities:
Major Duties and Responsibilities:
- The position requires the timely gathering and maintenance of evidence items that enforce and enhance the cybersecurity posture of the data network systems that support critical infrastructures by:
- Actively participating in daily, weekly, monthly, quarterly, and annual NERC CIP and TSA compliance tasks and audit activities, as well as, participating as a subject matter expert (SME) as necessary during audits.
- Working with multiple IT / Cybersecurity teams to ensure that solutions adhere to compliance requirements defined by NERC CIP Standards and TSA Security Directives.
- Assisting with the review, evaluation and root cause identification of deficiencies that lead to compliance violations and/or near misses
- Participating in the development of mitigation plans and responsibility for completing corrective actions to address compliance violations and/or near misses
- Developing and maintaining a working knowledge of command syntax, with
o Cisco Catalyst and Nexus switches
o Cisco ACI
o Cisco Routers
o Opengear remote management terminals
o SecureCRT or other Secure Shell terminal client
o Citrix Web Interface
o Use of VPN with RSA tokens
o Adobe PDF markup
Experience:
Desired Qualifications:
- Ability to participate in and/or lead teams with minimal supervision
- CISSP and/or Certified Information Security Manager (CISM) and/or CISA
- Cisco Certified Network Associate (CCNA)
- Direct working experience with NERC CIP or NIST frameworks
- Advanced degree in Computer Science, Engineering, Legal or related field
- Demonstrated working knowledge of programming languages and tools, including:
Python
Visual Basic
YAML
JSON File Formatting
BASH Terminal
Bitbucket
Linux
Hands-on knowledge of orchestration and automation tools such as Ansible
Mobility Classification:
- Hybrid average 2 days a week in the office
Skills:
- Cyber Security, Governance, Risk, Governance, Compliance, Tripwire, Footprints, Cisco, Splunk.
Education:
- Bachelor s degree
- In addition to required degree, five (5) years minimum of related work experience
- In lieu of Bachelor s degree(s) AND 5 year(s) related work experience listed above, High School/GED AND 10 year(s) related work experience
About US Tech Solutions:
US Tech Solutions is a global staff augmentation firm providing a wide range of talent on-demand and total workforce solutions. To know more about US Tech Solutions, please visit .
US Tech Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, colour, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.