Brooksource’s Fortune 150 client is one of the largest electric power holding companies in the United States, providing electricity to 7.7 million retail customers in six states. We have approximately 51,000 megawatts of electric generating capacity in the Carolinas, the Midwest and Florida – and natural gas distribution services serving more than 1.6 million customers in Ohio, Kentucky, Tennessee and the Carolinas.
We are transforming our customers’ experience, modernizing our energy grid, generating cleaner energy and expanding our natural gas infrastructure to create a smarter energy future for our customers.
Security is critical to our company’s success. As part of our team, you will partner with project managers and technical engineering teams to help execute a broad range of corporate security initiatives, while participating in the planning, analyzing and implementation of solutions in support of business objectives. Our security team works around the clock to provide a comprehensive enterprise-wide security program, using state-of-the-art technologies to defend against breaches and keep our networks reliable and secure.
The Sr. Firewall Engineer will focus on improving cybersecurity posture of the enterprise through participation in various cybersecurity projects and initiatives as well as cybersecurity aspects of business and IT projects. The position will interface with cross-functional teams from Cybersecurity, IT, and critical business operations to ensure the confidentially, integrity, availability, and regulatory compliance of computing environments. The Analyst will work closely with peers, other internal/external teams, and management to support the Cybersecurity Operations Center (CSOC) environment. The Cybersecurity Systems Engineering Analyst is expected to build positive and collaborative relationships with stakeholders across the company, identify ways to improve working relationships across organizational boundaries through collaborative planning and communicates clearly, candidly, and openly. The Analyst is also responsible for following processes and procedures as defined by Cybersecurity leadership and the Cyber Incident Response Team (CIRT).
Key responsibilities to include:
- Implementation, support, and maintenance of Inspection Zone systems in a large enterprise environment – products such as F5 BIG-IP, Blue Coat ProxySG, McAfee Secure Gateway, Palo Alto NGFW, etc.
- Support Inspection Zone Security monitoring and deployment
- Provide high level of support to Security Operations and Support teams for all products that make up the Inspection Zone security tool set
- Administration, operation, and maintenance of threat environment / protections, including installation, configuration, tuning, and maintenance of threat components
- Perform supporting tasks such as system hardening, high availability configurations, and developing backup strategies
- Assist with the creation of detailed deployment plans, architectural drawings, and operation manuals.
- Responsible for understanding the global threat landscape and general security best practices
- Drive continuous improvement of processes and procedures to improve analysis, detection, and mitigation of incidents in support of the overall Cyber Defense mission
- Create and drive action plans to address recurring or ongoing information security incidents
- Develop and maintain reporting metrics used to measure team performance, ensure analyst adherence to processes/procedures for operational consistency, identify process improvements, coaching, training and professional development of the staff
- Collaboration as appropriate with leadership and other key stakeholders
Basic/Required Qualifications:
- Education/Degree - High School, Associate, Bachelor, Master: Bachelor of Science or Bachelor of Arts degree, preferably in Cybersecurity, Information Security, Computer Science, Management Information Systems, or other closely related fields
- Years of prior equivalent work-related experience in lieu of a degree (if applicable): 2+ years of experience in a security operations center, military information security and/or systems administration relevant work experience in IT
- Years of prior equivalent work-related experience in addition to a degree: 6+ years of related SOC, firewall, network, military and/or IT/Cybersecurity experience without a degree
Job-specific knowledge, skills, or abilities: Strong understanding of perimeter security controls including SSL/TLS decryption, certificate management, F5 Big-IP SSLO, Blue Coat ProxySG. Ability to analyze Splunk and Palo Alto logs, collect and analyze packet captures to quickly troubleshoot and diagnose network connectivity issues at the perimeter.
Desired Qualifications:
- Advanced TCP/IP knowledge
- Understanding of security principles
- Experience analyzing and troubleshooting network traffic
- Experience providing end to end network design or support
- Experience assisting other teams with the analysis of application problems
- Current Cisco CCNP – credentials will be verified
- Current Cisco CCDA - credentials will be verified
- Cisco CCDP - does not have to be current
- Additional relevant industry certifications
- Cyber security project experience
- Ability to work in high pressure situations and within a team environment
- Experience with writing and editing technical documentation and operational procedures
- Demonstrated effective problem solving & analytical skills
- Knowledge of network monitoring, analysis, troubleshooting, and configuration control technologies
- Familiarity or experience with the Cyber Kill Chain® methodology
- Demonstrated commitment to training, self-study and maintaining proficiency in the technical cyber security domain
- Possession of multiple industry standard certifications such as SANS GIAC/GCIA/GCIH/GCFA, CISSP, CISA, CISM, etc. or other network / system security certifications
- Innovative – ability to recognize and seek improvement and efficiency opportunities
Additional Details:
- Location: Charlotte, NC
- Hybrid position (2-3 days/week on site, remainder remote)
- 12-month W2 contract position with strong potential for extension or full-time conversion
- Daily schedule: Monday-Friday, 8:00 AM - 5:00 PM
Eight Eleven Group provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, national origin, age, sex, citizenship, disability, genetic information, gender, sexual orientation, gender identity, marital status, amnesty or status as a covered veteran in accordance with applicable federal, state, and local laws.
