Job Description

*** This position may be filled in The Woodlands, TX, Little Rock, AR, Jackson, MS or New Orleans, LA ***

Brief Position Description

The Program Manager is responsible for the administration and execution of the Operational Technology Security Patch Management program. The Program Manager will lead external resources in the timely execution of process controls designed to identify security vulnerabilities. The Program Manager will own the governance and management of the NERC CIP-007 R2 controls and will be responsible for internal and external communications and metrics regarding the program.

Key responsibilities include:

* Oversee the daily operations of the external Security Patch Management team
* Maintain compliance with the NERC CIP-007 R2 controls
* Drive the accuracy of asset inventory within the OT operating environment
* Drive efficiencies and accuracy in continual security patch assessments
* Drive effective communications with external OT asset owners for security patch remediation strategies
* Leverage technology and scripted processes to reduce human interaction in managed processes
* Maintain auditable records of work performed
* Maintain procedures and work instructions for the Security Patch Management program
* Maintain and track performance metrics of external resources assigned to the program
* Work with external solution providers to correct any staffing or performance issues
* Perform required testing of the NERC CIP-007 R2 controls within the Entergy GRC platform
* Represent the Security Patch Management program to leadership and the Corrective Action Program
* Act as the NERC CIP-007 R2 subject matter expert for internal and external audit requests and SERC self-report activity

Experiences needed

* 5+ years of work experience and expertise, capabilities and accomplishments directly relevant to the position.
* Understanding of Operational Technology concepts
* Broad working knowledge of IT Enterprise and Solution Architectures and delivery methodologies
* Leadership experience (leading teams, root cause analyses, projects, effective communication)
* Working in a compliance regulated environment
* Working independently, with guidance in only the most complex situations
* Interpreting internal or external business issues and recommending best practices

Minimum knowledge, skills, and abilities required of the position

* Information Security technical background
* Understanding and experience with Vulnerability Risk Assessments and Vulnerability Management
* Understanding of IT architectures, systems, and intercommunications
* Understanding of Configuration Change Management
* Proficiency with Microsoft Office and SharePoint
* Knowledge of security, risk, and control frameworks and standards such as ISO 27001 and 27002, SANS-CAG, NIST, FISMA, COBIT, COSO and ITIL
* Ability to quickly adapt to changing events and priorities
* Strong social, verbal, and written communication skills, with demonstrated ability to effectively present analytical data to a variety of technical and non-technical audiences
* Comfortable working in high stress and ambiguous environments
* Capable of meeting deadlines

Education

Bachelors degree in computer science, Information Systems, MIS or a related discipline or equivalent work experience.

Any certificates, licenses, etc., required for the position

* None required
* SANS GIAC and ISC2 certifications strongly considered

WORKING CONDITIONS

Office environment with minimal physical requirements. As a provider of essential services, Entergy expects its employees to be available to work additional hours, to work in alternate locations, and/or to perform additional duties in connection with storms, outages, emergencies, or other situations as deemed necessary by the company. Exempt employees may not be paid overtime associated with such duties.

Primary Location: Texas-The Woodlands
Job Function: Information Technology
FLSA Status: Professional
Relocation Option: No Relocation Offered
Union description/code: NON BARGAINING UNIT-NBU
Number of Openings: 1
Req ID: 100804
Travel Percentage:Up to 25%

An Equal Opportunity Employer, Minority/Female/Disability/Vets. Please click here to view the full statement.

WORKING CONDITIONS:

As a provider of essential services, Entergy expects its employees to be available to work additional hours, to work in alternate locations, and/or to perform additional duties in connection with storms, outages, emergencies, or other situations as deemed necessary by the company. Exempt employees may not be paid overtime associated with such duties.