Job Description

Senior Specialist, Cybersecurity Operations - 511100

Job ID:511100Location:CHATTANOOGA, TNRegular/Temporary:Regular

Responsibilities

Senior Specialist, Cybersecurity Operations - 511100

Organization: Information Technology

Department: Cybersecurity Operations

Location: Chattanooga, Tennessee

Posting Open: 3/3/2021

Posting Close: 3/9/2021 at 11:59 pm EST

Salary: Competitive

This position is accountable for supporting Cybersecurity Operations monitoring and quality assurance teams within Systems and Services. Responsibilities include leading and supporting Cybersecurity projects, initiatives, monitoring strategy and security automation.

POSITION PURPOSE:

The Senior Specialist is accountable for having detailed knowledge in a broad range of Information Security disciplines and to educate and drive the implementation and standardization of the TVA enterprise security program. This will involve contributing to the development, maintenance, and implementation of the enterprise security program, and helping to ensure the overall achievement and compliance with the security goals, regulatory requirements and company direction. This person will bring industry insight and information security understanding and implementation experiences to TVA and establish security approaches and deployment plans to initiate and drive the security function into the organization. This person will bring significant information security domain experience as well as excellent communication skills and ability to coordinate and partner with the various business units to educate and facilitate the security goals. This is a technical position requiring substantial hands-on experience and domain experience. Develops, implements and safeguards TVA cybersecurity practices.

PRINCIPAL ACCOUNTABILITIES:

* Performs control and vulnerability assessments to identify weaknesses and assess the effectiveness of existing controls, and recommends remedial action.

* Reports to information security management concerning residual risk, vulnerabilities and other security exposures, including misuse of information assets and noncompliance.

* Participate in project reviews, incident debriefs and evaluation (such as audit) reviews to understand the issues and gaps, factor into continuous improvement and alter/enhance the education and communication plans.

* Engage critical initiatives for security governance and oversight and establish operational security risk assessment program with measures and continuous improvement plans

* Plays an advisory role in application development or acquisition projects, to assess security requirements and controls and ensure that security controls are implemented as planned

* Contributes to the development of security architecture and security policies, principles and standards

* Develops security processes, procedures, and supporting service-level agreements (SLAs) to ensure that security controls are managed and maintained

* Defines security configuration and operations standards for security systems and applications, including policy assessment and compliance tools, network security appliances, and host-based security systems.

* Develops and validates baseline security configurations for operating systems, applications, networking and telecommunications equipment

* Leads and trains team members in the use of security tools, the preparation of security reports and the resolution of security issues

* Performs real-time monitoring, intelligence, and incident management activities to ensure TVA is protected at all times.

* Evaluate, design, implement and maintain an overall cybersecurity monitoring and incident response capability across the enterprise that provides consistent security monitoring, incident response and follow up investigation and determination of root cause.

* Performs security reviews, penetration tests, security implementation services, policy and procedure development and input to the security architecture design are sufficient to enable appropriate intelligence gathering and monitoring functions.

* Support internal/external audits and remediation of findings

* Responds to incident investigations, performs triage activities, and utilizes structured methodologies to prevent, detect respond to threats.

* Analyses, deconstructs, reverse-engineers malware, deep-packet inspection, host forensics, and develops actionable intelligence.

* Design, implement, operate and maintain the cybersecurity monitoring and incident response infrastructure.

* Provide life-cycle support for the cybersecurity monitoring infrastructure.

* Develops filters, parsers, correlation rules and signatures based upon adversarial tactics, techniques, and procedures.

* Works with business units to develop incident action plans, alerting and workflow processes to prevent, detect and respond to threats.

* Synthesizes and fuses cyber intelligence into monitoring and incident response infrastructure.

* Support 24x7x365 cybersecurity monitoring and incident response activities, on-call rotations, travel, and 1st, 2nd, and 3rd shift as needed.

MINIMUM REQUIREMENTS:

Education A Bachelors Degree in computer science, engineering or a related field of study; or equivalent education, training & experience.

Experience Seven or more years of cybersecurity operations experience protecting electronic and information based assets, with at the last three years of that current and hands-on. Audit/Investigations experience is highly desired. Operational Technology experience is highly desired.

Certification/License, etc CISSP, CISM, CISA, GCIH, ENCE, or equivalent.

Knowledge/Skills/Abilities Demonstrated competencies in leadership, delegation, analysis, teamwork, coaching/development, customer service, planning/organizing, flexibility, stress tolerance, communication. Demonstrated strategic and tactical IT planning and understanding of TVA missions and business needs. Broad knowledge of business functions and related cybersecurity needs. Must stay familiar with Federal laws, regulations, and industry best practices for cybersecurity strategies and technology. Knowledge of IT operational infrastructure including disaster recovery/backup, data management, and ability to develop/ensure security measures/processes are implemented. Excellent ability to research, evaluate and recommend technical solutions. Ability to develop plans and execute complex efforts involving application of advanced technological knowledge. Must demonstrate tact and effective judgment dealing with confidential/sensitive material. Ability to obtain and maintain Secret security clearance required. Candidate may be required to obtain and maintain a security clearance based on position / access requirements and essential job functions.

Equal Employment Opportunity

TVA values and embraces diversity. We encourage all individuals to apply regardless of race, color, national origin, ethnicity, gender, sex, abilities/disabilities, sexual orientation, religion, veteran status and age. We strive to be inclusive of all the people we serve across the Valley.

TVA is an Equal Opportunity employer and complies with all applicable laws and regulations regarding equal employment opportunities. Any applicant or employee who believes s/he has a discrimination claim (including harassment or retaliation) must contact TVAs Equal Opportunity Compliance office within 45 calendar days of the event or action s/he believes to constitute discrimination, harassment, or retaliation.

Drug-Free Workplace

All TVA Non-Nuclear employees are covered by TVA's Federal Drug-Free Workplace Program Plan, in accordance with Executive Order 12564, Public Law 100-71 and the Mandatory Guidelines for Federal Workplace Drug Testing. Information regarding the Drug Free Workplace Program can be found atwww.samhsa.gov/workplace. TVA Non-Nuclear employees in Testing Designated Positions, including those performing safety-sensitive duties are also subject to random drug testing. TVA Nuclear employees are subject to random alcohol and drug tests in accordance with 10 CFR Part 26 as mandated by the Nuclear Regulatory Commission (NRC).

How to Claim Vet Preference

If you are a U.S. Military Veteran and would like to be considered a preference-eligible veteran for the purposes of your employment application to TVA, please take the necessary actions outlined in the application process. Please submit your military documents each time you apply for a position.

How to Submit Documentation:

1) Upload documents after you complete the application by clicking Careers Home, Cover Letters and Attachments, and Add Attachment, or

2) Email documents to[email protected]