Cyber Security Systems Administrator

Company: FirstEnergy Corp
Location: Wadsworth
Posted on: September 18, 2023

Job Description:

This is an open position with FirstEnergy Service Co., a subsidiary of FirstEnergy Corp.This position's base reporting location is in Wadsworth Township, Ohio with flexible remote work opportunities. This position is within FirstEnergy's IT Security Operations and reports to the Manager of Security Technologies.The Cyber Security Systems Administrator is responsible for the operation of cyber security systems protecting FirstEnergy and the electric grid. This role requires a high level of technical expertise, with a strong understanding and knowledge of computer, network, and security systems. The position is responsible for a broad range of tasks, including the installation, configuration, and administration of security platforms across the enterprise. This includes working on the complete lifecycle for security systems such as firewalls, intrusion detection systems, authentication systems, remote access VPN systems, PKI infrastructure, endpoint protection, and cloud security. In addition, this role is responsible for responding to operational and cyber security incidents.Responsibilities Include

• Primary responsibilities include the installation, configuration, and administration of various security platforms including firewalls, web proxies, intrusion detection / prevention systems, endpoint protection, authentication systems, authorization systems, VPN remote access, PKI, RSA, and Microsoft Azure cloud-based network security solutions.
• Create network policies, access control lists (ACL), and authorization rules to support business requirements and to defend against unauthorized access.
• Update security platforms with the latest firmware, software, and security patches.
• Install, configure, administer, and perform software patching of Fortinet firewalls, Cisco firewalls, Checkpoint firewalls, and Juniper firewalls.
• Setup and administer Microsoft Azure solutions, such as Network Security Group (NSG), Web Application Firewall (WAF), Azure Firewall, Microsoft Intune MDM, Microsoft Defender ATP, and Microsoft Security Center.
• Install, configure, administer, and perform software patching of Cisco Identity Service Engine (ISE).
• Configure and administer Microsoft Network Policy Server (NPS) authentication and authorization.
• Install, configure, administer, and perform software patching of Dell RSA SecureID.
• Setup, configure, and administer Symantec Endpoint Protection Manager (SEPM). Configure and install Symantec Endpoint Protection (SEP) client antivirus software in multiple domains.
• Setup, configure, and administer Symantec Protection Engine (SPE) for NAS.
• Administrate and perform software patching of McAfee Web Gateway, including an enterprise proxy PAC file.
• Install, configure, administer, and perform software patching of Cisco Firepower Sourcefire Intrusion Detection System (IDS).
• Design, configure, and administer Microsoft Enterprise Certificate Authority Services. Administer Root and Issuing Certificate Authority servers and support business certificate needs.
• Perform incident response for operational and cyber security related issues.
• Perform log analysis utilizing Splunk to investigate and troubleshoot both security and operational events.
• Work with cross-functional teams on network and security projects.
• Respond to tier 3 level support requests that are escalated to the team.
• Respond to off-hours operational issues and security incidents on a rotating team schedule.
• Ensure security-related systems meet all regulatory and compliance requirements.
• Willing and able to occasionally travel to other corporate locations in support of cyber security initiatives.
• Maintain appropriate levels of training and education required within the organization.Qualifications
  • Bachelor's degree in Computer Science, Information Security, or similar discipline is preferred. A bachelor's degree in another field with relevant industry experience in IT Security Operations and Cyber Security will be considered.
  • Preferred experience includes Fortinet firewall, Juniper firewall, Cisco firewall, Checkpoint firewall, Cisco Identity Service Engine (ISE), Microsoft Network Policy Server (NPS), Symantec Endpoint Protection (SEP), Symantec Protection Engine (SPE), Microsoft Defender ATP, Microsoft Enterprise Active Directory Certificate Services, PKI, certificates, McAfee Web Gateway proxy, Cisco Firepower Intrusion Detection Systems (IDS), Dell RSA SecureID, Microsoft Azure, Linux, Cisco VPN, Cisco AnyConnect, Fortinet VPN, Netmotion Mobility VPN, and other Microsoft Enterprise solutions.
  • Demonstrate knowledge of Radius and TACACS protocols, with an understanding of authentication and authorization systems, such as Cisco Identity Service Engine (ISE).
  • Must have experience installing, configuring, and administering various vendor firewalls.
  • Demonstrate strong knowledge of networking including IPv4, IPv6, TCP, UDP. Experience in routing a plus.
  • Demonstrate basic knowledge of Microsoft Server roles and features, Microsoft Windows firewall, Microsoft Active Directory, and Group Policy.
  • Demonstrate knowledge of Splunk log analysis and syslog.
  • Demonstrate knowledge of Microsoft Enterprise Certificate Authority Services, root and issuing certificate authority, PKI, EAP-TLS, code signing certificates, and web server certificates.
  • Able to participate in an on-call rotation responding to off-hours calls and alerts in support of operational and security incidents. On rare occasions, this may include on-site response during off-hours.
  • Effective business communication skills which include documentation and project status communication. Must compose well-written, professional documents and reports.
  • Work effectively with people at varying levels within an organizational hierarchy to accomplish tasks and goals.
  • Works well within a professional team to accomplish objectives and system resiliency, while adhering to FirstEnergy's Core Values.
  • Ability to travel on occasion to other FirstEnergy buildings in the Akron, Ohio area. Infrequent travel to locations throughout the FirstEnergy service territory may be required of this position.Level Requirements
    • Bachelor's degree in Computer Science, Networking, or similar discipline with 2 years of experience required. In lieu of a degree, 6 years of relevant experience required.
    • Demonstration of independent execution is required.
    • Working knowledge of relevant work experience.
    • Demonstrable subject matter expert knowledge in at least one major security technology system is required.
    • In-depth knowledge of relevant work experience.

Keywords: FirstEnergy Corp, Cleveland , Cyber Security Systems Administrator, IT / Software / Systems , Wadsworth, Ohio