Job Information
Unitil Senior Cyber Security Operations Engineer in Hampton, New Hampshire
Our Company
More than a utility company, Unitil provides energy for life.
Our work helps keep homes comfortable, businesses thriving and communities connected. Unitil is an investor-owned public utility proudly serving Maine, Massachusetts and New Hampshire. We are dedicated to delivering energy to our customers safely and reliably.
Unitil is committed to creating an inclusive environment that welcomes and values the differences among all of our employees, customers, suppliers and the communities in which we live and conduct business. The continued success of Unitil is enhanced through initiatives that promote diversity and value our employees.
Take advantage of a comprehensive benefits package.
Unitil offers competitive salaries, a consumer-driven health plan, dental and vision coverage, flexible work, company-paid holidays, a, robust, highly competitive retirement plan and educational assistance.
*Note: Benefit offerings may differ between union and non-union employee groups
Position Purpose
Utilizes security software and practices to secure systems. Develops, tests and validates solutions and/or processes to remediate exploitable conditions on servers and other infrastructure assets. Implements software patches and configuration changes to address system vulnerabilities. Assists in the monitoring of IT compliance with SOX, NERC/CIP, Mass. Privacy and other legal and regulatory authorities. Provides back up for cyber team members, as needed.
Principal Accountabilities
% of time
End Results
60%
Data Security
Perform activities that ensure the security of corporate data, privacy, and record confidentiality
Participate in periodic risk assessments, to ensure compliance with security standards
Manage processes to assess cyber risk, and facilitate the application of fixes, patches and updates. Coordinate with IT Infrastructure the installation of manual patching of servers
Implement compliance activities with IT Policies, procedures and tests including the Written Information Security, Asset Management, Disaster Recovery, Change Management, Problem Management, and Security Plans
20%
Compliance
Assist in coordination of cyber drills, exercises and assessments with internal and external stakeholders
Identifies security risks and exposures, and participate in response activities
Provide reporting needed for IT Control monitoring and responses to external audits, external penetration tests and vulnerability assessments. Fulfill audit requests by providing supporting evidence.
Evaluates vendor security assessments and assists in managing the program
Report on compliance activities related to IT NERC, SOX, MA Privacy, PCI and other IT compliancy programs for the company.
Follow IT policies and procedures to ensure the security of information assets against unauthorized or accidental modification, destruction, or disclosure. Work with Application Owners to obtain proper documentation for system/application changes
15%
Identity, Credential & Access Management
Work with Application Owners to define critical security groups and process for maintaining ‘least privileged’ access to systems
System access security administration of critical financial and key critical business systems
5%
Assist the Director of Information Security, and other Subject Matter Experts, in the evaluation and implementation of tools, policies and configurations to improve data security and business controls. Research new technologies and/or processes that will assist in achieving these goals.
Qualifications
Bachelor’s Degree, Information Systems, Computer Science, Information Security or related field (Desired
7-10 years IT security or information security experience.
Proven ability to engage with Senior Management and regulators.
Knowledge of technical infrastructure, networks, databases and systems.
Knowledge and related experience in IT security issues and techniques.
Effective communication skills, focusing on presentation of technical information.
Strong analytical skills and attention to detail.
Advanced technical degree and/or Security Certifications preferred.
Unitil is an Affirmative Action/Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law.
