Security Engineer, Expert

Requisition ID # 156540 

Job Category: Information Technology 

Job Level: Individual Contributor

Business Unit: Information Technology

Work Type: Onsite

Job Location: Concord

Department Overview

Information Systems Technology Services is a unified organization comprised of various departments which collaborate effectively to deliver high quality technology solutions.

The Security Intelligence and Operations Center (SIOC) is responsible for ensuring that PG&E proactively identifies and assesses threats to its user and operational network and data, monitors its network for malicious activity, investigates intrusions and other relevant events, and has a sophisticated and detailed understanding of the evolving threat landscape.

Position Summary

The Expert Security Engineer delivers information security services in support of PG&E's enterprise security goals and objectives. You will use a variety of commercial and custom tools and processes to provide the information security services. You will also design improvised solutions on the fly when dealing with active threats. Additionally, you will produce metrics and statistics that feed complimentary processes in PG&E such as, but not limited to risk assessment, patching, anti-virus, firewall management, etc.

This role is defined as hybrid, working from your remote office and on-site at the SIOC in Concord or at the Oakland General Office on an as needed basis.

PG&E is offering the salary range that the company in good faith believes it might pay for this position at the time of the job posting. This compensation range is specific to the locality of the job. The actual salary paid to an individual will be based on multiple factors, including, but not limited to, specific skills, education, licenses or certifications, experience, market value, geographic location, and internal equity. Although we estimate the successful candidate hired into this role will be placed between the entry point and the middle of the range, the decision will be made on a case-by-case basis related to these factors.​ This job is also eligible to participate in PG&E’s discretionary incentive compensation programs.  

A reasonable salary range is:

Bay Area Minimum: $136,000.00

Bay Area Maximum: $232,000.00

Job Responsibilities

• Configuration and support of AWS security services (e.g., GuardDuty, Detective, CloudTrail)
• Configuration and support of Azure security services (e.g., Defender for O365, Defender for Cloud Application Security, Defender for Identity)
• Work independently to support SIOC and cybersecurity projects
• Work independently to optimize tool configurations to meet the needs of security analysts
• Establish and maintain excellent working relationships/partnerships with the cyber security and infrastructure support teams throughout the Information Technology organization, as well as business units
• Responsible for maintaining the configurations of content of various key security tools to meet the business objectives of the SIOC
• Prepare, document, and maintain standard operating procedures protocols, and technical references for security solutions/tools
• Support processes to check the effectiveness and optimize the capabilities of the security tools used by the SIOC
• Engineer and implement security measures for the protection of systems, networks and information
• Mentor junior staff in cybersecurity techniques and processes
• Research security technologies and collaborate with peers to stay abreast of innovations in the industry
• Identify and define requirements for new security capabilities and tools
• Evaluate new technologies and processes that enhance security capabilities
• Test new security solutions using industry standard analysis criteria
• Write technical articles for knowledge sharing
• Work independently with system owners and SIOC team members to find innovative ways to solve or improve existing production security issues

Qualifications

Minimum:

• High School or GED-General Educational Development-GED Diploma
• 6 years security engineering experience

Desired:

• Bachelor’s Degree in Computer Science or job-related discipline or equivalent experience
• Experience configuring the security configurations of AWS cloud services
• Experience configuring the security configurations of Azure cloud services
• Experience using Terraform to deploy cloud resources to support the security services
• Experience working in a SOC or security analyst experience
• Development and use of APIs for application integration
• Some experience working with security systems such as firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, orchestration and automation, etc.
• Some experience with Palo Alto XSOAR SOAR, IBM QRadar, Palo Alto NGFW
• Utility Industry

Knowledge, Skills, and Abilities

• Ability to write well-structured, understandable, efficient scripts in a language such as Python, Powershell, or Javascript.
• Proven working experience in building and maintaining security systems
• Thorough understanding of the latest security principles, techniques, and protocols
• Critical thinking skills and ability to work under pressure
• Deep knowledge of diverse operating systems, networking protocols, and systems administration
• Deep knowledge of IT core infrastructure and cyber security components/devices
• Deep knowledge of TCP/IP Networking and knowledge of the OSI model
• Working knowledge of PG&E infrastructure preferred
• Ability to write clear, well-organized planning, process, and technical documentation. Please provide a brief writing sample.
• Ability to prioritize and pursue multiple critical tasks