Description
JOB SUMMARY
Develops and executes architecture strategy and support strategic system development initiatives. Provides design recommendations. Develops enterprise level solutions and evaluates proposed system and application architectures. Reviews requests for firewall changes and evaluates third party vendors. Participates in project meetings and provides guidance.
JOB DUTIES
- Understands and applies principles, theories and concepts related to the profession and ERCOT's culture.
- Exercises judgment within defined procedures and practices to determine appropriate action.
- Impact is generally limited to specific assignments or projects.
- May respond to inquiries and/or provide guidance to lower-level workers.
ADDITIONAL JOB DUTIES
Level 2
- Represents the Cyber Security Department by providing expert technical and architecture consulting on security requirements
- Analyzes complex systems architecture (application, network, system, and database, process) to identify design gaps and recommend security enhancements
- Understands current as well as emerging security threats and design security architecture to mitigate threats where possible
- Works with project stakeholders to identify appropriate security requirements, engineer practical security solutions and implement measurable security guidelines
- Works with project managers and stakeholders to develop practical, effective implementation plans with measurable project milestones for all security solutions
- Reviews current security policy and standards to ensure technical security requirements, guidelines and best practices are communicated and put into practice for each assigned project
- Supports stakeholders across the organization as a technical expert on information security architecture.
- Ensures the design of business solutions meets security mandates.
- Analyzes complex projects to identify potential vulnerabilities, security control points, and risk mitigation measures to ensure compliance with Security Policy, Standards, and technical security requirements.
- Securely achieves the functional requirements of business initiatives.
- Consults on projects to provide security expertise on how to implement best security practices for application, database, and system technologies
- Supports cloud adoption of ERCOT applications as they are being transformed and/or modernized
Knowledge of:
- Application Security (SDLC, CI/CD, DevSecOps, OWASP etc.)
- access authentication methods
- computer algorithms
- cryptology
- database systems
- embedded systems
- encryption algorithms (e.g., IPSEC, AES, GRE, IKE, MD5, SHA, 3DES)
- fault tolerance
- network design
- traffic flows across the network (e.g., Transmission Control Protocol (TCP) and Internet Protocol (IP), Open System Interconnection Model (OSI), Information Technology Infrastructure Library, v3 (ITIL)
- Interfaces between applications - that is: events, messages, and data flows
- Data classifications, Databases and supporting data models
- Hardware, platforms, hosting: servers, network components and devices
- Local and wide area networks, Internet connectivity diagrams, Networking concepts
- Cloud computing concepts, architectures, and technologies. Cloud platforms such as AWS, Azure or Google Cloud.
Contact
Electric Reliability Council of Texas
Texas United States
www.ercot.com
From the same organization
