JOB SUMMARY
Provide system security services across the enterprise and for more than one IT functional area (e.g. data systems, network and/or web).
LEVEL OF RESPONSIBILITY
General responsibilities with standardized processes. Works under limited supervision. Resolves routine questions and problems. Refers the more complex issues to higher levels. Follows established procedures to accomplish requirements of job. Some latitude for deviation.
ESSENTIAL FUNCTIONS
Participate in security event response tracking and reporting.
Perform technical support as needed for daily operations, implementation and upgrade projects, and resolution of system issues.
All other duties as assigned.
Document security work group procedures.
Participate in internal and third-party audits.
Participate in the development and delivery of security training and awareness.
Document user authentication, authorization, and access controls.
Document data access requirements.
Document and perform configuration of application systems to provide functionality required by the business.
Perform user provisioning and de-provisioning.
Prepare security analysis reports and findings reports.
Conduct research for security solutions related to security vulnerabilities, control weaknesses and segregation of duties.
Document and coordinate the resolution of issues in the risk register.
Collect and compile historical data on system access and generate reports and analysis.
Identify and document security risks, exposures, and procedures to enhance the organization's security posture.
Document test plans, perform testing of application systems and IT/OT infrastructure technologies and document results.
REQUIREMENTS
Bachelor's Degree Or 6 years experience in directly related position(s), And
2 years experience in a security role.
WORKING CONDITIONS
May work outside of normal workday/workweek to meet deadlines and maintain support levels.
May require travel.
Office environment with extensive use of a computer.
SPECIAL SAFETY REQUIREMENTS
Member will not be required to drive in order to perform their job duties.
Member is not required to perform any safety sensitive duties.
KNOWLEDGE, SKILLS AND ABILITIES (KSAS)
Broad understanding of procedures for the securing of information systems and IT/OT infrastructure technologies.
Understand role of security practices in supporting business processes.
Experience with configuration and use of tools for securing applications, operating systems, databases, network devices (wired and wireless).
Proven problem solving skills.
Ability to work in customer-oriented, team environment.
Ability to develop effective briefings and materials to present to all IT management.
Ability to determine computer problems and to coordinate hardware and/or software solutions.
Good verbal and written communication skills.
Process knowledge of risk assessments, application security, control design, vulnerability assessments or penetration testing.
Familiarity with SOX, NIST, NERC, COBIT, ITIL, ISO and/or similar information governance frameworks.
Basic understanding of System/Solution Delivery Lifecycle (SDLC).
Ability to plan, implement, test, and troubleshoot system software.
Knowledge and understanding of OGE supported hardware, software, networks, operating systems, databases and applications.
HEALTH AND SAFETY (MEDICAL/DOT REQUIREMENTS)
Pre-Employment Drug Screen
SALARY RANGE
$70,512.00 - $94,016.00
OG&E
321 N Harvey
Oklahoma City
Oklahoma United States
www.oge.com
