Information Security Analyst

Job Title: Information Security Analyst
Classification: Exempt
Location: Badin, NC

About the role: Eagle Creek Renewable Energy is seeking an experienced Information Security Analyst to join our team and help safeguard our organization's critical information assets. The ideal candidate will have a strong background in monitoring network security, investigating breaches, and implementing strategies to maintain a secure environment. In addition, knowledge and experience with NERC CIP and NIST standards are essential for this role.

This position is to report to our office in Badin, North Carolina. At this time, we are only seeking applicants local to the Badin, NC area.

Why Eagle Creek?

• A comprehensive benefits plan: Medical, Dental, Vision, HSA, FSA, Commuter benefits, Voluntary Life, 401(k) match.
• Eleven paid holidays per year, plus a competitive PTO schedule and time off to volunteer or give back to your community.
• Access to a company-funded Employee Assistance Program.
• Employee discounts through ADP LifeMart.
• Tuition Reimbursement as well as access to trainings & mentors for Career Progression and Personal Development.

What You’ll Do:

• Monitor networks for security breaches: Proactively monitor our organization's networks and systems to identify and respond to any security breaches or suspicious activities. Implement necessary measures to mitigate risks and ensure the integrity and confidentiality of our information.
• Investigate, document, and report security breaches: Conduct thorough investigations into security incidents, document findings, and create detailed reports for management. Collaborate with relevant teams to address identified vulnerabilities and recommend improvements to prevent future incidents.
• Research IT security trends: Stay up to date with the latest trends, emerging threats, and industry best practices in information security. Conduct research to identify potential vulnerabilities and propose proactive measures to enhance our organization's security posture.
• Collaborate with the System Architect: Work closely with the System Architect to review proposed changes to network infrastructure, applications, and systems. Assess the impact of these changes on security and provide recommendations to ensure compliance with established security standards and policies.
• Develop strategies to maintain security: Develop and implement comprehensive strategies to strengthen our organization's security posture. Identify potential risks, vulnerabilities, and gaps in existing security controls and propose effective solutions to mitigate these risks.
• Implement changes to meet NERC CIP and NIST standards: Ensure compliance with NERC CIP (North American Electric Reliability Corporation Critical Infrastructure Protection) and NIST (National Institute of Standards and Technology) standards. Implement necessary changes and controls to align our organization's security practices with these regulatory requirements.

What Skills and Experience You’ll Need:

• Education and Experience:
  • Bachelor’s degree in computer science, Information Technology, or a related field.
  • Proven work experience as an Information Security Analyst or similar role.
  • Strong understanding of network protocols, operating systems, and infrastructure components.
• Security Knowledge:
  • In-depth knowledge of security technologies, such as firewalls, intrusion detection systems, antivirus software, encryption methods, and vulnerability scanning tools.
  • Familiarity with industry security standards and frameworks, including NERC CIP and NIST.
• Analytical Skills:
  • Excellent analytical and problem-solving abilities to identify and respond to security incidents.
  • Ability to analyze complex technical environments and identify potential security vulnerabilities or weaknesses.
• Communication and Collaboration:
  • Strong written and verbal communication skills to document and communicate security incidents, risks, and recommendations effectively.
  • Ability to collaborate and work cross-functionally with teams such as IT, System Architects, and management.
• Certifications (preferred):
  • Certified Information Systems Security Professional (CISSP).
  • Certified Information Security Manager (CISM).
  • Certified Ethical Hacker (CEH).
  • GIAC Security Essentials (GSEC).

Eagle Creek RE Management, LLC is an equal opportunity employer