Cyber Security Analyst

Requisition ID: 18078

 

Join us in building a better future for Arizona!

SRP is one of the largest public power and water utilities in the U.S. providing electricity to approximately one million customers in the greater metropolitan Phoenix area. Since its founding in 1903, SRP has fostered a culture of stewardship and customer service consistently ranking as an industry leader in customer service according to J.D. Power and named one of Arizona's best employers by Forbes. SRP continues to adapt to its changing business environment by seeking innovative ways to reimagine utility service and the provision of critical resources essential to the life and economy of Arizona.

 

Why Work at SRP

At SRP, we foster an inclusive work environment and believe everyone should have a fair chance to work, regardless of who they are. That’s why we value teams with diverse perspectives, experiences, and backgrounds to help SRP deliver on its mission of providing reliable, affordable and sustainable water and power.

 

SRP's success is rooted in our employees' happiness, health, and safety. That's why we offer a comprehensive benefits package to meet the needs of our employees and enhance their well-being. In addition to competitive pay and performance incentives, eligible employees can take advantage of the following benefits:

 

• Pension Plan (at no cost to the employee)
• 401(k) plan with employer matching
• Available your first day: Medical, vision, dental, and life insurance
• Over 200+ hours of PTO (includes vacation days, holidays, floating holidays, and sick leave)
• Parental leave (up to 4 weeks) and adoption assistance
• Wellness programs (including access to a recreation and fitness facility)
• Short and long-term disability plans
• Tuition assistance for both undergraduate and graduate programs
• 10 Employee Resource Groups for career development, community service, and networking

 

Summary

The successful candidate will support the mission of providing low cost reliable power to SRP customers by participating in cyber security initiatives to protect the operation. As part of this team you will work closely with technical and non-technical personnel across SRP to evaluate and improve enterprise identity and access management. SRP utilizes a diverse portfolio of technology, and the successful candidate will be able to implement consistent account and access management solutions across a wide variety of technical and business use cases.

 

Successful candidate will be able to apply technical expertise and cyber security best practices to identify opportunities to reduce risk, streamline operations, and improve the user experience. Successful candidate will participate in the evaluation and implementation of new cyber security technology and procedures. Successful candidate will demonstrate the ability to provide well researched, specific, relevant and reasonable input to secure and enable new technology initiatives.

What You'll Do

• Develop, implement and operate access management technology and processes as part of an enterprise cyber security program.
• Participate in operational support and project execution, as well as internal and external assessment activities.
• Facilitate access management operations through the day to day support of the customers, partners, and systems involved in the process.
• Develop process and technology to identify access events, exceptions, or trends which require investigation, remediation or mitigation.
• Participate in occasional after-hours support activities (on call, project implementation).
• Coordinate with both internal and external auditors to assist with and respond to audit findings.

What It Takes To Succeed

Ability to:

• Understand and navigate the SRP organization in order to provide effective solutions which both secure and enable business operations.
• Analyze input from SRP's business and technical stakeholders to establish process and technical requirements for access control operations.
• Provide creative solutions leveraging input from peers, past experience, and industry research.
• Manage and effectively prioritize multiple (and often competing) assignments.
• Create and deliver effective communications to technical, business and executive stakeholders.
• Balance effective access controls with the need to maintain business operations and a positive customer service experience.

Knowledge and Skills:

Specific experience and knowledge of fundamental access control principles as they pertain to:

• Enterprise identity management tools and practices including identity, account, and access lifecycles.
• Privileged account management tools and practices.
• Account and access security controls, especially as they pertain to cloud hosted infrastructure/applications.
• Industry regulations, frameworks, and best practices related to cyber security which shape SRP's access control processes (e.g. NIST, NERC CIP, FICAM, HIPAA, PCI).
• DoD 8570 Certifications Strongly Preferred (e.g. CISSP/CISA/CISM/GSEC).

 

Relevant tools/concepts: Identity and Access Management tools, CASB, IGA, Privileged Account Management (PAM), IDaaS, IaaS, SaaS, MFA, Entitlement Management, Federation, SSO, SAML, OAuth, ITIL, ERP Security, Scripting, LDAP structures and support.

Experience

Promotion to level 2 requires a minimum of two years of experience at level 1; demonstrated capability to perform advanced and more difficult work as determined by the supervisor.

 

Promotion to senior level requires a minimum of three-years of experience at level 2; is fully competent in all aspects of functional area of assignment and as such would be recognized as a specialist in area of assignment and may have periodic or occasional lead responsibilities.

Education

Completion of a Bachelor's Degree from an accredited institution that prepares the employee for the assignment.

 

Hybrid Workplace

SRP currently offers a hybrid workplace, which allows employees whose jobs can be performed remotely, and who have sufficient technical capability, to telework up to three days per week. Although teleworking is available, all employees must live and work in Arizona. We are taking steps to protect the health and well-being of all team members, and by following a number of health and safety protocols, to reduce the risk of the coronavirus (COVID-19).

 

Drug/Alcohol Policy Statement

To promote the safety and well-being of our employees, customers, and the communities we serve, SRP is committed to maintaining a drug/alcohol free work environment. Although marijuana may now be legal in Arizona, except as otherwise specified under Arizona law, SRP considers it to be an illegal drug for the purpose of our drug/alcohol policy because marijuana remains illegal at the federal level. Any candidate found to be impaired during the hiring process or who has the presence of an illegal drug or unauthorized substance in their system during the pre-employment drug/alcohol test may be disqualified from further consideration in the hiring process.

 

Equal Opportunity Employer Statement

Salt River Project (SRP) is committed to equal employment opportunity regardless of race, color, religion, sex (including pregnancy), gender identity, sexual orientation, national origin, age, disability, genetic information, military status, or any other protected status under applicable federal, state or local law.

 

Work Authorization

All candidates must be legally authorized to work in the United States.
Currently, SRP does not sponsor H1B visas, OPT, or other employment-related visa's.