Works with the security and risk lead engineer to develop risk analyses and response action plans to address actionable deficiencies. Acts as an internal consultant in designing and implementing security solutions.
o Performs tests of IT solutions
Insures product platform and network operating center systems comply with all legal and regulatory requirements from a NERC-CIP perspective.
Works with security and risk engineer to develop, justify, and implement appropriate and comprehensive internal protections for DEN IP; including identity and access management, infrastructure and network security, and physical security that are aligned with corporate, legal, and regulatory compliance.
Develop, implement, and maintain integrated authentication/single sign on protocol and tools for workstations and standard productivity and communication applications, i.e., Outlook, Slack, Google Suite, Jira, etc.
o Includes employee on-boarding and off-boarding for Liberty Lake and remote sites
Implement and maintain a tiered identity management and access structure and protocols for compartmentalizing access privileges for employees and customers
Leads DEN as cyber IT expert in corporate audit process and leads action to address comments and issues that are produced
Performs site and cloud vulnerability analyses and scanning for infrastructure and network penetration
o Includes intrusion detection and breach mitigation
Develops and maintain general knowledge of DEN distributed development environment, energy storage system products, and customer base. Includes current US front of the meter market, future front of the meter markets, and rest of world markets.
Provide Software manufacturing engineering support on Site Controller/Store Controller CPU and memory administration, imaging, revision control; and accompanying field upgrades coordination & support. Includes qualifying new CPUs and memory as obsolescence, IoT initiatives, or DEN/EnerNOC business initiatives drive need.
Sets up configuration files and performs other SW manufacturing introduction engineering duties required to field a new product including testing, configuration, and commissioning of manufactured products.
Install SW and FW on new products as part of New Product Introduction process. Convert R&D processes to manufacturing processes that are repeatable and transferrable
o Can include documenting processes for release to production and transfer to procurement and outside suppliers
Maintains and applies working knowledge of appropriate regulatory and corporate policies:
o NERC-CIP, NIST, FERC, DOE, others
Bachelors or Associates Degree in MIS, CS or related field, and/or minimum of 5 years of equivalent professional experience
Experience in Information Technology project management, including formulation, modification, and determination of overall project objectives, to implement/oversee programs and projects in the areas of IT security risk assessment and risk management
Experience in determining the risk posture of a product/project and mitigation efforts needed to reduce and manage risk
Experience in deploying and operating IT/security tools at an enterprise level across distributed sites
Experience in documenting technical requirements and network configurations
Thorough knowledge of and demonstrated experience in enterprise level installation and configuration management tools. Excellent troubleshooting, problem solving, and analytical skills demonstrated on complex issues Ability to effectively communicate (oral & written) with technical and non-technical stakeholders across all levels of the organization Ability to illustrate ideas clearly and succinctly; both in writing and with diagrams
Ability to collaborate effectively with electrical, mechanical, software engineers, and technicians, as well as other technical resources across the organization
Position will be on-site in Liberty Lake with situational work-from-home flexibility
May require occasional travel to remote DEN/EnerNOC/Enel sites, customer sites, or training workshops