Minnkota Power is seeking qualified applicants for an Information Security Analyst located in our Grand Forks, ND office.
Minnkota Power Cooperative is an EEO/AAP/Female/Minority/Disabled/Vets Employer
The Information Security Analyst monitors, detects and responds to cyber threats to the Cooperative. This includes collection and review of aggregated logs to monitor, tune, and harden systems and services related to security, network, applications, and infrastructure operations. The Information Security Analyst will review and assess security bulletins in order to mitigate vulnerabilities. The Information Security Analyst will also assist with security awareness procedures and training.
Assess, implement, measure and control the cyber security baseline and manage deviations of the baseline.
Assists in the identification, handling and resolution of cyber security incidents.
Monitors and Analyze Security Information Event Management (SIEM) event logs from servers, firewalls and intrusion detection sensors (IDPS) for potential security policy violations or incidents.
Identify, monitor and assess security vulnerabilities applicable to Cooperative information systems.
Develop mitigation strategies and recommendations to resolve known vulnerabilities or findings.
Assists in the development, implementation and review of security plans, policies and procedures.
Perform vulnerability testing and risk assessments to identify mitigation plans for Cooperative cyber systems.
Maintains compliant work processes according to applicable regulatory standards and Cooperative policies and programs.
Assists in evaluations of IT disaster recovery plans.
Assists in end-user IT security training and awareness programs.
Maintains procedural documentation
Flexibility and Adaptability
Goals and Objectives
An employee filling this role is expected to meet changing and unique goals and objectives, as established by their supervisor, related to the broader area in which the employee is assigned.
Job Qualification Standards
Education and Training
Bachelor’s degree in Cyber Security, Computer Science, or other related area or equivalent combination of experience and education.
Two or more years’ experience with log analysis, investigation of findings, root cause analysis and event mitigation preferred.
Demonstrated knowledge of firewalls, proxies, SIEM, antivirus and IDPS concepts
Experience with SIEM configuration, tuning, and support preferred
Experience with System administration and hardening preferred
Understanding of patch management and deployment
Experience with Identity and Access Management
Experience with CIS Controls preferred
Demonstrated knowledge of data loss prevention, anti-virus and anti-malware
CISSP or SANS GSEC Preferred
Physical and Mental Demands
The physical demands and work environment characteristics described here are representative of those that must be met by an employee to successfully perform the essential functions of the position. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Physical demands: While performing the duties of this position, the incumbent is primarily required to sit, stand, walk, stoop, bend and frequently utilize a keyboard/computer. Specific vision abilities include close vision, peripheral vision, depth perception and the ability to adjust focus.
Mental demands: While performing the duties of this position, the incumbent will be required to problem solve, read, write and analyze data, work under schedules and deadline pressure, present information to others, work independently and use discretion and judgment for confidential or sensitive projects/issues.
Work Environment: While performing the duties of this position, the employee is exposed to an office environment indoors, and will travel outdoors to multiple locations dependent on work.
Requires a bachelor degree in cyber security, computer science or other related area, or equivalent combination of experience and education. On-line applications located at www.Minnkota.com. Resumes will not be accepted without a completed application.