Staff Network Security Operations Analyst

* Splunk Administration: Own and manage PGE's Splunk SIEM platform, including index configuration, log ingestion, alert tuning, and system maintenance.* Palo Alto Firewall Administration: Configure, manage, and maintain Palo Alto firewall infrastructure.* Automation Development: Identify opportunities to automate repetitive administrative tasks using Python, PowerShell, or other scripting tools.* Platform Support: Serve as a technical resource for cybersecurity teams who rely on the platforms you manage.* Compliance Support: Contribute to initiatives supporting NERC CIP regulatory compliance requirements.* Independent Troubleshooting: Proactively diagnose and resolve platform issues with minimal direction.* Collaboration: Work closely with internal cybersecurity and IT teams as a key platform partner.* Requires a bachelor’s degree in an IT discipline or other related field or equivalent experience.* Two or more years of progressive IT operations experience focusing on systems or networking support in an enterprise and/or data center environment.* Splunk Administration experience: Hands-on platform administration (not end-user/SOC usage)* Palo Alto Firewall Administration experience: Current, working knowledge* Coding proficiency: Python and/or PowerShell required* Automation mindset - Demonstrated ability to identify and automate manual or repetitive processes* Self-starter: Ability to work independently, troubleshoot without step-by-step guidance, and take initiative* Adaptability: Comfortable with change and evolving priorities in a fast-paced IT environment* Requires a valid Driver’s License and a history of safe driving practices.* 2-4 years of relevant experience in network security operations or IT infrastructure* Familiarity with NERC CIP compliance frameworks* Experience in a role where you administered or built SIEM platforms (not just consumed alerts)* Exposure to security operations environments where you owned platform configuration end-to-end* Demonstrated examples of automation projects (scripts, tools, or workflows you built independently)* Certifications within technical disciplines preferred.* Requires expanded professional-level knowledge and experience in own area; incumbents continue to acquire higher-level knowledge and skills.* Responsible for researching and documenting various network security mitigation strategies and must maintain current and thorough knowledge of security technologies and their significance to the organization* Solves a range of more complex problems.* Analyzes possible solutions using advanced knowledge and applying protocols.* Operate independently and receive only a moderate level of guidance and direction.* **Applications Support (ASUP)** Identifies and resolves issues with network security, following agreed procedures. Uses network security management software and tools to collect agreed performance statistics. Carries out agreed network security maintenance tasks.* Perform network security tasks such as network/system troubleshooting, assist with root cause analysis, patching infrastructure components, support network security and infrastructure deployments, identify automation opportunities and author automation scripts.* **IT Infrastructure (ITOP)** Carries out agreed operational procedures, including network security configuration, installation, and maintenance. Uses network security management tools to collect and report on network security, risk, and performance statistics. Contributes and performs implementation, maintenance, and installation work. Uses standard procedures and tools to carry out defined system backups, restoring data where necessary. Identify operational problems and contributes to their resolution.* **Incident Management (USUP**) Following agreed procedures, identifies, registers, and categorizes security incidents. Gathers information to enable security incident resolution and promptly allocate incidents as appropriate. Maintains records and advises relevant persons of actions taken.* **Systems Installation/ Decommissioning (HSIN)** Installs or removes hardware and/or software, using supplied installation instructions and tools, including, where appropriate, handover to the client. Conducts tests, corrects malfunctions, and documents results in accordance with agreed procedures. Reports details of all hardware/software items that have been installed and removed so that configuration management records can be updated. Aids users in a professional manner following agreed procedures for further help or escalation. Maintains accurate records of user requests, contact details and outcomes. Contributes to the development of installation procedures and standards.* **Customer Service Support (CSMG)** Acts as the routine contact point, receiving and handling requests for support. Responds to a broad range of service requests for support by providing information to fulfill requests or enable resolution. Provides first-line investigation and diagnosis and promptly allocates unresolved issues as appropriate. Assists with the development standards and applies these to track, monitor, report, resolve or escalate issues. Contributes to creation of support documentation.* **System Software (SYSP)** Uses network security management software and tools to collect agreed security performance statistics. Carries out agreed system software maintenance tasks.* Collect and review performance reports for various systems, report trends in security, risk, exposure, and overall performance to assist senior technical personnel to predict future issues or outages.* **IT Estate Management (DCMA)** Monitors compliance against agreed processes and investigates, assesses, and resolves incidents of noncompliance, escalating where necessary.* Working knowledge of Palo Alto NGFW, f5 Networks, Network Security systems, Cisco routing and switching technologies.* Working knowledge and support of network security functions.* Working knowledge of scripting and automation.* Working knowledge of Firewall rule management and policy optimization.* Working understanding of ITIL or other service operations framework.* Working knowledge of Cloud networking and security practices in Azure, AWS, and Google.* Working knowledge of Zero Trust architectures for infrastructure and applications environments.* Working knowledge Routing Protocols and how to troubleshoot: EIGRP, BGP, RIP-2, PBR, Route Filtering, Redistribution, Summarization.* Intermediate customer focus skills.* Intermediate accuracy skills.* Intermediate risk management skills.* Intermediate oral and written communication skills.* Intermediate interpersonal skills.* Intermediate decision-making skills.* Basic business acumen skills.* Ability to adhere to set response times, deadlines and time-sensitive tasks.* Ability to follow accuracy standards.* Ability to follow through on decision-making tasks.* Ability to interact effectively and collaboratively within a team environment.* Ability to communicate and problem solve when under stress.* Ability to respond and adapt to frequent change.* Ability to accept and demonstrate self-awareness when provided constructive feedback.* Ability to discern feedback and acknowledge ownership of areas of improvement.* Ability to avoid future mistakes by applying reasonable skills to new but similar work situations or tasks.* Ability to successfully collaborate with peers, managers and others within the organization.* Demonstrates sound memory.* Ability to process new information to be applied consistently to work tasks.* Ability to occasionally work long hours.* Ability to occasionally work a variable schedule.* Ability to report to work and perform work during periods of severe inclement weather.* Ability to consistently meet attendance standards for regular, reliable, predictable, full-time attendance.* Ability to work shift schedule.* Ability to maintain
#J-18808-Ljbffr