Entergy
Data Security & Investigations Analyst
This is a hybrid position and is located in Little Rock, AR. This position may be filled as an Info Sec Analyst I, II or III, depending on the selected candidate's qualifications and experience. The Data Security & Investigations (DSI) Analyst supports the execution of activities related to the collection of access and activity data across diverse IT and OT assets to build a comprehensive view of user behavior for review and investigation. The analyst is also responsible for issuing physical security badges and provisioning access that cannot be managed automatically through the Identity Management System (IDM). This role emphasizes commitment to exceptional customer service by continuously improving DSI processes and procedures in collaboration with the broader team. Key responsibilities include: Maintain and manage LDAP accounts Manual provisioning of system and application access when automation is not available Improve operational efficiencies through the identification of automation opportunities and working to develop and deliver solutions for those opportunities Support compliance with regulatory frameworks, including: North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP), CIP-004, CIP-006, CIP-007, CIP-014 Nuclear Regulatory Commission (NRC) Nuclear Cyber (10 CFR 73.54), as directed Execute, as directed, on granting, revoking, and reviewing third-party access to ensure safety of Entergy's data and compliance with regulations, including manual access reviews that involve comparing access across multiple systems Support incident response and data breach management, as directed Issue physical security badges in accordance with all identity management and regulatory policies Maintain a positive, professional attitude while actively participating in daily team operations and contributing to a collaborative, respectful, and solution-focused work environment Experience required: Analyst I: 0-2 years of experience in a technical role or other relatable experience such as: Data analysis and collection Cross-functional solution delivery Customer service or call center experience Analyst II: 2+ years of technical experience, including: Data analysis and collection Cross-functional solution delivery Customer service or call center experience 1+ year of Identity and Access Management experience specific to provisioning and administration in one or more of the following: LDAP / Directory Services IAM Systems Privilege Access Management (PAM) Multifactor Authentication (MFA) Physical Security access systems Analyst III: 4+ years of Identity and Access Management experience in a corporate environment 1+ year IT service desk or customer support experience 3 + years of experience in provisioning and administration of: LDAP / Directory Services IAM platforms Privilege Access Management (PAM) Multifactor Authentication (MFA) Physical Security access technologies Minimum knowledge, skills, and abilities required of the position: Ability to work independently in a structured environment, delivering accurate, high-quality work where attention to detail and error-free execution are essential Good organizational and time management skills Experience working in partnerships with colleagues on cross-functional teams Proven work experience in one or more of the following: IAM foundational skills using the concepts of least privileged access in delivering identification, authentication, authorization and accountability Proficiency in directory services such as LDAP platforms Operational tasks in support of tools and technologies such as basic networking and administration skills, privilege access management (PAM), Multifactor Authentication (MFA), Identity and Access Management (IAM) platforms, physical security access systems, PowerShell scripting and automation Working knowledge in practical application of various regulatory standards such as Critical Infrastructure Protection (CIP), SarbanesOxley (SOX), National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF) Ability to aggregate, analyze, manipulate, and present data for IAM use cases Proficiency with Microsoft Office Suite and enterprise work management systems or ticketing systems Experience with artificial intelligence (AI) and identifying and implementing automation opportunities to improve operational efficiencies Ability to navigate and interpret data using data visualization or reporting tools Willingness and experience participating in an on-call team rotation Good verbal and written communication skills Hybrid work role with in-office days set by the manager for team collaboration; fully remote work is not available. Available to travel within the Entergy service territory Education requirements: Associates degree or equivalent work experience requiring critical thinking and problem-solving Degree or work experience in STEM-related fields is preferred Any certificates, licenses, etc., required for the position: No certifications or licenses are required for this position Preferred: CompTIA Security+ or other relevant technical certifications Willingness to pursue certifications as part of professional development plan
This is a hybrid position and is located in Little Rock, AR. This position may be filled as an Info Sec Analyst I, II or III, depending on the selected candidate's qualifications and experience. The Data Security & Investigations (DSI) Analyst supports the execution of activities related to the collection of access and activity data across diverse IT and OT assets to build a comprehensive view of user behavior for review and investigation. The analyst is also responsible for issuing physical security badges and provisioning access that cannot be managed automatically through the Identity Management System (IDM). This role emphasizes commitment to exceptional customer service by continuously improving DSI processes and procedures in collaboration with the broader team. Key responsibilities include: Maintain and manage LDAP accounts Manual provisioning of system and application access when automation is not available Improve operational efficiencies through the identification of automation opportunities and working to develop and deliver solutions for those opportunities Support compliance with regulatory frameworks, including: North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP), CIP-004, CIP-006, CIP-007, CIP-014 Nuclear Regulatory Commission (NRC) Nuclear Cyber (10 CFR 73.54), as directed Execute, as directed, on granting, revoking, and reviewing third-party access to ensure safety of Entergy's data and compliance with regulations, including manual access reviews that involve comparing access across multiple systems Support incident response and data breach management, as directed Issue physical security badges in accordance with all identity management and regulatory policies Maintain a positive, professional attitude while actively participating in daily team operations and contributing to a collaborative, respectful, and solution-focused work environment Experience required: Analyst I: 0-2 years of experience in a technical role or other relatable experience such as: Data analysis and collection Cross-functional solution delivery Customer service or call center experience Analyst II: 2+ years of technical experience, including: Data analysis and collection Cross-functional solution delivery Customer service or call center experience 1+ year of Identity and Access Management experience specific to provisioning and administration in one or more of the following: LDAP / Directory Services IAM Systems Privilege Access Management (PAM) Multifactor Authentication (MFA) Physical Security access systems Analyst III: 4+ years of Identity and Access Management experience in a corporate environment 1+ year IT service desk or customer support experience 3 + years of experience in provisioning and administration of: LDAP / Directory Services IAM platforms Privilege Access Management (PAM) Multifactor Authentication (MFA) Physical Security access technologies Minimum knowledge, skills, and abilities required of the position: Ability to work independently in a structured environment, delivering accurate, high-quality work where attention to detail and error-free execution are essential Good organizational and time management skills Experience working in partnerships with colleagues on cross-functional teams Proven work experience in one or more of the following: IAM foundational skills using the concepts of least privileged access in delivering identification, authentication, authorization and accountability Proficiency in directory services such as LDAP platforms Operational tasks in support of tools and technologies such as basic networking and administration skills, privilege access management (PAM), Multifactor Authentication (MFA), Identity and Access Management (IAM) platforms, physical security access systems, PowerShell scripting and automation Working knowledge in practical application of various regulatory standards such as Critical Infrastructure Protection (CIP), SarbanesOxley (SOX), National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF) Ability to aggregate, analyze, manipulate, and present data for IAM use cases Proficiency with Microsoft Office Suite and enterprise work management systems or ticketing systems Experience with artificial intelligence (AI) and identifying and implementing automation opportunities to improve operational efficiencies Ability to navigate and interpret data using data visualization or reporting tools Willingness and experience participating in an on-call team rotation Good verbal and written communication skills Hybrid work role with in-office days set by the manager for team collaboration; fully remote work is not available. Available to travel within the Entergy service territory Education requirements: Associates degree or equivalent work experience requiring critical thinking and problem-solving Degree or work experience in STEM-related fields is preferred Any certificates, licenses, etc., required for the position: No certifications or licenses are required for this position Preferred: CompTIA Security+ or other relevant technical certifications Willingness to pursue certifications as part of professional development plan