Network & Systems Security Analyst, CISCO & SCADA Focus, Progression

POWER UP A CAREER WITH US

Our people are our greatest investments.

Be the light to help us keep our customers connected. If you are interested in a career and not just a position, Tampa Electric is the place to be! Tampa Electric offers competitive pay, a comprehensive benefits package and opportunities for growth and development in a friendly and professional work environment. We embrace diversity and the inclusion of all. We believe our differences, unique perspectives and talents are our strengths and integral to the success of our company.

We’re honored to serve approximately 780,000 customers across West Central Florida and safely provide them with clean, affordable and reliable electricity. We’ve been doing it for more than 100 years, and there’s so much more ahead.

Join our team of energy experts as we build on that legacy through innovation, continued solar investments, cost-effective and sustainable energy solutions all while keeping top-notch customer service at the center of all we do.

Title: Network & Systems Security Analyst, CISCO & SCADA Focus, Progression Company: Tampa Electric Company Location: Ybor Data Center

State and City: Florida - Ybor City

Hiring Manager: Jason W Gumto

Recruiter: Mark E Koener

TITLE: Network & Systems Security Analyst, CISCO & SCADA Focus, Progression

PERFORMANCE COACH: Mgr Network Engineering & Cyber Security Operations

FOCUS AREAS

POSITION CONCEPT

The Network & Systems Security Analyst is responsible for planning/designing, implementing, and supporting new and existing network, server, storage infrastructure. This role is also responsible for ensuring all network security controls (i.e., firewalls, web application firewalls [WAF], proxies, network segmentation, NAC, ACLs, etc.) are implemented and managed per corporate information security standards. Additionally, responsibilities include assessing enterprise assets and critical assets for secure configurations and maintaining and enforcing regulations and standards such as NERC Critical Infrastructure Protection (CIP), Sarbanes-Oxley (SOX), and Payment Card Industry (PCI).

Responsible for the design, planning, operation, maintenance, and support of the TECO and NMGC network infrastructure. This includes primary accountability for network technologies such as route/switch, on-premise LAN/WAN, IPAM, Wi-Fi, ISP management, site-to-site VPNs, proxies (forward and reverse), perimeter firewall management, DNS, Azure cloud environments, automation, NAC/user access, hyperconverged infrastructure, and overall network security. Partners with the Telecommunication teams on establishing/upgrading existing circuits/communication links. Responsible for the NERC Cyber Infrastructure Protection and disaster recovery plans.

Responsible for VoIP, SIP, DHCP, DNS, TCP/IP routing and routing protocols such as OSPF and BGP, binary mathematics, NAT, PAT, IPsec and SSL VPN technologies, GRE tunneling, route redistribution, traffic shaping, port-level filtering, SD-WAN, MPLS and other communications related technologies. Responsible for the installation, configuration, and maintenance of all WAN and LAN connectivity which includes core and campus switches, routers, firewalls, wireless access points, WAN scalers and load balancer technologies. Responsible for the design, installation, configuration, and maintenance of DNP over IP and serial SCADA communications between the primary and backup control centers, power plants, solar sites, and substations. Responsible for the configuration and maintenance of Smart GRID communication hardware switches and routers between the primary and backup control centers.

NETWORK & SYSTEMS SECURITY ANALYST I (LEVEL 1)

Monitors and troubleshoots server, network, and security controls related problems and failures; and installs and configures hardware/software. Works under direct supervision.

PRIMARY DUTIES AND RESPONSIBILITIES

1. Plan, design, and implement network, server, and storage infrastructure based on project requirements, capacity plans, and system support. (20%)

2. Problem solving involves basic troubleshooting following the OSI (Open Systems Interconnection) model, making or calling for equipment repairs, and problem escalation. (20%)

3. Detection and correction of work stoppages and/or errors are accomplished by monitoring systems and changing configurations, as necessary. (20%)

4. Install and support network, server, and storage hardware and software. (10%)

5. Direct participation in the planning and designing, maintenance, testing and documentation of the company’s disaster recovery plans are vital. (10%)

6. Provide and apply appropriate security consulting and support for IT infrastructure across multiple platforms (Firewalls, proxies, WAFs, ACLs, NAC, Operating Systems, NetScaler load balancers, DDoS protection, and other network devices). (10%)

7. Provide third-level technical support for security systems and authentication mechanisms on all operating system platforms. (10%).

QUALIFICATIONS

EDUCATION

Preferred: Bachelor’s degree in Computer Science, Engineering, Math, or equivalent IT discipline (e.g., MIS).

LICENSES/CERTIFICATIONS

Required: Has obtained at least one related network, system, operating system, or information security professional certification: (e.g., Microsoft Certified Solutions Associate (MCSA), VMware Certified Professional (VCP), Cisco Certified Network Associate (CCNA), Certified Ethical Hacker (CEH), GIAC Certifications, Certified Information Systems Security Professional (CISSP).

Preferred: ITIL v3, CCNA, MCSA, VCP, Security+, CISSP

EXPERIENCE

Required: Minimum four (4) years of related hands-on experience implementing and maintaining Windows, VMware, firewall support, DDoS protection, proxies, WAFs, NetScaler load balancers, or Cisco Networking.

In lieu of some experience listed above, may consider three (3) years of related experience with an Associate’s Degree or two (2) years of related experience with a Bachelor’s Degree in Computer Science, Engineering, Math, or equivalent IT discipline (e.g., MIS).

KNOWLEDGE/SKILLS/ABILITIES (KSA)

WORKING CONDITIONS

Normal working conditions with occasional extended hours during the week and weekends.

PHYSICAL DEMANDS/REQUIREMENTS

Normal physical demands related to an office and operational (Power Plant, Solar, Control Center) workplace environment. Must be able to lift 50-pound boxes and ascend/descend a ladder to service network access points.

NETWORK & SYSTEMS SECURITY ANALYST II (LEVEL 2)

In addition to the duties & responsibilities of the Level 1 Analyst, has increased responsibilities in consulting on small project design and plans. May serve as a project lead and mentor Level 1 Analyst. Works under general supervision.

ADDITIONAL DUTIES AND RESPONSIBILITIES

1. Monitors, troubleshoots, diagnoses, and remedies server, network, DDoS protection, NetScaler load balancers, and security controls related problems and failures. (30%)

2. Installs and configures server and network related hardware/software which meet the company’s security standards. (40%)

3. Design and planning required for small projects. (20%)

4. Project leadership, consulting, or cross-train peers. (10%)

QUALIFICATIONS

EDUCATION

Required: High School Diploma or GED

LICENSES/CERTIFICATIONS

Required: Has obtained at least two related network, system, operating system, or information security professional certification: (e.g., Microsoft Certified Solutions Associate (MCSA), Microsoft Certified Solutions Expert (MCSE), VMware Certified Professional (VCP), Cisco Certified Network Associate (CCNA), Cisco Certified Network Professional (CCNP), Certified Ethical Hacker (CEH), GIAC Network Forensic Analyst (GNFA) or other GIAC Certifications, Certified Information Systems Security Professional (CISSP).

Preferred: ITIL v3, CCNP, MCSE, VCP, GNFA, CISSP

EXPERIENCE

Required: Minimum six (6) years of related hands-on experience implementing and maintaining Windows, VMware, firewall support, DDoS protection, proxies, WAFs, NetScaler load balancers, Storage Area Networks, or Cisco Networking. In lieu of some experience listed above, may consider four (4) years of related experience with an Associate’s Degree or three (3) years of related experience with a Bachelor’s Degree in Computer Science, Engineering, Math, or equivalent IT discipline (e.g., MIS).

QUALIFICATIONS

EDUCATION

Required: High School Diploma or GED Preferred: Bachelor’s degree in Computer Science, Engineering, Math, or equivalent IT discipline (e.g., MIS).

LICENSES/CERTIFICATIONS

Required: Has obtained at least two related network, system, operating system, or information security professional certification: (e.g., Microsoft Certified Solutions Associate (MCSA), Microsoft Certified Solutions Expert (MCSE), VMware Certified Professional (VCP), Cisco Certified Network Associate (CCNA), Cisco Certified Network Professional (CCNP), Certified Ethical Hacker (CEH), GIAC Network Forensic Analyst (GNFA) or other GIAC Certifications, Certified Information Systems Security Professional (CISSP).

Preferred: ITIL v3, CCNP, MCSE, VCP, GNFA, CISSP

EXPERIENCE

Required: Minimum six (6) years of related hands-on experience implementing and maintaining Windows, VMware, firewall support, DDoS protection, proxies, WAFs, NetScaler load balancers, Storage Area Networks, or Cisco Networking. In lieu of some experience listed above, may consider four (4) years of related experience with an Associate’s Degree or three (3) years of related experience with a Bachelor’s Degree in Computer Science, Engineering, Math, or equivalent IT discipline (e.g., MIS).

KNOWLEDGE/SKILLS/ABILITIES (KSA)

NETWORK & SYSTEMS SECURITY ANALYST III (LEVEL 3)

In addition to the duties & responsibilities of the Level 2 Analyst, has increased responsibilities in consulting on small project design and plans. May serve as a project lead, cross-train peers, and mentor Analysts. Works under general direction.

ADDITIONAL DUTIES AND RESPONSIBILITIES

1. Monitors, troubleshoots, diagnoses, and remedies server, network, DDoS protection, NetScaler load balancers, and security controls related problems and failures. (20%)

2. Installs and configures server and network related hardware/software which meet the company’s security standards. (20%)

3. Design and planning required for small projects. (40%)

4. Project leadership, consulting, or cross-train peers. (20%)

QUALIFICATIONS

EDUCATION

Required: High School Diploma or GED

LICENSES/CERTIFICATIONS

Required: Has obtained at least three or two, with the condition to obtain a third certification within one year of hire for this position, related network, system, operating system, or information security professional certifications: (e.g., Microsoft Certified Solutions Associate (MCSA), Microsoft Certified Solutions Expert (MCSE), VMware Certified Professional (VCP), Cisco Certified Network Associate (CCNA), Cisco Certified Network Professional (CCNP), Certified Ethical Hacker (CEH), GIAC Network Forensic Analyst (GNFA) or other GIAC Certifications, Certified Information Systems Security Professional (CISSP), Certified SCADA Security Architect (CSSA).

Preferred: ITIL v3, CCNP, MCSE, VCP, GNFA, CISSP

EXPERIENCE Required: Minimum eight (8) years of related hands-on experience implementing and maintaining Windows, VMware, firewall support, DDoS protection, proxies, WAFs, NetScaler load balancers, Storage Area Networks, or Cisco Networking. In lieu of some experience listed above, may consider six (6) years of related experience with an Associate’s Degree or four (4) years of related experience with a Bachelor’s Degree in Computer Science, Engineering, Math, or equivalent IT discipline (e.g., MIS).

KNOWLEDGE/SKILLS/ABILITIES (KSA)

NETWORK & SYSTEMS SECURITY ARCHITECT (LEVEL 4)

In addition to the duties & responsibilities of the Level 3 Analyst, has increased responsibilities in consulting on small project design and plans. May serve as a project lead on larger projects, cross-train peers, and mentor all levels of Analysts. Works under general direction.

ADDITIONAL DUTIES AND RESPONSIBILITIES

1. Monitors, troubleshoots, diagnoses, and remedies server, network, DDoS protection, NetScaler load balancers, and security controls related problems and failures. (10%)

2. Installs and configures server and network related hardware/software which meet the company’s security standards. (10%)

3. Design and planning required for small and large projects. (40%)

4. Project leadership, consulting, or cross-train peers. (40%)

QUALIFICATIONS

EDUCATION

Required: High School Diploma or GED

Preferred: Bachelor’s degree in Computer Science, Engineering, Math, or equivalent IT discipline (MIS).

LICENSES/CERTIFICATIONS

Required: Has obtained at least three related network, system, operating system, or information security professional certifications: (e.g., Microsoft Certified Solutions Associate (MCSA), Microsoft Certified Solutions Expert (MCSE), VMware Certified Professional (VCP), Cisco Certified Network Associate (CCNA), Cisco Certified Network Professional (CCNP), Certified Ethical Hacker (CEH), GIAC Network Forensic Analyst (GNFA) or other GIAC Certifications, Certified Information Systems Security Professional (CISSP), Certified SCADA Security Architect (CSSA).

Preferred: ITIL v3, CCNP, MCSE, VCP, GNFA, CISSP

EXPERIENCE

Required: Minimum ten (10) years of related hands-on experience implementing and maintaining Windows, VMware, firewall support, DDoS protection, proxies, WAFs, NetScaler load balancers, Storage Area Networks, or Cisco Networking.

In lieu of some experience listed above, may consider eight (8) years of related experience with an Associate’s Degree or six (6) years of related experience with a Bachelor’s Degree in Computer Science, Engineering, Math, or equivalent IT discipline (e.g., MIS).

KNOWLEDGE/SKILLS/ABILITIES (KSA)

LEAD NETWORK & SYSTEMS SECURITY ANALYST (PERFORMANCE COACH)

In addition to the duties & responsibilities of the Level 3 Analyst, has increased responsibilities in leading and managing Level 1 through 3 Analyst. May serve as a project lead on larger projects, cross-train peers, and mentor all levels of Analyst. Works under general direction.

ADDITIONAL DUTIES AND RESPONSIBILITIES

1. Monitors, troubleshoots, diagnoses, and remedies server, network, DDoS protection, NetScaler load balancers, and security controls related problems and failures. (10%)

2. Installs and configures server and network related hardware/software which meet the company’s security standards. (10%)

3. Design and planning required for small and large projects. (25%)

4. Project leadership, consulting, or cross-train peers. (25%)

5. Lead and manage the network analyst (Level 1, 2, and 3) team (30%)

QUALIFICATIONS

LICENSES/CERTIFICATIONS

Required: Has obtained at least three or two, with the condition to obtain a third certification within one year of hire for this position, related network, system, operating system, or information security professional certifications: (e.g., Microsoft Certified Solutions Associate (MCSA), Microsoft Certified Solutions Expert (MCSE), VMware Certified Professional (VCP), Cisco Certified Network Associate (CCNA), Cisco Certified Network Professional (CCNP), Certified Ethical Hacker (CEH), GIAC Network Forensic Analyst (GNFA) or other GIAC Certifications, Certified Information Systems Security Professional (CISSP), Certified SCADA Security Architect (CSSA). Leadership/management certifications/certificates may be considered in lieu of professional certifications.

Preferred: ITIL v3, CCNP, MCSE, VCP, GNFA, CISSP

EDUCATION

Required: High School Diploma or GED

Preferred: Bachelor’s degree in Computer Science, Engineering, Math, or equivalent IT discipline (MIS).

EXPERIENCE

Required: Minimum ten (10) years of related hands-on experience implementing and maintaining Windows, VMware, firewall support, DDoS protection, proxies, WAFs, NetScaler load balancers, Storage Area Networks, or Cisco Networking.

In lieu of some experience listed above, may consider eight (8) years of related experience with an Associate’s Degree or six (6) years of related experience with a Bachelor’s Degree in Computer Science, Engineering, Math, or equivalent IT discipline (e.g., MIS).

KNOWLEDGE/SKILLS/ABILITIES (KSA)

WORKING CONDITIONS

Normal working conditions with occasional extended hours during the week and weekends.

PHYSICAL DEMANDS/REQUIREMENTS

Normal physical demands related to an office and operational (Power Plant, Solar, Control Center) workplace environment. Must be able to lift 50-pound boxes and ascend/descend a ladder to service network access points.

#LI-SAC

TECO offers a competitive Benefits package!!

Competitive Salary 401k Savings plan w/ company matching Pension plan Paid time off Paid Holiday time Medical, Prescription Drug, & Dental Coverage Tuition Assistance Program Employee Assistance Program Wellness Programs On-site Fitness Centers Bonus Plan and more!