Loading...
Share this Job

Cybersecurity IT Network Specialist - ISE and F5

Concord, CA, US, 94520

Requisition ID # 55341 

Job Category : Information Technology 

Job Level : Individual Contributor

Business Unit: Customer Care

Job Location : Auburn; Concord; Sacramento; San Francisco

 

Department Summary

The Cybersecurity team enables PG&E to achieve its mission by providing governance, oversight, and support of operational resiliency and asset safeguards in a relevant, timely and data-driven manner. The Cybersecurity team consists of security professionals in their chosen disciplines working together, to review the current cyber threat landscape and lend our expertise to help the company understand its security posture and act on the highest priority risks. The Cybersecurity team takes a proactive approach to security by focusing on the cyber risks PG&E faces. Our methodology and framework synthesize current legal, regulatory, and operating mandates with PG&E’s business goals and operations. By taking this information and focusing on the cyber risks unique to individual Lines of Business (LOB), Cybersecurity helps PG&E’s LOBs make informed decisions about where to invest their resources.  

 

Position Summary

The ISE and F5 Network Specialist manages the day-to-day operations of the company ISE F5 infrastructure in order to maintain a secure, stable, and regulatory compliant network. Duties include, but are not limited to, supporting the production and non-production ISE environments, policy implementation, posturing and device compliance, onboarding assets to the database, troubleshooting RADIUS/TACACS+ requests, maintain configuration backups, perform upgrades and patches to the infrastructure, renewing Cisco ISE licensing agreements, creating procedures to meet regulatory requirements, building profiles for ISE authentication for various projects, processing F5 VIP creation requests, managing and monitoring the various modules of F5 Big-IP (APM, ASM, LTM, GTM), building network DMZs and managing segmentation, working with clients to troubleshoot real or perceived F5 or network issues, managing and maintaining hardware and operating systems, capacity planning, creating procedures to meet regulatory requirements, collecting and providing evidence to auditors and regulators to prove compliance to policy and regulations and operating and maintaining various tools systems. Must be able to implement high-level designs, provide constructive feedback and input to architects and solutions engineers, and update operations documentation for any new configurations or procedures resulting from changes to production environments in a way that produces evidence of regulatory compliance.

 

Qualifications

Minimum:

  • AA degree in Computer Science, Engineering, business or related discipline or equivalent experience or relevant technical trade school/training
  • 2 years of IT operations experience

 

Desired:

  • Experience in the Utility Industry and meeting audit requirements for NERC and WECC
  • Experience with F5 Big-IP, Access Policy Manager (APM), Application Security Module (ASM), and Local Traffic Manager (LTM) including tmsh, writing/reading/modifying configurations, route domains, and vCMP on Viprion
  • Experience with Cisco ISE creating high availability design documentation for ISE
  • Experience deploying and maintaining CISCO ISE VPN/Wireless/TACACS+/RADIUS in a large corporate environment which include:
    • Asset visibility
    • Guest and Secure wireless access
    • Device Administration
    • Device Compliance
    • Segmentation
    • Secure Wired Access
    • Security ecosystems integrations
    • Threat containment
    • BYOD
  • BA or BS degree in Computer Science, Engineering, Business or related discipline or equivalent experience or technical training
  • 4+ years’ experience of network operations experience
  • 4+ years’ Experience with F5 Big-IP, Access Policy Manager (APM), Application Security Module (ASM), and Local Traffic Manager (LTM) including tmsh, writing/reading/modifying configurations, route domains, and vCMP on Viprion
  • 4+ years of Experience with Cisco ISE
  • Experience with security/compliance monitoring tools and reporting
  • Experience with monitoring or data collection/analysis tools
  • Experience with Cloud-based solutions
  • Experience or knowledge of DNS or DHCP
  • Experience with web, middleware, or database servers

 

Knowledge, Skills, and Abilities:

  • Experience with F5 Big-IP, Access Policy Manager (APM), Application Security Module (ASM), and Local Traffic Manager (LTM) including tmsh, writing/reading/modifying configurations, route domains, and vCMP on Viprion
  • Experience with Cisco ISE
  • Understanding of basic network security concepts, including segmentation and defense-in-depth strategies
  • Understanding of network concepts from layer 2 through 7 including NAT/PAT and application identification (Cisco inspect/fixup or Palo Alto AppID)
  • Ability to perform work while maintaining integrity and stability of network and meet regulatory compliance guidelines
  • Ability to work with Architects, Solutions Engineers, and Project Managers to meet aggressive project deadlines.  Ability to work overtime when required.
  • Available for 24x7 on call rotation

 

Job Responsibilities:

Network Management & Operational Support:

  • Responsible for technical support and administration of critical infrastructure network components (e.g., firewalls, proxy servers, routers, etc).
  • Maintain and operate systems and services associated with PG&E’s telecommunications infrastructure.
  • Provides 3rd tier support in analyzing, diagnosing and resolving problems.
  • Work closely with other IT groups to ensure systems are maintained in an efficient manner, and communicate all issues, changes, outages, and maintenance in accordance with processes, procedures, and policies.
  • Participates in developing, recommending, and establishing policies and procedures as needed.

 

Projects:

  • Provide on-site or remote project support.
  • Work closely with peers, supervisor, team members and others as needed to identify, plan, prioritize and implement project deliverables.
  • Perform testing and evaluations of new technologies in a lab environment.

.

Consulting:

  • Evaluate and articulate market needs and opportunities for technology-based products and services.
  • Assist IT professionals and application stakeholders in product implementation and use.
  • Provide content-specific advice to technical architects.
  •  

Compliance and Process Improvement:

  • Assures compliance with industry and company standards.
  • Continually look for opportunities to improve processes, reduce costs, increase efficiencies, etc.
  • Apply security procedures for all work.
  • May initiate process improvements.
     

Our Mission

To safely and reliably deliver affordable and clean energy to our customers and communities every single day, while building the energy network of tomorrow.

Our Vision

With a sustainable energy future as our North Star, we will meet the challenge of climate change while providing affordable energy for all customers.

Our Culture

We put safety first.
We are accountable. We act with integrity, transparency and humility.
We are here to serve our customers.
We embrace change, innovation and continuous improvement.
We value diversity and inclusion. We speak up, listen up and follow up.
We succeed through collaboration and partnership. We are one team.

Company
Pacific Gas and Electric Company (PG&E), a subsidiary of PG&E Corporation (NYSE:PCG), is one of the largest combined natural gas and electric companies in the United States. Based in San Francisco, our 24,000 employees deliver safe, reliable, affordable and clean energy to nearly 16 million people throughout our Northern and Central California service area, stretching from Eureka to Bakersfield and from the Pacific Ocean to the Sierra Nevada.

More About Our Company

EEO
Pacific Gas and Electric Company is an Affirmative Action and Equal Employment Opportunity employer that actively pursues and hires a diverse workforce. All qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, sex, age, religion, physical or mental disability status, medical condition, protected veteran status, marital status, pregnancy, sexual orientation, gender, gender identity, gender expression, genetic information or any other factor that is not related to the job.

Employee Privacy Notice                                                                                                                                                                                                                                      The California Consumer Privacy Act (CCPA) goes into effect on January 1, 2020. CCPA grants new and far-reaching privacy rights to all California residents. The law also entitles  job applicants, employees and non-employee workers to be notified of what personal information PG&E collects and for what purpose. The Employee Privacy Notice can be accessed through the following link: Employee Privacy Notice

PG&E will consider qualified applicants with arrest and conviction records for employment in a manner consistent with all state and local laws.