Share this Job

Network & Systems Security Analyst Lead (Varies)

Date: Jul 9, 2021

Location: Ybor City, Florida, US, 33605

Company: TECO

Power up a career with us. Our people are our greatest investments. 

 

Be the light to help us keep our customers connected.  If you are interested in a career and not just a position, Tampa Electric is the place to be! Tampa Electric offers competitive pay, a comprehensive benefits package and opportunities for growth and development in a friendly and professional work environment. We embrace diversity and the inclusion of all. We believe our differences, unique perspectives and talents are our strengths and integral to the success of our company.

 

We’re honored to serve approximately 780,000 customers across West Central Florida and safely provide them with clean, affordable and reliable electricity. We’ve been doing it for more than 100 years, and there’s so much more ahead.  

 

Join our team of energy experts as we build on that legacy through innovation, continued solar investments, cost-effective and sustainable energy solutions all while keeping top-notch customer service at the center of all we do. 

 

Tampa Electric is a subsidiary of Emera Inc., a family of energy companies which also includes TECO Peoples Gas and New Mexico Gas Company. Emera provides energy to residential and commercial customers in the United States, Canada, and the Caribbean, with career opportunities available in all of these locations. 

 

 

POSITION CONCEPT

 

The Network & Systems Security Engineer is responsible for planning/designing, implementing, and supporting new and existing network, server, storage infrastructure. This role is also responsible for ensuring all network security controls (i.e., firewalls, web application firewalls [WAF], proxies, network segmentation, NAC, ACLs, etc.) are implemented and managed per corporate information security standards. Additionally, responsibilities include assessing enterprise assets and critical assets for secure configurations and maintaining and enforcing regulation s and standards such as NERC Critical Infrastructure Protection (CIP), Sarbanes-Oxley (SOX), and Payment Card Industry (PCI).

 

Responsible for the design, planning, operation, maintenance, and support of the TECO and NMGC network infrastructure. This includes primary accountability for network technologies such as route/switch, on-premises LAN/WAN, IPAM, Wi-Fi, ISP management, site-to-site VPNs, proxies (forward and reverse), perimeter firewall management, DNS, Azure cloud environments, automation, NAC/user access, hyperconverged infrastructure, and overall network security. Partners with the Telecommunication teams on establishing/upgrading existing circuits/communication links. Responsible for the NERC Cyber Infrastructure Protection and disaster recovery plans.

 

Responsible for VoIP, SIP, DHCP, DNS, TCP/IP routing and routing protocols such as OSPF and BGP, binary mathematics, NAT, PAT, IPsec and SSL VPN technologies, GRE tunneling, route redistribution, traffic shaping, port-level filtering, SD-WAN, MPLS and other communications related technologies. Responsible for the installation, configuration, and maintenance of all WAN and LAN connectivity which includes core and campus switches, routers, firewalls, wireless access points, WAN scalers and load balancer technologies. Responsible for the design, installation, configuration, and maintenance of DNP over IP and serial SCADA communications between the primary and backup control centers, power plants, solar sites, and substations. Responsible for the configuration and maintenance of Smart GRID communication hardware switches and routers between the primary and backup control centers.

 

 

NETWORK & SYSTEMS SECURITY ENGINEER II (LEVEL 2)

 

In addition to the duties & responsibilities of the Level 1 Engineer, has increased responsibilities in consulting on small project design and plans. May serve as a project lead and mentor Level 1 Engineers. Works under general supervision.

 

ADDITIONAL DUTIES AND RESPONSIBILITIES

 

  • Support: Monitors, troubleshoots, diagnoses, and remedies server, network, DDoS protection, NetScaler load balancers, and security controls related problems and failures.

 

  • Implement: Installs and configures server and network related hardware/software which meet the company’s security standards.

 

  • Design/Plan: Design and planning required for small projects.

 

  • Lead/Consult: Project leadership, consulting, or cross-train peers.

 

QUALIFICATIONS

 

LICENSES/CERTIFICATIONS

 

Required:      Has obtained at least two related network, system, operating system, or information security professional certification:

 

  • Microsoft Certified Solutions Associate (MCSA),
  • Microsoft Certified Solutions Expert (MCSE),
  • VMware Certified Professional (VCP),
  • Cisco Certified Network Associate (CCNA),
  • Cisco Certified Network Professional (CCNP),
  • Certified Ethical Hacker (CEH),
  • GIAC Network Forensic Analyst (GNFA) or other GIAC Certifications,
  • Certified Information Systems Security Professional (CISSP).

 

Preferred:     ITIL v3, CCNP, MCSE, VCP, GNFA, CISSP

EDUCAT

Required:      High School Diploma or GED 

 

Preferred:     Bachelor’s degree in Computer Science, Engineering, Math, or equivalent IT discipline (e.g., MIS) from a regionally accredited college/university.

 

 

EXPERIENCE 

       

  REQUIRED:

 

  • Minimum six (6) years of related hands-on experience implementing and maintaining Windows, VMware, firewall support, DDoS protection, proxies, WAFs, NetScaler load balancers, Storage Area Networks, or Cisco Networking.
  • In lieu of some experience listed above, may consider four (4) years of related experience with an associate degree or three (3) years of related experience with a Bachelor’s Degree in Computer Science, Engineering, Math, or equivalent IT discipline (e.g., MIS).

 

 

KNOWLEDGE/SKILLS/ABILITIES (KSA)

 

  • Intermediate knowledge of network, server, and security controls infrastructure regardless of the complexity
  • Good working knowledge for most of the following technologies and operational functions: switching, routing, DNS/DHCP, Windows Active Directory, VMware, Voice over IP, Storage Area Networking, firewall support, DDoS protection, proxy, WAF, NetScaler load balancing, network segmentation, NAC, IDS/IPS, antivirus support, cyber security best practices, and networking/hardware installation and maintenance.
  • Good working knowledge with packet analysis and denial of service protection
  • Strong critical thinking, analytical, problem solving, and risk assessment skills as well as strong listening and communication skills (oral and written)
  • Ability to present issues and topics of a complex technical nature to non-technical audiences.
  • Excellent interpersonal and organizational skills
  • Good working knowledge of the processes that ensure compliance with regulatory or industry requirements such as NERC CIP, SOX, and PCI

 

NETWORK & SYSTEMS SECURITY EINGINEER III (LEVEL 3)

 

In addition to the duties & responsibilities of the Level 2 Engineer, has increased responsibilities in consulting on small project design and plans. May serve as a project lead, cross-train peers, and mentor Engineers. Works under general direction.

 

 

ADDITIONAL DUTIES AND RESPONSIBILITIES

 

  • Support: Monitors, troubleshoots, diagnoses, and remedies server, network, DDoS protection, NetScaler load balancers, and security controls related problems and failures.

 

  • Implement: Installs and configures server and network related hardware/software which meet the company’s security standards.

 

  • Design/Plan: Design and planning required for small projects.

 

  • Lead/Consult: Project leadership, consulting, or cross-train peers.

 

 

QUALIFICATIONS

 

LICENSES/CERTIFICATIONS

 

Required:      Has obtained at least three or two, with the condition to obtain a third certification within one year of hire for this position, related network, system, operating system, or information security professional certifications:

 

  • Microsoft Certified Solutions Associate (MCSA), Microsoft Certified Solutions Expert (MCSE),
  • VMware Certified Professional (VCP),
  • Cisco Certified Network Associate (CCNA),
  • Cisco Certified Network Professional (CCNP), Certified Ethical Hacker (CEH),
  • GIAC Network Forensic Analyst (GNFA) or other GIAC Certifications,
  • Certified Information Systems Security Professional (CISSP),
  • Certified SCADA Security Architect (CSSA).

 

Preferred:     ITIL v3, CCNP, MCSE, VCP, GNFA, CISSP

 

EDUCATI

Required:      High School Diploma or GED 

 

Preferred:     Bachelor’s degree in Computer Science, Engineering, Math, or equivalent IT discipline (MIS) from a regionally accredited college/university.

 

 

EXPERIENCE 

 

Required:     

  • Minimum eight (8) years of related hands-on experience implementing and maintaining Windows, VMware, firewall support, DDoS protection, proxies, WAFs, NetScaler load balancers, Storage Area Networks, or Cisco Networking.
  • In lieu of some experience listed above, may consider six (6) years of related experience with an associate degree or four (4) years of related experience with a bachelor’s degree in Computer Science, Engineering, Math, or equivalent IT discipline (e.g., MIS) from a regionally accredited college/university.

 

 

KNOWLEDGE/SKILLS/ABILITIES (KSA)

 

  • Expert knowledge of network, server, and security controls infrastructure regardless of the complexity
  • Thorough working knowledge for most of the following technologies and operational functions: switching, routing, DNS/DHCP, Windows Active Directory, VMware, Voice over IP, Storage Area Networking, firewall support, DDoS protection, proxy, WAF, NetScaler load balancing, network segmentation, NAC, IDS/IPS, antivirus support, cyber security best practices, and networking/hardware installation and maintenance.
  • Thorough working knowledge with packet analysis and denial of service protection
  • Strong critical thinking, analytical, problem solving, and risk assessment skills as well as strong listening and communication skills (oral and written)
  • Ability to present issues and topics of a complex technical nature to non-technical audiences.
  • Excellent interpersonal, mentoring, and organizational skills
  • Good working knowledge of the processes that ensure compliance with regulatory or industry requirements such as NERC CIP, SOX, and PCI

 

RELATIONSHIPS

 

Key Internal:            Consults with all IT departments as needed.  This role requires the ability to provide technical direction to members of project teams.

 

Key External:           Consults with vendor technical specialists and account managers for the various technologies deployed.

 

 

LEADERSHIP COMPETENCIES

 

  • Speaks up on Safety, Health, and the Environment
  • Takes Ownership and Acts with Integrity
  • Drives Operational Excellence for Customers
  • Builds Strong, Collaborative Relationships
  • Develops People and Teams
  • Cultivates Innovation and Embraces Change
  • Thinks Strategically and Exercises Sound Judgment

 

 

TECO offers a competitive Benefits package!!

 

Competitive Salary *401k Savings plan w/ company matching * Pension plan * Paid time off* Paid Holiday time * Medical, Prescription Drug, & Dental Coverage  *Tuition Assistance Program * Employee Assistance Program * Wellness Programs * On-site Fitness Centers * Bonus Plan and more!

 

 

STORM DUTY REQUIREMENTS....Please make sure to read below!!!  Responding to storms will be considered a condition of employment.

 

TECO Energy and its companies serve a role in providing critical services to our community during an emergency. Team members are required to participate in the response/recovery activities related to emergencies/disasters to maintain service to our TECO Energy customers. Team members are required to work in their normal job duties or other assigned activities. Proper compensation will be made in accordance with the company's rules and procedures.

 

TECO Energy is proud to be an Equal Opportunity Employer.

 

TECO Energy is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability status, veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by law, except where physical or mental abilities are a bona fide occupational requirement and the individual is unable to perform the essential functions of the position with reasonable accommodations.

 

In order to provide equal employment and advancement opportunities for all individuals, employment decisions at TECO Energy will be based on skills, knowledge, qualifications and abilities.

 

Pay Transparency Non-Discrimination Statement


The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information. 41 CFR 60-1.35(c)

 

ADA policy


It is the policy of TECO Energy to provide reasonable accommodation for all qualified disabled individuals who are employees and applicants for employment, unless it would cause undue hardship. The corporation will adhere to applicable federal and state laws, regulations and guidelines, including, but not limited to the Americans with Disabilities Act (ADA) of 1990 and section 503 and 504 of the Rehabilitation Act of 1970s.

 

 

Application accommodations


Applicants may request reasonable accommodation in the application process five business days prior to the time accommodation is needed.

 

Pre-employment physical exams may be required for positions with bona fide job-related physical requirements regardless of disability. 


Nearest Major Market: Tampa

Job Segment: Network, Telecom, Telecommunications, Systems Analyst, Engineer, Technology, Engineering