Alliant Energy IT Security Risk Analyst II in Madison, Wisconsin
Assists in forensic evidence collection and technical response, including malware analysis, during Security Events & Incidents.
Participates in planning, design, and implementation of security solutions.
Participates in low to medium complexity projects impacting security. Stays informed of progress on company, department, and team level projects impacting security.
Creates presentations for small security and low complexity projects, proposals and initiatives.
Assists information security analysts and other IT areas with documentation of system hardening and security issues.
Executes routine security systems administration including policy management, installation, maintenance, testing, debugging and documentation.
Maintains and facilitates audit of detailed documentation of security policies, procedures, standards and documentation.
Remains knowledgeable of and helps monitor compliance to approved security policies and tactical and strategic plans.
Complies with procedures for complying with Sarbanes-Oxley Act (SOX) and North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) regulations.
Participates in 24x7 on call rotation.
Requisition ID:4246BRPosition Type:Regular Recruiting Location(s):Madison, WI Schedule Type:Full-Time Posting Details:
Alliant Energy has an exciting opportunity for an experienced IT Security professional to bring their expertise and diverse perspectives to effectively organize and support our vulnerability management program. The vulnerability management program is responsible for the identification, analysis, and management of vulnerabilities in the Alliant operating environment. The vulnerability management program utilizes specialized software and workflow to help analyze and manage detected risks. This position is available at our Corporate Headquarters in Madison, WI.
Working experience on vulnerability management programs, ability to assess risks around vulnerabilities, and effectively communicate both the vulnerabilities and risks to end users and management is critical for this role.
This position does have shared on-call responsibilities.
Alliant Energy will not provide sponsorship for an employment visa (e.g., H-1B visa) now or in the future for this position.
Job Category:Information Technology Job Qualifications:Required Education & Experience
Bachelor's Degree in Information Technology
2 years of experience in server administration, data networking, firewall administration, or applications development.
In the absence of a degree, 6 years of experience is required.
Bachelor's Degree in Information Technology
6 years of experience in server administration, data networking, firewall administration, or applications development.
In the absence of a degree, 10 years of experience is required.
Additional Experience Required
Exposure to security development lifecycle (SDL) processes for internally developed applications, including the web-based and Internet facing components.
Experience working with IT security aspects of operating systems, Active Directory, database (SQL) access, LDAP, Microsoft SharePoint, web server configurations, and networks.
Knowledge, Skills, and Abilities
Knowledge of networking principles or a networking certification.
Demonstrated ability to use computer software programs (e.g., e-mail, word processing, spreadsheet, and project management).
Demonstrated effective interpersonal, verbal, and written communication skills.
Ability to work effectively in a diverse work environment.
Corporate Competencies: Business Acumen, Change Management, Communication, Customer Focus, Decision-making, Leadership, Results Orientation and Teamwork.
*NOTE: All candidates selected for employment with Alliant Energy will be required to successfully complete a drug screen and background check.
We are committed to providing an inclusive work environment for all and are proud to be an Equal Opportunity Employer M/F/Disability/Protected Veteran.
Disclaimer: The above information on this description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job.Posting Title:IT Security Risk Analyst II or SrTalent Gateway Posting Details:Participates in the development, implementation and enhancement of processes and standards relating to the information security risk management program. Monitors for emerging threats & vulnerabilities, and assists in handling of Security Events and Incidents. Assists with vulnerability and penetration testing.