Principal Cyber Security Analyst

The Principal Cyber Security Analyst will work in SRP's Security Operations Center (SOC) which is responsible for detection, response, and remediation of cyber security events across the enterprise. The Analyst will respond to security events, participate in incident response activities, and support tools used by the SOC team. The Principal Analyst role also provides incident escalation support, mentorship, and technical/procedural leadership to the SOC. Applicants should have excellent analytical, communication and problem-solving skills., * Identify, triage, and respond to cyber security events in SRP's corporate and operational environments

• Analyze data from multiple sources and tools to discover anomalous and adversarial behavior
• Serve as escalation tier for event investigations, providing guidance to other analysts on the team
• Maintain awareness of current threat landscape utilizing threat intelligence from government and industry partners, as well as information security community resources.
• Develop alerts, reports, and dashboards within the SIEM to facilitate detection and triage.
• Create playbooks and procedures to support detection and response scenarios
• Advise and support implementation of security controls and new defensive capabilities
• Develop thorough understanding of relationship between IT/OT environments, business value of OT systems, and potential attack vectors in OT environments
• Leverage knowledge of SRP's environment to conduct proactive threat hunts
• Participate in department on-call rotation to respond to after hours events

A bachelor's degree relevant to the assignment from an accredited institution is preferred., Minimum 10 years of relevant experience required. In lieu of a degree, 14 years of relevant experience or an equivalent combination of education and experience totaling 14 years may be considered.

Minimum of 10 years cumulative experience

Industry security certifications are beneficial but not required. Examples of relevant certifications include CISSP, SANS/GIAC (GSEC, GICSP, GRID, GCIP, GMON, GCIA, GCFA, etc), Security+, CCNA/CCNP Security.

Ideal candidates should have 5 to 10 years of Information Technology and/or InfoSec experience.

The applicant should have a moderate to strong understanding of two or more of the areas listed below and have at least basic knowledge across most areas.

• SIEM technologies (Splunk experience a plus)
• Windows and Linux architectures, administration, and hardening
• Thorough understanding of the TCP/IP network stack, including common protocols and network topologies
• Network traffic analysis and packet capture tools (Wireshark, Bro/Zeek, etc)
• IDS/IPS technologies
• Enterprise antimalware/Endpoint Detection & Response (EDR) platforms
• Microsoft Azure/M365 architectures and security features
• Incident response and forensic analysis tools and procedures
• Vulnerability management and mitigation concepts
• Programming or scripting experience (PowerShell, Python, etc)
• SOAR platforms, integrations, and automation techniques

Additional Requirements and Qualifications

Computer Information Systems, Computer Science, Cyber Security or degree in a similar technical discipline is preferred.

Industry security certifications preferred, including CISSP, SANS/GIAC (GSEC, GMON, GCIA, GCFA, etc), Security+, CCNA/CCNP

SRP's success is rooted in our employees' happiness, health, and safety. That's why we offer a comprehensive benefits package to meet the needs of our employees and enhance their well-being. In addition to competitive pay and performance incentives, eligible employees can take advantage of the following benefits:

• Pension Plan (at no cost to the employee)
• 401(k) plan with employer matching
• Available your first day: Medical, vision, dental, and life insurance
• Over 200+ hours of PTO (includes vacation days, holidays, floating holidays, and sick leave)
• Parental leave (up to 4 weeks) and adoption assistance
• Wellness programs (including access to a recreation and fitness facility)
• Short and long-term disability plans
• Tuition assistance for both undergraduate and graduate programs
• 10 Employee Resource Groups for career development, community service, and networking

SRP is one of the largest public power and water utilities in the U.S. providing electricity to approximately one million customers in the greater metropolitan Phoenix area. Since its founding in 1903, SRP has fostered a culture of stewardship and customer service consistently ranking as an industry leader in customer service according to J.D. Power and named one of Arizona's best employers by Forbes. SRP continues to adapt to its changing business environment by seeking innovative ways to reimagine utility service and the provision of critical resources essential to the life and economy of Arizona. Why Work at SRP At SRP, we foster an inclusive work environment and believe everyone should have a fair chance to work, regardless of who they are. That's why we value teams with diverse perspectives, experiences, and backgrounds to help SRP deliver on its mission of providing reliable, affordable and sustainable water and power.