Control Systems Engineer II - IV (CyberSecurity/Infrastructure Focus) - Public Utility District No. 2 of Grant County, Washington : Job Details

Be part of the Control Systems Engineering team responsible for designing, implementing, maintaining, and securing the infrastructure and tools that support Grant County PUD's operation of the Bulk Electric System (BES). This role will primarily focus on securing and managing the firewalls, switches, servers, storage arrays, and workstations. The control systems department is also responsible for supervisory control and data acquisition (SCADA), energy management (EMS), Energy Accounting Systems (EAS), custom application & interface software, and databases.

Essential functions, as defined under the Americans with Disabilities Act, may include any of the following representative duties, knowledge, and skills. This is not a comprehensive listing of all functions and duties performed by incumbents of this class; employees may be assigned duties which are not listed below; reasonable accommodations will be made as required. The job description does not constitute an employment agreement and is subject to change at any time by the employer. Essential duties and responsibilities may include, but are not limited to, the following:

Engineer II:

• Interact with, configure and maintain firewalls, virtual machine platforms, network switches, protocol converters, servers, workstations, and storage.
• Help maintain infrastructure and security software including IDS, Active Directory, DNS, anti-virus, malware detection, vulnerability scanners, baseline management, backup and recovery, remote access, and multi-factor authentication.
• Learn the concepts of monitoring, alerting, and reporting tools.
• Maintain and operate cyber systems to identify, detect, protect, respond, and recover from cyber threats and incidents.
• Support technologies and procedures to comply with all Grant PUD's internal computing control requirements, cyber related legislations, industry regulation and guidance (NERC CIP, FERC) and all other Federal, State, and Local regulations.
• Assist in the development, implementation, maintenance, and oversight of the automated cyber security controls. Propose ideas to improve processes based on lessons learned over time in performing assigned duties.
• Develop and employ scripts, cookbooks, checklists, and other tools/methods to automate tasks and enable efficient and repeatable outcomes of operational security controls.
• Become familiar with the applications supported by GMS, EMS and EAS team members.
• Work directly with other team members to learn how to diagnose and resolve communications and data issues related to application communication, telemetry and infrastructure. This includes capturing and/or analyzing network traffic with Wireshark and other similar tools.
• Learn to collect, store, and report on data required to prove Grant PUD is meeting relevant regulatory requirements; complete Critical Infrastructure Protection (CIP) and other compliance reporting requirements including documenting system failovers, generating change control documentation, assisting with patch management, upgrading system firmware, and testing configuration changes for security risks; run SQL queries providing evidence of compliance.
• Create and maintain comprehensive documentation, including troubleshooting guides, standard operating procedures, and best practices.
• Perform related duties as required or assigned.
• Demonstrate commitment to Grant PUD's mission, vision, values, and strategic plan. The employee should be familiar with these organizational priorities and behave in a way that aligns with these expectations. Understand and adhere to compliance requirements for this position that may include laws, regulations, security guidelines, Grant PUD policies and procedures.
• Actively participate in all aspects of our safety program, including but not limited to:
• Following all safety policies and procedures.
• Alerting supervisors and coworkers to unsafe or hazardous working conditions.
• Reporting any safety incidents or close calls within 24 hours to your supervisor.
• Accepting feedback from supervisors and coworkers regarding your own safety performance.

Engineer III:

• Interact with, configure and maintain firewalls, virtual machine platforms, network switches, protocol converters, servers, workstations, and storage.
• Maintain infrastructure and security software including IDS, Active Directory, DNS, anti-virus, malware detection, vulnerability scanners, baseline management, backup and recovery, remote access, and multi-factor authentication.
• Implement and maintain Grant PUD's monitoring, alerting, and reporting tools.
• Maintain and operate cyber systems to identify, detect, protect, respond, and recover from cyber threats and incidents.
• Support and ensure technologies and procedures comply with all Grant PUD's internal computing control requirements, cyber related legislations, industry regulation and guidance (NERC CIP, FERC) and all other Federal, State, and Local regulations.
• Develop, implement, maintain, automated cyber security controls. Implement ideas to improve processes based on lessons learned over time in performing assigned duties.
• Develop and employ scripts, cookbooks, checklists, and other tools/methods to automate tasks and enable efficient and repeatable outcomes of operational security controls.
• Become familiar with the applications supported by GMS, EMS and EAS team members.
• Work with other team members to diagnose and resolve communications and data issues related to application communication, telemetry and infrastructure. This includes capturing and/or analyzing network traffic with Wireshark and other similar tools.
• Collect, store, and report on data required to prove Grant PUD is meeting relevant regulatory requirements; complete Critical Infrastructure Protection (CIP) and other compliance reporting requirements including documenting system failovers, generating change control documentation, assisting with patch management, upgrading system firmware, and testing configuration changes for security risks; run SQL queries providing evidence of compliance.
• Create and maintain comprehensive documentation, including troubleshooting guides, standard operating procedures, and best practices.
• Support procurement and contract management processes to obtain hardware, software, and contract labor support. Facilitate vendor support by onboarding contractors with our processes and addressing needs to keep work flowing.
• Support onboarding, mentoring, and training for less experienced team members
• Perform related duties as required or assigned.
• Demonstrate commitment to Grant PUD's mission, vision, values, and strategic plan. The employee should be familiar with these organizational priorities and behave in a way that aligns with these expectations. Understand and adhere to compliance requirements for this position that may include laws, regulations, security guidelines, Grant PUD policies and procedures.
• Actively participate in all aspects of our safety program, including but not limited to:
• Following all safety policies and procedures.
• Alerting supervisors and coworkers to unsafe or hazardous working conditions.
• Reporting any safety incidents or close calls within 24 hours to your supervisor.
• Accepting feedback from supervisors and coworkers regarding your own safety performance.

Engineer IV:

• Oversee, direct, maintain and configure firewalls, virtual machine platforms, network switches, protocol converters, servers, workstations, and storage.
• Analyze, design, and maintain infrastructure and security software including IDS, Active Directory, DNS, anti-virus, malware detection, vulnerability scanners, baseline management, backup and recovery, remote access, and multi-factor authentication.
• Architect and maintain Grant PUD's monitoring, alerting, and reporting tools.
• Maintain and operate cyber systems to identify, detect, protect, respond, and recover from cyber threats and incidents.
• Ensure technologies and procedures comply with all Grant PUD's internal computing control requirements, cyber related legislations, industry regulation and guidance (NERC CIP, FERC) and all other Federal, State, and Local regulations.
• Develop, implement, and maintain automated cyber security controls. Implement ideas to improve processes based on lessons learned over time in performing assigned duties.
• Develop and employ scripts, cookbooks, checklists, and other tools/methods to automate tasks and enable efficient and repeatable outcomes of operational security controls.
• Cross-train with either GMS, EMS or EAS team members.
• Oversee diagnosing and resolving communications and data issues related to application communication, telemetry and infrastructure. This includes capturing and/or analyzing network traffic with Wireshark and other similar tools.
• Collect, store, and report on data required to prove Grant PUD is meeting relevant regulatory requirements; complete Critical Infrastructure Protection (CIP) and other compliance reporting requirements including documenting system failovers, generating change control documentation, assisting with patch management, upgrading system firmware, and testing configuration changes for security risks; run SQL queries providing evidence of compliance.
• Create and maintain comprehensive documentation, including troubleshooting guides, standard operating procedures, and best practices.
• Support procurement and contract management processes to obtain hardware, software, and contract