EPCO Corporate

Apply for this job

Analyst, IT Security (Finance)



Enterprise Products Partners L.P. is one of the largest publicly traded partnerships and a leading North American provider of midstream energy services to producers and consumers of natural gas, NGLs, crude oil, refined products and petrochemicals. Our services include: natural gas gathering, treating, processing, transportation and storage; NGL transportation, fractionation, storage and import and export terminals; crude oil gathering, transportation, storage and terminals; petrochemical and refined products transportation, storage and terminals; and a marine transportation business that operates primarily on the United States inland and Intracoastal Waterway systems. The partnership's assets include approximately 50,000 miles of pipelines; 260 million barrels of storage capacity for NGLs, crude oil, refined products and petrochemicals; and 14 billion cubic feet of natural gas storage capacity. Make the most of your talents in a fast-paced environment driven by people who strive for achievement. Enjoy corporate strength, stability, and a rewarding career at a growing industry-leading and diverse operating company with a track record for success. Tap into the professional possibilities of Enterprise Products Company. The IT Security Analyst will work as part of the IT Security & Compliance team to manage risks to the information assets and systems of the organization by monitoring for, preventing, and responding to cybersecurity threats. They will also work with IT and other departments to implement security controls, promote secure practices, and improve information security processes. Responsibilities include, but are not limited to:
  • Security monitoring, triage, and incident identification
  • Monitor for changes in attack surface and risk related to attack surface
  • Conducts vulnerability scans and works with IT support to remediate findings
  • Keep up to date on and research vulnerabilities impacting corporate technologies
  • Understands the Mitre ATT&CK and D3FEND taxonomies
  • Perform security incident investigation, response and resolution
  • Works to improve enterprise-wide security log collection, correlation, and reporting
  • Works with the Security team to improve and automate processes
  • Implementing and updating security controls
  • Adheres to and maintains documentation of processes and procedures
  • Assist with producing reports to communicate security risk and status to upper management
  • Stay current on emerging threats and mitigation strategies
  • Follows threat hunting procedures and incident response procedures
The successful candidate will meet the following qualifications:
  • College or technical school degree preferred
  • Security certifications (GIAC, Security ) are preferred
  • 3 years' experience in a relevant, dedicated information security role
  • 3 years' experience with network administration, server administration, and/or workstation administration
  • Active member of one or more security associations (ISSA, ISACA, InfraGard, ISAC/ISAOs, etc.)

The following skills and knowledge are desired:
  • Vulnerability scanning and remediation
  • Threat hunting
  • Log analysis and developing log correlation rules
  • Endpoint detection and response (EDR)
  • Intrusion detection
  • Incident handling
  • Strong verbal and written communication skills
  • Good troubleshooting and problem-solving skills
  • Ability to work in and positively contribute to a team environment
Apply
Apply Here done