Job Title: Information Security Analyst Sr. Lead

Work Place Flexibility: Hybrid 

Legal Entity: Entergy Services, LLC 

**This position is based out of The Woodlands, TX, New Orleans, LA, Little Rock, AR, West or Jackson, MS.  Those outside of these areas would be required to relocate.  Relocation assistance and sponsorship is not available for this posting.*** 

Job Summary

The Sr Lead- Consolidated Security Operations Center (CSOC) is responsible for effective execution of 24/7 monitoring operations and incident management of cyber and physical security.  Through maintenance and supervision of security programs, the Consultant Sr executes on guidance and ensures all processes and procedures are followed within CSOC teams. The Sr Lead will leverage artificial intelligence (AI) and Agentic AI tools in decision making of escalated security events.

Key responsibilities include:

• Direct eyes-on-glass monitoring and tier-1, and tier-2 support for events and incidents related to security operations in the corporate and OT environments
• Orchestrate AI agents to automatically execute playbook workflows
• Monitor security events from the cyber and physical security monitoring tools, end user notifications, etc. to determine security risk and responding accordingly
• Ensure performance of CSOC complies with specific requirements of North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) and Nuclear Regulatory Commission (NRC) Nuclear Cyber (10 CFR 73.54)I
• Implement strategy and technology roadmap for the CSOC function
• Deliver process excellence and maturity to push the envelope on delivering a world-class CSOC function for all information and operational technology assets, including power generation units, nuclear plants, electric substations, SCADA, distribution automation, and advanced metering infrastructure (AMI)
• Assist in forensic investigations, as necessary
• Participates in response, triage and escalation of security events affecting the company's information assets and activities to Tier 2/3, OT IT Security operations or service provider as necessary
• Deliver on the response process to minimize the impact of risks
• Responsible for after-hours and weekend activities necessary to support business needs
• Assist with maintenance of KPIs within the CSOC team to ensure a high level of productivity, supportability and operational readiness
• Assist with project related work as required
• Assist with digitization efforts to automate routine playbooks and identify opportunities for automation
• Participate in training and exercises to ensure CSOC team proficiency
• Participate in post-incident reviews to identify lessons learned and best practices

Experience needed

*This position will be filled as an Info Sec Analyst Sr Lead. *

• Six + years of cyber and/or physical security experience across multiple disciplines (monitoring, log gathering, event correlation, configuration, behavior analytics, network engineering, application security, database, risk management, project management, etc.)
• Three + years of hands-on experience working with Security Information Management, event management and incident response in a 24/7 SOC environment
• Experience using AI and agentic AI tools 
• Experience working with a team required to operate in 24/7 shifts
• Experience working with outsourced team

• Exposure to operational best practices like ITIL
• Ability to work effectively with team members and with customers
• Strong organizational and time management skills

Minimum knowledge, skills, and abilities required of the position

• Hands-on technical engineering and process management skills and the ability to advocate positive transformation within the broader information technology organization
• Commitment to customer service with strong oral and written communication skills
• Understanding of AI, AI models, Agentic AI capabilities for automation of triaging alerts and incident response
• Knowledgeable about artificial intelligence and agentic AI
• Knowledge of multiple UNIX OS platforms and Windows-based operating systems
• Knowledgeable about security operations, cyber security monitoring, intrusion detection, and secured networks
• Strong knowledge of security ramifications of energy related regulations (SOX, HIPAA, NERC CIP, FERC, and NRC Nuclear Cyber (10 CFR 73.54)
• Knowledge of security, risk, and control frameworks and standards such as ISO 27001 and 27002, SANS-CAG, NIST, FISMA, COBIT, COSO and ITIL
• Understanding of current IT Security trends and best practices in technology, as well as monitoring best practices and tools
• Knowledge with scripting languages such as Perl or Python
• Strong writing and communication skills
• Available to travel
• Self-motivated, with ability to manage and follow up on multiple tasks simultaneously
• Capable of meeting deadlines

Education requirements

Associate’s degree in computer science, cyber security or related discipline or equivalent work experience.  Bachelor’s degree preferred.

Any certificates, licenses, etc. for the position

ISACA certification, such as CISSP

Vendor credentials offered by companies such as AWS, Microsoft, Google, EDR, SIEM tools

#LI-DG1 #LI-HYBRID 

Primary Location: Texas-The Woodlands Texas : The Woodlands || Arkansas : Little Rock || Louisiana : New Orleans || Mississippi : Jackson 
Job Function: Professional
FLSA Status: Professional 
Relocation Option:
Union description/code: NON BARGAINING UNIT 
Number of Openings: 1
Req ID: 123417
Travel Percentage:Up to 25%

An Equal Opportunity Employer, Minority/Female/Disability/Vets. Please click here to view the EEO page, or see statements below.

EEO Statement: The Entergy System of Companies provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a protected veteran in accordance with applicable federal, state and local laws. The Entergy System of Companies complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment including, but not limited to, recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training. 

The Entergy System of Companies expressly prohibits any form of unlawful employee harassment based on race, color, religion, sex, gender, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, or veteran status. Improper interference with the ability of the Entergy System of Company employees to perform their expected job duties is absolutely not tolerated.

Accessibility: Entergy provides reasonable accommodations for online applicants. Requests for a reasonable accommodation may be made orally or in writing by an applicant, employee, or third party on his or her behalf. If you are an individual with a disability and you are in need of an accommodation for the recruiting process please click here and provide your name, contact number, the accommodation requested and the requisition number that you are requesting the accommodation for. Employee Services will contact you regarding your request.

Additional Responsibilities: As a provider of essential services, Entergy expects its employees to be available to work additional hours, to work in alternate locations, and/or to perform additional duties in connection with storms, outages, emergencies, or other situations as deemed necessary by the company. Exempt employees may not be paid overtime associated with such duties.

Know Your Rights: Workplace Discrimination is Illegal

The non-confidential portions of the affirmative action program for individuals with disabilities and protected veterans shall be available for inspection upon request by any employee or applicant for employment.  Please contact HRCompliance@entergy.com to schedule a time to review the affirmative action plan during regular office hours.

WORKING CONDITIONS:
As a provider of essential services, Entergy expects its employees to be available to work additional hours, to work in alternate locations, and/or to perform additional duties in connection with storms, outages, emergencies, or other situations as deemed necessary by the company. Exempt employees may not be paid overtime associated with such duties.

Please note: Authorization to work in the United States is a precondition to employment in this position. Entergy will not sponsor candidates for work visas for this position.