IS Security & Analytics; Portland , Oregon (US-OR)
Posting # 144
At NW Natural, we like to say, “We grew up here.” We’ve been an energy supplier and community leader since 1859. Some of our neighbors know us through our philanthropy and volunteer programs and innovative approaches to carbon reduction.
Our customers know us because of the clean, safe, efficient, and low-cost natural gas we provide. We are a service-oriented utility, with a “Best in the West” customer satisfaction ranking.
If you share our core values – integrity, safety, service ethic, caring and environmental stewardship – we invite you to apply to NW Natural. The Role:
You will be accountable for proactively and holistically leading or supporting security and EA activities that create deliverables that guide the direction and development for technological responses to disruptive forces and driving targeted business outcomes. Technologies will include business applications, cloud security solutions, severs, security technologies, and industrial controls systems.
In this role, you would provide the leadership, facilitation, analysis and design tasks required for the development of an enterprise’s security architecture. They create deliverables that help develop target-state guidance (reusable standards, guidelines, individual parts and configurations) for evolving information security across the enterprise, in order to enable business strategy and manage risk. They facilitate and orchestrate the delivery of targeted business outcomes through technical decisions and within alignment of the security and EA practices to ensure a cohesive solution is provided. Day to Day:
Work with EA, security peers, and other stakeholders to analyze the enterprise business context (business strategy and trends), as well as change requirements in other enterprise architecture viewpoints (such as business, information and solution) to derive the security architecture future state. This includes defining the requirements, principles and models that guide technology decisions for the enterprise.
Understand security trends and the practical application of existing, new, and emerging technologies to enable new and evolving business and operating models.
Demonstrated experience in assessing risks and defining security strategy enterprises based on those risks.
Demonstrated experience in architecting, designing, implementing, and managing security for highly available, resilient systems (physical, virtual, cloud).
Drive digital innovation by leveraging innovative new technologies and approaches to renovate, extend, and transform the existing core technology base and IT estate.
Define high-level plans to address the gaps between the current and future state, typically in sync with the IT budgeting or other capital planning processes.
Lead the analysis of the current technology environment to detect critical deficiencies and recommend solutions for improvement. In addition, lead the analysis of technology industry and market trends to determine their potential impact on the enterprise as well as on the enterprise technology architecture.
Coach, mentor and collaborate with technical subject matter experts and EA peers to develop a security architecture that enables and drives new business capabilities and operating models.
Assist with designing the governance, assurance and standards activities associated with ensuring enterprise security architecture compliance.
Oversee, or consult on, technology implementation and modification activities (for example, projects), particularly for new or shared security solutions.
Oversee and facilitate the research, evaluation, and selection of hardware and software technology and product standards in the security area, as well as the design of standard configurations.
Identify the organizational impact (for example, on skills, processes, structures and culture) and financial impact of the enterprise technology architecture.
Document necessary enterprise security architecture design and analysis work, possibly including project postmortem documentation and metric collection.
Understand, advocate, and augment the business and IT strategies. Be prepared to “sell” the enterprise information security process its outcome and ongoing results.
Reports straight-line to the Senior Manager for Information Security and IT Compliance with a dotted-line to the Director of Enterprise Architecture.
Collaborate with business constituents, other EA team members, project teams and staff in various IT functional areas as needed to fulfill the responsibilities described above. Come on your first day with:
Bachelor’s degree in computer science, system analysis or a related study, or equivalent experience
Minimum of 10+ years of design and implementation experience in IT, with a deep knowledge in of the following technical disciplines: security architecture and design supporting enterprise level application environments, middleware, servers and storage, database management, and IT operations.
3 + years of experience with cloud technologies (Azure, AWS)
Working knowledge of security solutions and Active Directory at the enterprise level.
Working knowledge of current threats
Exposure to multiple, diverse technical configurations, technologies and processing environments
Excellent interpersonal skills in areas such as teamwork, facilitation and negotiation
Strong leadership skills
Excellent analytical and technical skills
Excellent written and verbal communication skills
Excellent planning and organizational skills
Knowledge of many, if not most, aspects of an enterprise security architecture
Knowledge of information principles and processes
Knowledge of financial models and budgeting
Understanding of infrastructure and application architecture
Understanding and knowledge of system development life cycle methodologies (such as waterfall, spiral, agile software development, rapid prototyping, incremental, synchronize and stabilize, and DevOps)
Understanding and knowledge of IT Service Management (ITSM) and Information Technology Infrastructure Library (ITIL Foundations Certification is required within 90 days of hiring) (TOGAF and CISSP certification are encouraged, but not required)
Knowledge and understanding of different modeling languages
Understanding and knowledge of IT standards and controls
Ability to understand the long-term (“big picture”) and short-term perspectives of situations and how they relate to achieving targeted business outcomes
Ability to estimate the financial impact of technology alternatives
Ability to apply multiple technical solutions to enable future-state business capabilities that, in turn, drive targeted business outcomes
Ability to quickly comprehend the functions and capabilities of existing, new and emerging technologies that enable and drive new business designs and models
Demonstrated ability to work well with others and be respected as a leader
Organizationally savvy, with understanding of the political climate of the enterprise and how to navigate obstacles and politics.
Ability to balance the long-term (big picture) and short-term implications of individual decisions
Motivated and driven by achieving long-term business outcomes
Team player and collaborative
What we offer:
Arguably the most competitive healthcare and wellness benefits in the Pacific Northwest
Meaningful Annual Incentive Bonus Opportunity in addition to base salary
401(k) with generous match and additional 5% employer contribution
Company provided Trimet or C-Tran passes/Bike storage for cyclists
Green Team / Diversity, Equity & Inclusion Council / Safety Team / Women’s Network
Numerous volunteer and community engagement opportunities
Employee Stock Purchase Plan with a 15% discount
20% Employee discount on Natural Gas
7 Paid Holidays and up to 3 floating holidays to add an extra paid day off to Holidays Observed by NW Natural
Flexible work schedule opportunities
Base salary range: $103,200.00 – $142,850.00 per year, depending on qualifications
Deadline: November 29, 2019
All applications must be submitted through NW Natural’s Electronic Application System. Resumes submitted via email, fax or mail will not be accepted in lieu of an electronic application.
We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, sexual orientation, gender identity, veteran status, disability or any federal, state or locally protected class.
We are a drug free workplace and we comply with Federal Drug Free Workplace Act and Department of Transportation regulations. Pre-employment drug tests are part of the hiring process and apply to all positions.
NW Natural does not accept unsolicited submissions or assistance from search firms for posted positions. Resumes submitted by search firms working under a valid and current written contract with NW Natural valid written Statement of Work in place for this position from NW Natural HR/Employment will be deemed the sole property of NW Natural. No fee will be paid in the event the candidate is hired by NW Natural as a result of the referral or through other means.