• Lead incident response efforts, such as responding to identified malicious activity or highly critical vulnerabilities that pose a threat to the organization.
• Onboard data, configure integrations, and setup security alerting for the security information and event management (SIEM) solution, which includes parsing and analyzing large, complex data sets and integrating into the security case management system.
• Leverage knowledge in multiple security disciplines, such as Windows, Unix, Linux, data loss prevention (DLP), endpoint controls, databases, wireless security, and data networking, to offer global solutions for a complex heterogeneous environment.
• Responsible for the continuous maturity of monitoring and incident response capabilities.
• Stay current with, and remain knowledgeable, about new threats. Analyze attacker tactics, techniques, and procedures (TTPs) from security events across a large heterogeneous network of security devices and end-user systems.
• Conduct cyber investigations including suspicious files analysis across applications, networks, and endpoints, including memory and disk forensics, to determine maliciousness. Analysis requires knowledge of traditional malware, but also repurposed files that are not malicious, as well as targeted malware and zero-day attacks.
• Acts as primary security resource for strategic initiatives by providing security reviews and mitigation recommendations that address concerns going forward.
• Provides leadership for cyber team including setting standards, identifying emerging threats, mentoring team on how to mitigate risks, and collaborating with business and IT resources.
• Promotes strategic comprehensive planning by identifying advocating for security solutions or practices that substantially reduce the cyber risk of organization.
• Engages in other duties as needed that support Alliant Energy’s Values and helps deliver on our Purpose to serve customers and build stronger communities.

Education Requirements

• Bachelor's Degree Information Technology Preferred
• Certification Relevant information security certifications (e.g., CISSP, CISA, CISM, CRISC, or GIAC) or the ability to gain a certification within 6 months of hire. Required

Required Experience

• 8 years of experience in information technology or technology risk management related work experience.
• Solid understanding and experience with security development lifecycle (SDL) processes for internally developed applications, including the web-based and Internet facing components.
• Solid knowledge and experience with IT security aspects of operating systems, Active Directory, database (SQL) access, LDAP, Microsoft SharePoint, web server configurations, networks server administration, data networking, firewall administration and/or applications development.
• Experience working in a regulated industry and be familiar with government and industry regulations that involve information security. These include PCI, FISMA, GLBA, FERPA, NERC CIP, HIPAA, or SOX.
• Experience managing security related projects involving multiple teams, utilizing project management tools (task allocation, check point meetings, project milestones, etc.).

Key Skills

• Access Control Management
• Application Security
• Cloud Networking
• Cybersecurity Risk Management
• DevSecOps
• Identity and Access Management (IAM)
• Incident Management
• Incident Response
• Information Security Management
• IT Risk Management
• Intrusion Detection
• IT Security Management
• Network Penetration Testing
• Network Security Management
• Security Architecture Design
• Security Governance
• Threat Modeling
• Vulnerability Management

It's not just what we do; it's how we do it.

Live Safety. Everyone. Always | Make Things Better | Care For Others | Do The Right Thing | Act For Tomorrow | Think Beyond. Be Bold

Alliant Energy is committed to providing an inclusive work environment for all and is proud to be an Equal Opportunity Employer where an applicant's qualifications are considered without regard to race, color, religion, sex, national origin, age, disability, veteran status, sexual orientation, gender identity or expression, or any other basis prohibited by law.

All candidates selected for employment with Alliant Energy will be required to successfully complete a drug screen and background check.

Disclaimer:

The above information on this description has been crafted to indicate the general nature and level of work performed by employees within this classification. It is not crafted to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications required of employees assigned to this job.

Alliant Energy and subsidiaries is an equal opportunity employer that values diversity in the workplace. Applicants in need of a reasonable accommodation for any part of the hiring process, please email talent@alliantenergy.com.