Staff Network Security Operations Analyst / Network Security Operations Analyst 

At PGE, our work involves dreaming about, planning for, and realizing a smarter, cleaner, more enduring Oregon neighborhood. Its core to our DNA and we haven’t stopped since we started in 1888. We energize lives, strengthen communities and drive advancements in energy that promote social, economic and environmental progress. We’re always on the lookout for people passionate about leading and being a part of teams that are advancing innovative clean energy solutions that are also affordable and accessible to all.

We’re hiring for a position open to both intermediate and career level candidates. The level will be determined based on the successful applicant’s qualifications, experience, and demonstrated skills during the interview process. There are two positions available, one at each level.

Staff Network Security Operations Analyst / Network Security Operations Analyst 

Job Function 

Conducts active monitoring, triage, remediation, or escalation of events within the IT environment, including network security, security policy, policy enforcement and auditing, policy creation, network routing and switching, internet / intranet security posture, server, and workflow automation of tasks to support proactive network security operational awareness. Performs development and implementation of PGE’s network security practices and programs. Supports and performs administrative functions on network security infrastructure and applications. 

Staff Network Security Operations Analyst 

Key Job Information: Intermediate Professional 

• Requires expanded professional-level knowledge and experience in own area; incumbents continue to acquire higher-level knowledge and skills. 
• Responsible for researching and documenting various network security mitigation strategies and must maintain current and thorough knowledge of security technologies and their significance to the organization. 
• Solves a range of more complex problems. 
• Analyzes possible solutions using advanced knowledge and applying protocols. 
• Operates independently and receives only a moderate level of guidance and direction. 

Key Responsibilities 

• Applications Support (ASUP) Identifies and resolves issues with network security, following agreed procedures. Uses network security management software and tools to collect agreed performance statistics. Carries out agreed network security maintenance tasks. 
• Perform network security tasks such as network/system troubleshooting, assist with root cause analysis, patching infrastructure components, support network security and infrastructure deployments, identify automation opportunity and author automation scripts. 
• IT Infrastructure (ITOP) Carries out agreed operational procedures, including network security configuration, installation, and maintenance. Uses network security management tools to collect and report on network security, risk, and performance statistics. Contributes and performs implementation, maintenance, and installation work. Uses standard procedures and tools to carry out defined system backups, restoring data where necessary. Identifies operational problems and contributes to their resolution. 
• Incident Management (USUP) Following agreed procedures, identifies, registers, and categorizes security incidents. Gathers information to enable security incident resolution and promptly allocates incidents as appropriate. Maintains records and advises relevant persons of actions taken. 
• Systems Installation/ Decommissioning (HSIN) Installs or removes hardware and/or software, using supplied installation instructions and tools, including, where appropriate, handover to the client. Conducts tests, corrects malfunctions and documents results in accordance with agreed procedures. Reports details of all hardware/software items that have been installed and removed so that configuration management records can be updated. Aids users in a professional manner following agreed procedures for further help or escalation. Maintains accurate records of user requests, contact details and outcomes. Contributes to the development of installation procedures and standards. 
• Customer Service Support (CSMG) Acts as the routine contact point, receiving and handling requests for support. Responds to a broad range of service requests for support by providing information to fulfill requests or enable resolution. Provides first-line investigation and diagnosis and promptly allocates unresolved issues as appropriate. Assists with the development standards and applies these to track, monitor, report, resolve or escalate issues. Contributes to creation of support documentation. 
• System Software (SYSP) Uses network security management software and tools to collect agreed security performance statistics. Carries out agreed system software maintenance tasks. 
• Collect and review performance reports for various systems, report trends in security, risk, exposure, and overall performance to assist senior technical personnel to predict future issues or outages. 
• IT Estate Management (DCMA) Monitors compliance against agreed processes and investigates, assesses, and resolves incidents of noncompliance, escalating where necessary. 

Education/Experience/Certifications 

• Requires a bachelor’s degree in an IT discipline or other related field or equivalent experience. 
• Two or more years of progressive IT operations experience focusing on systems or networking support in an enterprise and/or data center environment. 
• Preferred experience with network security. 
• Preferred experience with automation. 
• Certifications within technical disciplines preferred. 

Competencies (Knowledge, Skills, Abilities) 

Functional Competencies 

• Working knowledge of Palo Alto NGFW, f5 Networks, Network Security systems, Cisco routing and switching technologies. 
• Working knowledge and support of network security functions. 
• Working knowledge of scripting and automation. 
• Working knowledge of Firewall rule management and policy optimization. 
• Working understanding of ITIL or other service operations framework. 
• Working knowledge of Cloud networking and security practices in Azure, AWS, and Google. 
• Working knowledge of Zero Trust architectures for infrastructure and applications environments. 
• Working knowledge Routing Protocols and how to troubleshoot: EIGRP, BGP, RIP-2, PBR, Route Filtering, Redistribution, Summarization. 

General Competencies 

• Intermediate customer focus skills. 
• Intermediate accuracy skills. 
• Intermediate risk management skills. 
• Intermediate oral and written communication skills. 
• Intermediate interpersonal skills. 
• Intermediate decision-making skills. 
• Basic business acumen skills. 

Network Security Operations Analyst 

Key Job Information 

Career Professional 

• Requires in-depth network security knowledge and network analysis experience. 
• Uses best practices and knowledge of business environment to secure network infrastructure, platforms, and services. 
• Solves complex problems; takes a new perspective using existing solutions. 
• Works independently; receives minimal guidance. 
• Acts as a resource for colleagues with less experience. 

Key Responsibilities 

• Applications Support (ASUP) Maintains and develops network security, security policy, procedures, and documentation to support a zero-trust network architecture. 

Performs security enhancements to improve network security posture and performance. Uses security management software and tools to investigate issues, collect statistics and create reports. Performs advanced network security tasks such as lead network/security troubleshooting and lead root cause analysis efforts, patching infrastructure components, lead security and infrastructure deployments, identify automation opportunity and author automation scripts. 

• IT Infrastructure (ITOP) Provides technical expertise to enable the correct network security operational procedures. Administers network security management tools and determines network security, risk, and performance statistics. Contributes to the planning, design, and implementation of maintenance and installation work. Implements agreed network security changes and maintenance routines. Identifies network security operational problems and contributes to their resolution, checking that they are managed in accordance with agreed standards and procedures. Provides reports and proposals for improvement to specialists, users, and managers. 
• Incident Management (USUP) Prioritizes and diagnoses security incidents according to agreed procedures. Investigates causes of security incidents and seeks resolution. Escalates unresolved incidents. Facilitates recovery following resolution of incidents. Documents and closes resolved incidents according to agreed procedures. 
• Systems Installation/ Decommissioning (HSIN) Undertakes routine installations and maintenance of hardware and/or software. Takes action to ensure targets are met within established safety and quality procedures, including, where appropriate, handover to the client. Conducts tests of hardware and/or software using supplied test procedures and diagnostic tools. Corrects malfunctions, calling on other experienced colleagues and external resources if required. Documents details of all hardware/software items that have been installed and removed so that configuration management records can be updated. Develops installation procedures and standards and schedules installation work. Provides specialist guidance and advice to less experienced colleagues to ensure best use is made of available assets and to maintain or improve the installation service. 
• Customer Service Support (CSMG) Assists with the specification, development, research, and evaluation of services standards. Applies these standards to resolve or escalate issues and gives technical briefings to staff members. 
• System Software (SYSP) Reviews network security system software updates and identifies those that merit action. Tailors network security system software to maximize functionality. Installs and tests new versions of network security system software. Investigates and coordinates the resolution of potential and actual service problems. Prepares and maintains operational documentation for network security system software. Advises on the correct and effective use of system software. 
• IT Estate Management (DCMA) Carries out routine audit and checks to ensure adherence to policies and procedures. Assists with developing and maintaining the standards, processes, and documentation for network security hardware / software systems. 
• Technical Specialism (TECH) Maintains an in-depth knowledge of specific specialisms and provides expert advice regarding network security. Can supervise specialist consultancy. The specialism can be any aspect of information or security technology, technique, method, product, or application area.
• Availability Management (AVMT) Contributes to the availability management process and its operation and performs defined availability management tasks. Analyzes service and component availability, reliability, maintainability, and serviceability. Ensures that services and components meet and continue to meet all their agreed performance targets and service levels. Implements arrangements for disaster recovery and documents recovery procedures. Conducts testing of recovery procedures. 
• Emerging Technology Monitoring (EMRG) Maintains awareness of opportunities provided by new security technology to address challenges or to enable new ways of working. Within own sphere of influence, works to further organizational goals using emerging technologies and products. Contributes to briefings and presentations about their relevance and potential value to the organization. 

Education/Experience/Certifications 

• Requires a bachelor’s degree in an IT discipline or other related field or equivalent experience. 
• Five or more years of progressive IT operations experience focusing on network security support in an enterprise environment. 
• Preferred experience with network security and leading enterprise network security initiatives. 
• Preferred experience with automation and optimizing automation opportunities. 
• Certifications within technical disciplines preferred. 
• Requires a valid drivers license and a history of safe driving practices. 

Competencies (Knowledge, Skills, Abilities) 

Functional Competencies 

• Intermediate knowledge of Palo Alto NGFW, f5 Networks, Network Security systems, Cisco routing and switching technologies. 
• Intermediate knowledge of network and security functions. 
• Advanced knowledge of network device, system, and security scripting automation. 
• Intermediate knowledge of firewall rule management and policy optimization. 
• Intermediate understanding of ITIL or other service operations framework. 
• Intermediate knowledge Routing Protocols and how to troubleshoot: EIGRP, BGP, RIP-2, PBR, Route Filtering, Redistribution, Summarization. 
• Intermediate knowledge of F5 Networks LTM, GTM, GSLB, ASM, and APM. 
• Intermediate knowledge of Cloud networking and security practices in Azure, AWS, and Google. 
• Working knowledge of Zero Trust architectures for infrastructure and applications environments. 

General Competencies 

• Advanced customer focus skills. 
• Advanced accuracy skills. 
• Advanced risk management skills. 
• Advanced oral and written communication skills. 
• Advanced interpersonal skills. 
• Advanced decision-making skills. 

Required for both levels 

Physical and Cognitive Demands 

Cognitive Level Substantial: Consistent use of logic or scientific thinking to define problems, collect information, establish facts, and draw valid conclusions (for example, engineer, HR director, plant manager, etc.). 

• Ability to adhere to set response times, deadlines, and time-sensitive tasks. 
• Ability to follow accuracy standards. 
• Ability to follow through on decision-making tasks. 
• Ability to interact effectively and collaboratively within a team environment. 
• Ability to communicate and problem solve when under stress. 
• Ability to respond and adapt to frequent change. 
• Ability to accept and demonstrate self-awareness when provided constructive feedback. 
• Ability to discern feedback and acknowledge ownership of areas of improvement. 
• Ability to avoid future mistakes by applying reasonable skills to new but similar work situations or tasks. 
• Ability to successfully collaborate with peers, managers, and others within the organization. 
• Demonstrates sound memory. 
• Ability to process new information to be applied consistently to work tasks. 

Schedule/Attendance 

• Ability to occasionally work long hours. 
• Ability to occasionally work a variable schedule. 
• Ability to report to work and perform work during periods of severe inclement weather. 
• Ability to consistently meet attendance standards for regular, reliable, predictable, full-time attendance. 
• Ability to work shift schedule. 
• Ability to maintain ability to adjust schedule, fill in shifts and work occasional extended hours, evenings, or weekends when necessary to support operational needs. 
• Ability to support after-hour on-call with the parameter of 15-minute response times and drive into office within two-hour drive time if needed. 
• Must be fit for duty during standard work hours and during on-call rotations. 
• Ability to participate in companywide Incident Command System and its processes to maintain core company functions during crisis events. 

Physical Capabilities 

• Driving/travel/commute: Daily within service territory – Frequently (at least once a week or more) 
• Driving/travel/commute: Overnight inside/outside the service territory – Occasionally (one to two times a month or less) 
• Computer use (use computer regularly for entire work shift) 
• Lifting/pushing/pulling: Up to 50 lbs. 
• Unstable surfaces requiring balance (i.e., moving equipment, boats); check all that apply: Access to: 

☒ Datacenter 

☒ Communications closets 

☒ Electrical/HVAC rooms 

☒ Raised floor/under floor 

Environment - Indoor/Outdoor (check all that apply): 

• Office 

PGE supports hybrid flexible work arrangements; and will have a combination of in-the-office and working offsite. This individual will need to be located within 75 miles from job location and will need to work in-the-office at least one day a week. However, these arrangements may change due to business needs or changes in responsibility. 

#LI-CU1 

#Hybrid

Compensation Range:

$81,450.00 – $160,500.00

Actual total compensation, including a performance based incentive bonus, is commensurate with experience, skills, qualifications, education, training, and internal equity. While we anticipate the selected candidate for this position will fall towards the middle or entry point of the compensation range, the decision will be made on a case-by-case basis.

PGE believes in rewarding dedicated performance. We provide a total rewards package that is designed to reward your contributions to the company, and, at the same time, support your well-being and professional development, both now and into the future. To find out more, click here.

Join us today and power your potential!

Assisting with storms or other Company emergencies is a part of all positions at Portland General Electric.

PGE is committed to diversity and inclusion in the workplace and is an equal opportunity employer. PGE will not discriminate against any employee or applicant for employment based on race, color, national origin, gender, gender identity, sexual orientation, age, religion, disability, protected veteran status, or other characteristics protected by law.

PGE does not discriminate on the basis of disability. We recognize individuals have a variety of abilities to offer and we believe there is much to value and celebrate by incorporating different abilities into the work we do. One very important way we live this out is in our application and interview process. We work hard to support individuals who may need an accommodation to fully participate in these processes. If you feel you may need an accommodation, or would like to request one, please notify the Talent Acquisition Specialist (Recruiter) associated with the job posting. You may also make this request by contacting [email protected] or by calling 503-464-7250. The Recruiter will provide information and next steps for the accommodation process. Our Diversity, Equity & Inclusion (DEI) team is also available for support. You can contact them at [email protected].

To be considered for this position, please complete the following employment application by the posting close date. Posting closes at midnight (Pacific Time) on the closing date below. If no date is listed, job is open until filled.

Read Full Description