It Security Specialist Ii

About Us
South Jersey Industries (SJI) is an energy holding company that delivers clean energy services to 700,000+ customers and businesses throughout 14 counties in New Jersey. As part of our core values, SJI is dedicated to being a community partner and developing innovative clean energy solutions to meet the needs of the future. To do this, we depend on our workforce of over 1,100+ talented, diverse employees who help us deliver safe, reliable, affordable clean energy for a better today and tomorrow.
At SJI, we believe that our employees are our most valuable asset. Whether you're a seasoned operations technician or an early-career legal professional, our culture, inclusive workforce, and leadership development and training programs will provide you with the tools you need to either kickstart your career or bring it to new heights.
Position Summary
The IT Security Specialist Il is a member of the information security team and works closely with the other members of the team to develop and implement a comprehensive information security program. This includes defining security policies, processes and standards. The security analyst works with the IT department to select and deploy technical controls to meet specific security requirements and defines processes and standards to ensure that security configurations are maintained.
Essential Functions:

• Protects system by defining access privileges, control structures, and resources.
• Recognizes problems by identifying abnormalities; reporting violations. Implements security improvements by assessing current situation; evaluating trends; anticipating requirements.
• Determines security violations and inefficiencies by conducting periodic audits and assessments.
• Upgrades system by implementing and maintaining security controls.
• Assist developers, analysts, and designers in conceptualizing and developing security controls for programs and applications.
• Works closely with the business to interpret business requirements and in turn these requirements into a technical solution.
• Conduct research on emerging security developments, security products,
• Vulnerabilities, and mitigation standards in support of security efforts.
• Support business users and security anomalies 24/7 through the IT On-Call procedures.
• Generate statistics and prepare and write reports for management and/or team members on the status of the security program.

Required Background:

• Bachelor's degree with 2 years of relevant experience, or;
  • Master's degree with 0 years of relevant experience.
  • Equivalent work experience may be considered in lieu of degree.

Qualifications
Required Skills:

• Knowledge and experience with email security technologies including antispam, security-based mail flow rules, secure messaging, email validation (SPF DKIM, DMARC). Additionally, current experience in secure email gateways is a plus.
• Knowledge of and experience in developing and documenting security architecture and plans, including strategic, tactical and project plans.
• Experience with common information security management frameworks, such as NIST Cybersecurity Framework and NIST 800-53.
• Proficiency in performing risk, business impact, control and vulnerability assessments.
• Process owner for third party security review policy and procedure.
• Excellent technical knowledge of mainstream operating systems and a wide range of security technologies, such as network security appliances, identity and access management (IAM) systems, anti-malware solutions, policy compliance tools (vulnerability scanning tools), MFA, and desktop security tools.
• Experience in developing, documenting and maintaining security policies, processes, procedures and standards.
• Experience in security awareness training and phishing simulation software. Process owner for security awareness program.
• Industry security certifications such as CISSP, CISM and CCSP preferred.

Preferred Background:

• Technical knowledge of Network Firewalls and administration.
• Technical knowledge of Risk Based and Profile based authentication.
• Technical knowledge System Administration and Network Security.
• Technical knowledge and experience developing Information Security Policies.
• Technical knowledge Network Protocols, Routers and Switches.
• Experience working with enterprise applications.and cloud computing
• Hands-on security troubleshooting experience.
• Familiarity with energy & utility industries a plus

Explore the Possibilities
South Jersey Industries employs a diverse range of talent - from construction contractors to environmental specialists. Regardless of the position, mentoring and networking, hands-on experience, gaining industry knowledge and the opportunity to make a meaningful impact on our business and in our communities are all exciting ways that we welcome our employees at SJI. And as a company committed to creating an engaging culture built on inclusion and diversity, you're sure to find an opportunity that makes you feel included, empowered, and ready to "bring your whole self to work" every day.
Benefits Package Overview
SJI offers a competitive and comprehensive benefits package to eligible employees.
The SJI "Total Rewards" Benefits Package include:

• Flexible vacation, Paid Time Off, and Sick Leave package
• Comprehensive Health, Dental, and Vision Insurance
• Short-term and Long-term Disability Insurance
• 401(k), with generous company match
• Employee Resource Groups to encourage employee engagement, nurture professional development, and foster an inclusive environment.

Equal Opportunity/Affirmative Action Employer
At this time, SJI is only considering applicants authorized to work in the United States currently and in the future without the need for visa sponsorship.