Cybersecurity Technical Writer Job at Entergy Corporation in The Woodlands

***This is a hybrid position. The primary location is The Woodlands, TX but New Orleans, LA may be considered. Relocation assistance and sponsorship is not provided.***

BRIEF POSITION DESCRIPTION

The Security & Regulatory Technical Writer will be responsible for documenting the framework to ensure that the security organization’s practices remain observant to security and compliance directives required by North American Electric Reliability Corporation (NERC), Critical Infrastructure Protection (CIP), Nuclear Regulatory Commission (NRC), Nuclear Cyber (10 CFR 73.54), Sarbanes Oxley (SOX), Health Insurance Portability Accountability Act (HIPAA), cyber risk, etc. The Technical Writer presents, and trains on the programs and processes required to secure Entergy’s critical systems and assets as well as meet or exceed Entergy’s commitment and obligation to the various regulatory bodies and internal Entergy groups.

This position is expected to have operational expertise in areas of Information Security, Operational Technology, Cybersecurity, electrical power, professional auditing, and risk-based compliance processes.

This role will participate in communications with information sharing centers and industry peers on the status of Entergy’s documentation status.

JOB DUTIES:

• Organize material and complete writing assignments according to internal and external standards regarding order, clarity, conciseness, style and terminology.
• Develop, write, and edit corporate documentation, including manuals, user guides, reference materials, process documentation, and corporate reports.
• Assist project teams with the research, evaluation, and selection of compliance and security programs and processes.
• Develop and enforce corporate documentation standards, style guides, and templates.
• Use industry-standard tools and software to create structured documentation, including diagrams, flowcharts, and technical illustrations.
• Conduct research and analyze information to produce content that meets the needs of the target audience.
• Utilize applicable change management methodology to assure effective implementation of documentation changes (e.g. policies, procedures, standards, etc.) changes including interfacing between multiple business units.
• Participate in corrective action program activities including self-assessments, benchmarking and condition reporting and response.
• Exhibit strong teamwork and problem-solving skills.
• Propose, develop, and write documentation changes that improve efficiency and compliance.
• Serve as a shared resource as required.
• Perform other activities such as presentation development, training material development, etc.
• Exhibit subject matter expertise in one or more areas of compliance and/or cybersecurity.

MINIMUM REQUIREMENTS

Minimum Education needed:

Bachelor’s degree strongly preferred in technical writing, computer science, cybersecurity, internal audit, information technology or a related discipline or equivalent work experience; Master’s degree a plus.

Minimum Experience needed:

• Minimum 6 years of regulatory compliance and auditing experience as it relates to cyber security and/or information technology.
• Good communication skills with internal stakeholders.
• Experience with cybersecurity operations.
• Experience working with direct, indirect, and outsourced resources.
• Exposure to operations playbooks, run books, and performance measures.
• Experience with data analysis, data integration, and data validation activities with large, regulated utilities or related industry preferred.

Minimum knowledge, skills, and abilities required of the position:

• Knowledge of security ramifications of applicable regulations (NERC CIP, SOX and HIPAA).
• Knowledge of security, risk, and control frameworks and standards such as ISO 27001, NIST, FISMA & COBIT.
• Ability to quickly adapt to changing events and priorities.
• Social, verbal, and written communication skills, with ability to effectively present analytical data.
• Detail oriented with the ability to interpret regulatory requests and corresponding data.
• Available to travel.
• Comfortable working in high stress and ambiguous environments.
• Capable of meeting deadlines.

Any certificates, licenses, etc., required for the position:

• ISACA certification, such as CISSP, CISM, CISA preferred.

WORKING CONDITIONS:

As a provider of essential services, Entergy expects its employees to be available to work additional hours, to work in alternate locations, and/or to perform additional duties in connection with storms, outages, emergencies, or other situations as deemed necessary by the company. Exempt employees may not be paid overtime associated with such duties.

Please note: Authorization to work in the United States is a precondition to employment in this position. Entergy will not sponsor candidates for work visas for this position.