Job Description

Join the Clean Energy Revolution

Become a Cybersecurity Engineering & Risk Management, Senior Manager at Southern California Edison (SCE) and build a better tomorrow. In this job, youll develop and execute strategies to direct new processes, standards, and operational plans to improve SCEs cybersecurity posture. Manage a team of cybersecurity experts to drive a robust cybersecurity risk management, engineering, testing, and architecture framework throughout SCE. Lead a team that will coordinate with Operating Units (OUs) across the company to ensure that cybersecurity controls are part on any software and system development lifecycle whether across IT and OT networks. Additionally, your team will work to verify and help remediate risks, exceptions, and standards and establish monitoring capabilities to defend against and respond to cyber threats as they arise. Your contributions will directly protect critical energy infrastructure as SCE continues to modernize the grid through digital means. As a Senior Manager, your work will help power our planet, reduce carbon emissions and create cleaner air for everyone. Are you ready to take on the challenge to help us build the future?

A day in the life - Get ready to think big, work smart and shine bright!

* Manage and develop a team of cybersecurity subject matter experts, programs, and budgets to meet strategic goals and operational needs. Make, recommend, and/or approve employment decisions (e.g., hiring, promotion, appropriate pay, rewards/recognition, succession planning and termination). Manage employee performance for both direct and/or matrixed reports. Establish performance expectations and goals aligned with Company objectives, policies, and procedures. Manage, train, and develop staff by providing timely feedback, mentor and support.
* Establish strategic priorities, new processes, standards, and operational plan that ensure SCEs Cybersecurity Department contributes value to OUs through agility, teamwork, and strategic alignment.
* Lead cybersecurity risk and architecture conversations and solutions with enterprise architecture, IT/Ops, Grid Services, and other teams within SCE. Establish penetration testing and risk management programs to reduce risk across the organization.
* Deliver and report key metrics to provide stakeholders situational awareness regarding risks, vulnerabilities, and vulnerability remediation timelines.
* Deconstruct complex security processes and solutions to identify relevant risk areas, potential control points, and provide sound recommendations for risk treatment.
* Ensure team to take ownership of assigned areas of responsibility and effectively manage workload to meet team deliverables and deadlines.

Qualifications
A day in the life - Get ready to think big, work smart and shine bright!

* Manage and develop a team of cybersecurity subject matter experts, programs, and budgets to meet strategic goals and operational needs. Make, recommend, and/or approve employment decisions (e.g., hiring, promotion, appropriate pay, rewards/recognition, succession planning and termination). Manage employee performance for both direct and/or matrixed reports. Establish performance expectations and goals aligned with Company objectives, policies, and procedures. Manage, train, and develop staff by providing timely feedback, mentor and support.
* Establish strategic priorities, new processes, standards, and operational plan that ensure SCEs Cybersecurity Department contributes value to OUs through agility, teamwork, and strategic alignment.
* Lead cybersecurity risk and architecture conversations and solutions with enterprise architecture, IT/Ops, Grid Services, and other teams within SCE. Establish penetration testing and risk management programs to reduce risk across the organization.
* Deliver and report key metrics to provide stakeholders situational awareness regarding risks, vulnerabilities, and vulnerability remediation timelines.
* Deconstruct complex security processes and solutions to identify relevant risk areas, potential control points, and provide sound recommendations for risk treatment.
* Ensure team to take ownership of assigned areas of responsibility and effectively manage workload to meet team deliverables and deadlines.

The essentials

* Bachelors degree.
* Five (5) years of experience leading or managing teams.
* Five (5) years of combined experience in Cybersecurity Risk Management, Incident Response, Threat Analysis, Engineering, and/or development, maintenance, and implementation of enterprise cybersecurity policies and standards.

The preferred

* Seven (7) years of experience leading or managing teams.
* Seven (7) years of combined experience in managing cybersecurity programs.
* Analysis, design, and Implementation of industry-standard information security programs on mainframe, mid-range, network, and distributed computing environment.
* Experience in establishing and managing cyber penetration testing programs.
* Development of strategic information cybersecurity plans, policies, procedures, and controls, and an extensive experience in regulatory compliance, up to and including, external and internal audits.
* Design and implementation of security systems, common services, governance, programs, administrative functions, and energy systems, as well familiarity with security in-depth practices in information classification, forensics investigations, incident response and tracking, and risk management and assessment methodologies and programs.
* Knowledge of Information Security best practice such as NIST 800 series, ISO 27000 series, ISA, or COBIT.
* Knowledge of change management process such as Agile, ITIL, Six Sigma, or MSF.

You should know

* Visit our Candidate Resource page to get meaningful information related to benefits, perks, resources, testing information, and hiring process, and more!
* Relocation may apply to this position.
* This position has been identified as a NERC/CIP impacted position - Prior to being hired, the successful candidate must pass a Personnel Risk Assessment (PRA) or Background Investigation. Once hired, the candidate must complete specified training prior to gaining un-escorted access to assigned work location and performing necessary job duties.
* US Citizenship is required as part of Critical Infrastructure.

About Southern California Edison

The people at SCE don't just keep the lights on. Our mission is so much bigger. Were fueling the kind of innovation thats changing an entire industry, and quite possibly the planet. Join us and create a future with cleaner energy, while providing our customers with the safety and reliability they demand. At SCE, youll have a chance to grow personally and professionally, making a real impact in Southern California and around the world.

At SCE, we celebrate our differences. We are a proud Equal Opportunity Employer and will not discriminate based on race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status or any other protected status.

We are committed to ensuring that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodations at (833) 343-0727. L1-WT1