Primary Purpose
Contributes to the effective operation of Cybersecurity team to achieve milestones and objectives in the assessment, implementation and operation of technical and procedural controls of the Company's cybersecurity infrastructure for the purposes of ensuring the confidentiality, integrity and availability of its information and resources.• Develops a tailored security offering for a specific Company environment through BU interviews and research into the business needs• Has strong working knowledge of broad range of threat vectors, malware functionality, its effects, and its evasion and obfuscation techniques and their effect on best practice controls• Develops templates and plans to assess and mitigate risk that may affect Company systems based on known threats on enterprise and ICS systems • Collaboratively works within industry groups to characterize threats and exploits and attribute them to actors in order to predict future attacks and campaigns• Redesigns or extends existing architectures to increase security capabilities while meeting operational needs• Has strong working knowledge of IT system functionality, architecture and capabilities. Can effectively diagnose and troubleshoot issues with minimal assistance.• Pilots promising security technologies in use cases that could offer future benefits within the Company environment
Duties and Responsibilities

• Maintain and operate cybersecurity technology and and provide expertise in area of focus (e.g. Risk Assessments, Controls Engineering or Incident Response)
• Provide awareness and guidance within the Company on secure business processes, architecture design, and technical controls
• Maintain awareness of evolving cybersecurity threats and best practices for mitigation.
• Mentor Cybersecurity staff on best practice security controls and efficient processes.
• Develop procedures and guidelines for implementing information security systems and practices.
• Propose additional metrics to measure, monitor and report on the effectiveness of information security controls and compliance with information security policies.
• Performs other duties as assigned

Qualifications
Education

• Bachelor's Degree Computer Science or other science or technology major Required Experience
• Minimum of 3-7 years Direct experience within the information security field Required
• In-depth experience in multiple cybersecurity disciplines Required
• Proven experience leading projects of large and small security related initiatives to successful completion Required
• Demonstrated experience in vendor selection, testing, implementation, and operations of a broad array of security technologies Required
• Utility specific information security and/or related infrastructure background PreferredSkills and Abilities
• Broad knowledge of multiple technical and procedural areas within the information security field
• Ability to develop and execute a quality security review process based on security policies, best practice and/or regulatory standards
• Ability to solve complex problems as well as have demonstrated expert troubleshooting capabilities
• Ability to exercise sound judgment regarding review findings and make cost effective recommendations to management
• Strong analytical skills from a business prospective including operating, technical, financial and other related fields
• Ability to work effectively on multiple projects within a team structure and excellent written and oral communication skills Licenses and Certifications
• Certified Information Systems Security Professional (CISSP) certification, Global Information Security Professional (GISP) certification, Global Information Assurance Certification (GIAC), Certified Information Systems Auditor (CISA), or Certified Internal Auditor (CIA) certificate or equivalent Required
• Targeted professional cybersecurity certifications (i.e. forensics and incident response) Preferred

Equal Opportunity Employer Minorities/Women/Protected Veterans/Disabled