Cybersecurity Program Manager

Cybersecurity Program Manager

Application due date: April 28, 2025

Location: Maple Grove, MN (hybrid schedule eligible for 80% remote)

Are you a dedicated cybersecurity professional with a decade of progressive experience protecting critical infrastructure? If so, Great River Energy invites you to join our team as a Cybersecurity Program Manager ! The North American power grid is the largest machine in human history and a constant target for those that would bring harm to our society. Using our best-in-class tools you will serve this mission by leading continuous improvement to our cybersecurity operations program for analyzing adversary capabilities to proactively locate and block those faint signals of vulnerability or compromise.

Summary:

This new Program Manager role offers a great opportunity for an experienced security professional to lead IT cybersecurity operations by developing and implementing threat identification, detection, and response strategies while overseeing advanced analysis to enhance proactive protection aligned with business needs Achieving success in these responsibilities relies on the ability to reduce complex details into concise business language and building strong, collaborative relationships with the GRE's business units, IT platform administrators, and cybersecurity staff. Advance level experience is needed with security protection and detection platforms including Splunk ES, CrowdStrike Falcon, and Tenable.SC.

Total Rewards:

A typical starting range for this position is $139,000 - $191,000 annually. We offer market competitive base pay and adjust our offer accordingly based upon the value of the candidate’s knowledge, skills and experience. In addition, our Total Rewards strategy focuses on recognizing individual performance and rewarding business results. Our robust Total Rewards package includes exceptional benefits and retirement, a focus on continuous engagement, recognition, personal and professional development, and an emphasis on work-life effectiveness.

GRE is a beyond the yellow ribbon employer with an active Veteran’s Employee Resource Group, along with several other ERGs.

Responsibilities: Job responsibilities include, but are not limited to

· Provides planning, design, and prioritization of security operations and security services based on GRE business need to enhance cybersecurity posture leveraging MITRE ATT&CK framework and other best practices.

· Develops and mentors others in the development of security incident response, vulnerability management, and proactive threat analysis practices including standardized playbooks for new and evolving attacker tactics and techniques.

· Oversees detailed technical analysis and security operations response to alerts, vulnerabilities, and external security threats synthesizing analyses from various subject matter experts from multiple departments to ensure thorough examination and effective resolution of all issues.

· Leads team in threat intel, research , and collaborate with internal and external partners through threat-intel sharing forums to share, receive, and acts on actionable threat intelligence leveraging internal tools and processes.

· Creates visuals, presentations, and detailed reports used to explain incidents, vulnerabilities, breach events, and response to both technical and non-technical audiences of all levels.

· Assess the organization’s current operational security posture and conduct technical security assessments to identify vulnerabilities, weaknesses, and potential risks and recommend appropriate actions. (Red team exercises)

· Stays current with and mentors others on the team on new and evolving attacker tactics and techniques to identify malicious or unexpected activity.

· Expert knowledge with SIEM platforms, end point detections and response tools, vulnerability scanning, and intrusion detection systems is a must.

· Experience with NERC CIP cybersecurity standards, utility operations, industrial control systems, IOT environments, identity management, disaster recovery, and NIST cybersecurity practices a plus.

· Any training from SANS Institute or security certifications are preferred to show continuous development.

· Experience in scripting and programming languages such as PowerShell, Bash, Python and/or Ruby is a plus.

Qualifications: Knowledge typically acquired through a bachelor’s degree in a technology or cybersecurity related field and 10 years of progressive experience working in a security operations center (SOC) or cybersecurity roles or 2 years post high school education in a technology or security related field and 12 years of progressive experience working in a security operations center (SOC) or cybersecurity roles.

Apply: Qualified candidates please apply at www.greatriverenergy.com (under the Careers tab) by April 28, 2025. GRE values diversity, equity and inclusion and we are an equal employment opportunity employer.