Join the Clean Energy Revolution
Become a Senior IS Security Advisor at Southern California Edison (SCE) and build a better tomorrow. In this job, you will be responsible for part of the Grid Services team within Southern California Edison's (SCE) Information Technology department. This role involves assisting and advising in regulatory compliance and grid security and vulnerability management.
Key Focus of Role :
- Offer strategic and technical guidance for design, implement, and operate and NERC CIP and grid security solutions for SCE.
- Developing or advising regarding capabilities to improve grid security and compliance processes grid security, vulnerability management, and continuous monitoring.
- Evaluating compliance implications of proposing changes to ensure timely submission of required forms and evidence.
- Engage with internal and external parties to strategize with regulatory agencies, vendors, and Organization Units.
- Reporting on NERC CIP compliance and Grid Vulnerability Management and risks status to Senior Management.
- Establish issue / risk escalation protocols for regulatory or security related any self-certifications and ensure annual certification.
- Establish governance processes, ensuring consistent policy alignment and providing technical expertise.A material job duty of all positions within the Company is ensuring the protection of all its physical, financial and cybersecurity assets, and properly accessing and managing private customer data, proprietary information, confidential medical records, and other types of highly sensitive information and data with the highest standards of conduct and integrity.
As a Senior IS Security Advisor , your work will help power our planet, reduce carbon emissions and create cleaner air for everyone. Are you ready to take on the challenge to help us build the future?
Responsibilities
Deploys, monitors, and oversees the information security program across the organizationMonitors the implementation of risk priorities owned by distributed IT directors and IT delivery teamsSupports and reports on regional information security incidents in collaboration with the security operations center, the privacy function, and the regional executive teamsManages, plans, and coordinates cyber resiliency exercises in collaboration with relevant partiesAssesses and evaluates risk and control position against cyber risk management frameworkDelivers expertise and advisory support for security audits impacting assigned zonesMaintains and reviews regional key performance indicators (KPIs), reporting on issues and risks to the global security operations center and any concerned business leadersPartners with third-party cyber risk management program to oversee and monitor business management of information security risks of third-party relationshipsFollows emerging vulnerabilities, and threats and ensures executive leadership are aware and regularly updated on external cyber threat landscapeEngages with a broad range of internal and external stakeholders to support the security strategy delivery, and implementation of global Information security programA material job duty of all positions within the Company is ensuring the protection of all its physical, financial and cybersecurity assets, and properly accessing and managing private customer data, proprietary information, confidential medical records, and other types of highly sensitive information and data with the highest standards of conduct and integrity.Minimum Qualifications
Ten or more years of experience in information technology, information security and / or cybersecurity.Preferred Qualifications
Ten or more years of experience with regulatory standards, or information security frameworks.Three or more years of experience and proven track record with NERC Critical Infrastructure Protection standards.Three or more years of experience in developing or implementing policies, standards, and governance processes.Three or more years of project management experience.Bachelor's degree or higher in Computer Science, Information Systems, Engineering, or related technical majorCertifications in project management, process design, or have a degree in a technical major.Certifications in Information Security, including : CISA, CISM or CISSP.Experience evaluating the design and effectiveness of common controls based upon industry standard methodology models (e.g., COBIT, ITIL, ISO, NIST) in accordance with compliance requirements.Experience with Process Design (Workflow, Visio, documentation, templates).Five or more years of experience in software development life cycle.Three or more years of experience in the electric utility industry, with focus on NERC, FERC, NIST, CSF.Additional Information
This position's work mode is hybrid. The employee will report to an SCE facility for a set number of days with the option to work remotely on the remaining days. Unless otherwise noted, employees are required to work and reside in the state of California. Further details of this work mode will be discussed at the interview stage. The work mode can be changed based on business needs.Visit our Candidate Resource page to get meaningful information related to benefits, perks, resources, testing information, hiring process, and more!Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.This position has been identified as a NERC / CIP impacted position - Prior to being hired, the successful candidate must pass a Personnel Risk Assessment (PRA) or Background Investigation. Once hired, the candidate must complete specified training prior to gaining un-escorted access to assigned work location and performing necessary job duties.Relocation does not apply to this position.About Southern California Edison
The people at SCE don't just keep the lights on. Our mission is so much bigger. We're fueling the kind of innovation that's changing an entire industry, and quite possibly the planet. Join us and create a future with cleaner energy, while providing our customers with the safety and reliability they demand. At SCE, you'll have a chance to grow personally and professionally, making a real impact in Southern California and around the world.
At SCE, we celebrate our differences. We are a proud Equal Opportunity Employer and will not discriminate based on race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status or any other protected status.
We are committed to ensuring that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodations at (833) 343-0727.
