Senior Cybersecurity Engineer

Talen Energy seeks a dynamic Senior Security Engineer to collaborate with IT and stakeholders, ensuring the security and integrity of the enterprise. This role will involve auditing configurations, integrating, managing, and monitoring security controls and systems.

Responsibilities

• Work in a self-directed environment, providing consistent results with minimal daily guidance.
• Develop IT security policies and procedures, implementing necessary controls and procedures to cost-effectively protect information technology assets.
• Configure and maintain cybersecurity tools, exhibiting technical skill.
• Oversee ongoing operations of security assets, ensuring a defense-in-depth security model is in place.
• Deploy, manage, and maintain all security systems and their corresponding software.
• Penetration test all systems to identify vulnerabilities.
• Review logs for unusual or suspicious activity, interpreting and making recommendations for resolution.
• Recommend fixes, security patches, disaster recovery procedures, and measures required in the event of a security breach.
• Collect meaningful metrics and key performance indicators for reporting cyber security threats and trends.
• Foster customer value by building partnerships with key contacts in the business line.
• Produce communications to various audiences, effectively interacting on business or technical matters.
• Solve problems, assuring timely resolution of operational issues.
• Support internal and external IT and security audits as needed.
• Participate in an on-call rotation assignment.

Requirements

• Advanced understanding of security control environments, including access control, logging, authentication, encryption, and integrity.
• Experience coordinating corporate-wide initiatives for obtaining security-related assurances.
• Ability to use logic and reasoning to identify strengths and weaknesses of alternative solutions.
• Working knowledge of identity and access management principles, such as OAuth, OIDC, SAML, and SCIM.
• Experience designing and implementing identity and access control methodologies and policies.
• Security Controls Assessment Experience.
• Extensive experience with Information Security solutions, including DLP, NAC, SASE, NGFW, EDR, XDR, SIEM, IAM, IDPs.
• Understanding of DevSecOps principles and practices.
• Experience leading security projects, collaborating with cross-functional teams, and driving security initiatives.
• Proven experience in incident response activities, including identifying and mitigating security incidents.
• Threat Hunting, Vulnerability mgt., SIEM, Cloud Security.
• Proficient in NIST, ISO 27001, CIS, SOC, CCM.

Preferred Qualifications

• CyberArk EPM, Privilege Cloud.
• CrowdStrike Falcon.
• Identity Providers, such as Okta, Entra ID, AWS Identity Center.
• AWS Security Hub, AWS Inspector, GuardDuty.

Minimum Qualifications

• One industry certification, CISSP or CCSP.
• A minimum of 10 years in IT/systems engineering, with 5-7 years in Cybersecurity disciplines.
• Bachelor's degree in computer science, Information Technology, Information Security, or related discipline may be considered as substitution for experience.

About Talen Energy

Talen Energy is one of the largest competitive energy and power generation companies in North America. We operate power plants using diverse fuel sources and sell energy to wholesale and retail customers. Our passion for excellence grows value through safe and efficient operations.