Cyber Security Resiliency, Senior Specialist

Join the Clean Energy Revolution

Become a Cyber Security Resiliency, Senior Specialist at Southern California Edison (SCE) and build a better tomorrow. In this job, you'll work in the Cyber Resiliency/Disaster Recovery tower within the Cybersecurity Governance department. As one of the nation's critical utilities, our electric infrastructure requires constant vigilance and innovation. We depend on our dedicated, curious, problem-solving cybersecurity team to protect these assets and help build our clean energy future. Every day at SCE, you will handle unique and complex challenges and be empowered to improve our defenses. You will play a key role designing comprehensive cyber resiliency strategies to protect SCE's critical infrastructure and data. You will conduct resiliency assessments, participate in the recovery of incidents, in addition to testing and exercising recovery plans including backup restoration. As a Cyber Security Resiliency, Senior Specialist, your work will help power our planet, reduce carbon emissions and create cleaner air for everyone. Are you ready to take on the challenge to help us build the future?

• Performs security risk, vulnerability assessments, and business impact analysis for medium complexity information systems
• Carries out project reporting for assigned projects, monitoring project status, timeline and budgets
• Assists in the planning and implementation of current and future security domains including those which may introduce new service areas
• Adopts and follows security controls, processes, and procedures to manage risk across all information system environments (infrastructure, network, and applications) with the assistance of the application and infrastructure management teams
• Monitors technology risk, identifies root cause or key themes, recommends for resolution
• Investigates suspected attacks and manages security incidents. Uses forensics where appropriate
• Reviews and shapes the production of evidence to support internal and external audits
• Implements appropriate security measures for information systems and applications that control access to data, and prevents unauthorized modification, destruction, or disclosure of information
• Develops and maintains metrics, alerts, dashboards, and reports for security monitoring
• Maintains incident response plans and performs incident response activities as directed and in accordance with established procedures and guidelines and those of federal authorities
• A material job duty of all positions within the Company is ensuring the protection of all its physical, financial and cybersecurity assets, and properly accessing and managing private customer data, proprietary information, confidential medical records, and other types of highly sensitive information and data with the highest standards of conduct and integrity.

• Five or more years of experience in information technology, information security and/or cybersecurity.
• US Citizenship Required.

• Bachelor's degree or higher in computer science, information technology, business administration, or related field.
• Two or more years of experience in Cybersecurity resiliency such as incident management, disaster recovery, business continuity, business impact analysis, and data restoration.
• Excellent communication and collaboration skills, with the ability to work effectively with multi-functional teams.
• Strong analytical and problem-solving abilities, with keen attention to detail.
• Professional certifications such as: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified Risk and Information Systems Control (CRISC), Global Information Assurance certification (GIAC), Disaster Recovery certifications from DRII, and/or any relevant certifications.
• Broad knowledge or experience Information Technology including data centers and communications.
• Two or more years of experience with Information Technology and Operational Technology environments.
• Knowledge or experience with current cybersecurity resiliency technologies/tools.
• Experience with enforcing and monitoring security controls.
• Knowledge or experience working within a NIST Cybersecurity Framework.
• Knowledge or experience working with NERC/CIP standards.

• This position's work mode is hybrid. The employee will report to an SCE facility for a set number of days with the option to work remotely on the remaining days.\u202f Unless otherwise noted, employees are required to work and reside in the state of California.\u202f Further details of this work mode will be discussed at the interview stage. The work mode can be changed based on business needs.
• Visit our Candidate Resource page to get meaningful information related to benefits, perks, resources, testing information, hiring process, and more!
• Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.