SAP & Existing Technologies Governance, Cybersecurity Advisor - Southern California Edison
Rosemead, CA
About the Job
Join the Clean Energy Revolution
Become an SAP & Existing Technologies Governance, Cybersecurity Advisor at Southern California Edison (SCE) and build a better tomorrow. In this job, you’ll be part of the Cybersecurity Governance department within IT Organizational Unit. You will provide SAP and IT/OT systems/applications subject matter technical expertise. This critical role will develop, implement, enforce, and monitor security controls to mitigate risks and protect SCE assets and sensitive data. Provide technical, engineering, and/or risk management cybersecurity guidance. Collaborate with multi-functional teams to define security requirements and ensure compliance with industry standards and regulations. Stay informed about the latest cybersecurity threats, trends, and technologies to continuously improve security measures.
We are seeking a standout colleague with a consistent track record of demonstrating proactive security measures to join our elite Information Technology team. The responsibilities of this role will focus on:
+ SAP & Existing Technologies : Serve as the Lead, developing cybersecurity governance, strategy, policies, process, and metrics to protect SCE assets and sensitive data against external and internal threats.
+ Cybersecurity Governance: Establish and oversee processes that ensure cybersecurity policies, standards, and guidelines are consistently practiced. Engaging IT and Organizational Unit collaborators to assess and enforce cybersecurity policies, standards, and controls adherence. Providing technical expertise when cybersecurity risks are identified or when new cybersecurity policies, standards, and technical requirements are developed.
+ Cybersecurity Projects: Participate in projects and provide cybersecurity domain technical expertise when called upon to develop and enforce standards/policies, identify risks, and determine appropriate cybersecurity risk management approach.
+ Communications : Develop and presenting executive-level communication related to identified risks and the risk management strategy to IT and OU leadership.
As an SAP & Existing Technologies Governance, Cybersecurity Advisor , your work will help power our planet, reduce carbon emissions and create cleaner air for everyone. Are you ready to take on the challenge to help us build the future?
Responsibilities
+ Manages cyber security project delivery by ensuring the cyber security team delivers on success criteria
+ Delivers project reporting for assigned projects, conducts critical analysis of project status, potential risks, and continual process improvement
+ Coordinates and performs appropriate maintenance to ensure reliable and secure performance of the security systems, including applying security patches, implementing version upgrades, modifying, and improving services and performing ongoing operational management tasks
+ Contributes to an overall cyber security governance strategy, standards, and operational procedures
+ Ensures technology risk impacting the business is effectively identified, quantified, communicated and managed, including recommendations for resolution and identifying the root cause/key themes
+ Prepares and updates Plan of Actions & Milestones (POA&M) that identify security weaknesses and establishes milestones and compensates controls for remediating these weaknesses and tracking the progress and effectiveness of the remediation
+ Oversees the production of evidence to support internal and external audits
+ Provides Cyber Security and risk assessments for new networks, services and devices as the need arises
+ Drives periodic monitoring of audit logs in accordance with requirements, and reports findings and concerns for further analysis and action, inclusive of breach notification and initiation of incident response, in accordance with protocols and procedures
+ Delivers programs and processes to reduce information security risk and strengthen SCE's security posture
+ A material job duty of all positions within the Company is ensuring the protection of all its physical, financial and cybersecurity assets, and properly accessing and managing private customer data, proprietary information, confidential medical records, and other types of highly sensitive information and data with the highest standards of conduct and integrity.
Minimum Qualifications
+ Seven or more years of experience in information technology, information security and/or cybersecurity.
+ US Citizenship Required.
Preferred Qualifications
+ Seven (7) or more years of experience in a Cybersecurity, Information Security, or related Information Technology role.
+ Experience in SAP and IT/OT technologies and operations.
+ Experience developing cybersecurity strategy, policies, process, and metrics.
+ Experience with developing, implementing, enforcing, and monitoring security controls.
+ Experience in an Information Technology and Operational Technology environment.
+ Experience with regulatory compliance and/or audits.
+ Superb communication and collaboration skills, with the ability to work effectively with multi-functional teams.
+ Strong analytical and problem-solving abilities, with a keen attention to detail.
+ Bachelor’s degree or higher in Computer Science, Cybersecurity, Information Security, or related Information Technology field.
+ Possess one or more of the following Cybersecurity / Information Security certifications: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified Risk and Information Systems Control (CRISC), Global Information Assurance certification (GIAC), and/or any relevant certifications).
+ Knowledge or experience working within a NIST Cybersecurity Framework.
+ Knowledge or experience working with NERC/CIP standards.
Additional Information
+ This position’s work mode is hybrid. The employee will report to an SCE facility for a set number of days with the option to work remotely on the remaining days. Unless otherwise noted, employees are required to work and reside in the state of California. Further details of this work mode will be discussed at the interview stage. The work mode can be changed based on business needs.
+ Visit our Candidate Resource (https://www.edisoncareers.com/page/show/candidate-resources) page to get meaningful information related to benefits, perks, resources, testing information, hiring process, and more!
+ Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.
+ The primary work location for this position is Rosemead, CA. However, the successful candidate may also be asked to work for an extended amount of time at alternate work locations throughout the SCE service territory.
+ This position has been identified as a NERC/CIP impacted position - Prior to being hired, the successful candidate must pass a Personnel Risk Assessment (PRA) or Background Investigation. Once hired, the candidate must complete specified training prior to gaining un-escorted access to assigned work location and performing necessary job duties.
+ Relocation may apply to this position.
+ Candidates for this position must be legally authorized to work directly as employees for any employer in the United States without visa sponsorship.
+ US Citizenship required as part of Critical Infrastructure security protocols.
About Southern California Edison
The people at SCE don't just keep the lights on. Our mission is so much bigger. We’re fueling the kind of innovation that’s changing an entire industry, and quite possibly the planet. Join us and create a future with cleaner energy, while providing our customers with the safety and reliability they demand. At SCE, you’ll have a chance to grow personally and professionally, making a real impact in Southern California and around the world.
At SCE, we celebrate our differences. We are a proud Equal Opportunity Employer and will not discriminate based on race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status or any other protected status.
We are committed to ensuring that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodations at (833) 343-0727.
Become an SAP & Existing Technologies Governance, Cybersecurity Advisor at Southern California Edison (SCE) and build a better tomorrow. In this job, you’ll be part of the Cybersecurity Governance department within IT Organizational Unit. You will provide SAP and IT/OT systems/applications subject matter technical expertise. This critical role will develop, implement, enforce, and monitor security controls to mitigate risks and protect SCE assets and sensitive data. Provide technical, engineering, and/or risk management cybersecurity guidance. Collaborate with multi-functional teams to define security requirements and ensure compliance with industry standards and regulations. Stay informed about the latest cybersecurity threats, trends, and technologies to continuously improve security measures.
We are seeking a standout colleague with a consistent track record of demonstrating proactive security measures to join our elite Information Technology team. The responsibilities of this role will focus on:
+ SAP & Existing Technologies : Serve as the Lead, developing cybersecurity governance, strategy, policies, process, and metrics to protect SCE assets and sensitive data against external and internal threats.
+ Cybersecurity Governance: Establish and oversee processes that ensure cybersecurity policies, standards, and guidelines are consistently practiced. Engaging IT and Organizational Unit collaborators to assess and enforce cybersecurity policies, standards, and controls adherence. Providing technical expertise when cybersecurity risks are identified or when new cybersecurity policies, standards, and technical requirements are developed.
+ Cybersecurity Projects: Participate in projects and provide cybersecurity domain technical expertise when called upon to develop and enforce standards/policies, identify risks, and determine appropriate cybersecurity risk management approach.
+ Communications : Develop and presenting executive-level communication related to identified risks and the risk management strategy to IT and OU leadership.
As an SAP & Existing Technologies Governance, Cybersecurity Advisor , your work will help power our planet, reduce carbon emissions and create cleaner air for everyone. Are you ready to take on the challenge to help us build the future?
Responsibilities
+ Manages cyber security project delivery by ensuring the cyber security team delivers on success criteria
+ Delivers project reporting for assigned projects, conducts critical analysis of project status, potential risks, and continual process improvement
+ Coordinates and performs appropriate maintenance to ensure reliable and secure performance of the security systems, including applying security patches, implementing version upgrades, modifying, and improving services and performing ongoing operational management tasks
+ Contributes to an overall cyber security governance strategy, standards, and operational procedures
+ Ensures technology risk impacting the business is effectively identified, quantified, communicated and managed, including recommendations for resolution and identifying the root cause/key themes
+ Prepares and updates Plan of Actions & Milestones (POA&M) that identify security weaknesses and establishes milestones and compensates controls for remediating these weaknesses and tracking the progress and effectiveness of the remediation
+ Oversees the production of evidence to support internal and external audits
+ Provides Cyber Security and risk assessments for new networks, services and devices as the need arises
+ Drives periodic monitoring of audit logs in accordance with requirements, and reports findings and concerns for further analysis and action, inclusive of breach notification and initiation of incident response, in accordance with protocols and procedures
+ Delivers programs and processes to reduce information security risk and strengthen SCE's security posture
+ A material job duty of all positions within the Company is ensuring the protection of all its physical, financial and cybersecurity assets, and properly accessing and managing private customer data, proprietary information, confidential medical records, and other types of highly sensitive information and data with the highest standards of conduct and integrity.
Minimum Qualifications
+ Seven or more years of experience in information technology, information security and/or cybersecurity.
+ US Citizenship Required.
Preferred Qualifications
+ Seven (7) or more years of experience in a Cybersecurity, Information Security, or related Information Technology role.
+ Experience in SAP and IT/OT technologies and operations.
+ Experience developing cybersecurity strategy, policies, process, and metrics.
+ Experience with developing, implementing, enforcing, and monitoring security controls.
+ Experience in an Information Technology and Operational Technology environment.
+ Experience with regulatory compliance and/or audits.
+ Superb communication and collaboration skills, with the ability to work effectively with multi-functional teams.
+ Strong analytical and problem-solving abilities, with a keen attention to detail.
+ Bachelor’s degree or higher in Computer Science, Cybersecurity, Information Security, or related Information Technology field.
+ Possess one or more of the following Cybersecurity / Information Security certifications: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified Risk and Information Systems Control (CRISC), Global Information Assurance certification (GIAC), and/or any relevant certifications).
+ Knowledge or experience working within a NIST Cybersecurity Framework.
+ Knowledge or experience working with NERC/CIP standards.
Additional Information
+ This position’s work mode is hybrid. The employee will report to an SCE facility for a set number of days with the option to work remotely on the remaining days. Unless otherwise noted, employees are required to work and reside in the state of California. Further details of this work mode will be discussed at the interview stage. The work mode can be changed based on business needs.
+ Visit our Candidate Resource (https://www.edisoncareers.com/page/show/candidate-resources) page to get meaningful information related to benefits, perks, resources, testing information, hiring process, and more!
+ Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.
+ The primary work location for this position is Rosemead, CA. However, the successful candidate may also be asked to work for an extended amount of time at alternate work locations throughout the SCE service territory.
+ This position has been identified as a NERC/CIP impacted position - Prior to being hired, the successful candidate must pass a Personnel Risk Assessment (PRA) or Background Investigation. Once hired, the candidate must complete specified training prior to gaining un-escorted access to assigned work location and performing necessary job duties.
+ Relocation may apply to this position.
+ Candidates for this position must be legally authorized to work directly as employees for any employer in the United States without visa sponsorship.
+ US Citizenship required as part of Critical Infrastructure security protocols.
About Southern California Edison
The people at SCE don't just keep the lights on. Our mission is so much bigger. We’re fueling the kind of innovation that’s changing an entire industry, and quite possibly the planet. Join us and create a future with cleaner energy, while providing our customers with the safety and reliability they demand. At SCE, you’ll have a chance to grow personally and professionally, making a real impact in Southern California and around the world.
At SCE, we celebrate our differences. We are a proud Equal Opportunity Employer and will not discriminate based on race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status or any other protected status.
We are committed to ensuring that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodations at (833) 343-0727.
Source : Southern California Edison
