Cybersecurity Penetration Testing Manager [HYBRID]

Job Description
Join the Clean Energy Revolution

Become a Cybersecurity Penetration Testing Manager at Southern California Edison (SCE) and build a better tomorrow. In this role you will be responsible for developing and executing strategies to direct new processes, standards, and operational plans to improve SCE's penetration testing capability. Lead a team that will coordinate with Operating Units (OUs) across the company to ensure through testing that critical systems are securely configured before deployment. Additionally, your team will work to verify and help remediate risks, exceptions, and standards and establish monitoring capabilities to defend against and respond to cyber threats as they arise. Your contributions will directly protect critical energy infrastructure as SCE continues to modernize the grid through digital means.

As a Cybersecurity Penetration Testing Manager, your work will help power our planet, reduce carbon emissions and create cleaner air for everyone. Are you ready to take on the challenge to help us build the future?

A day in the life - Get ready to think big, work smart and shine bright!

• Manages and develops a team of cybersecurity subject matter experts, programs, and budgets to meet strategic goals and operational needs.
• Establishes strategic priorities, new processes, standards, and operational plan that ensure SCE's Cybersecurity Department provides value to OUs through agility, collaboration, and strategic alignment.
• Leads cybersecurity risk conversations and solutions with enterprise architecture, IT/Ops, Grid Services, and other teams within SCE. Establishes programs to reduce risk across the organization.
• Deliver and report key metrics to provide stakeholders situational awareness regarding risks, vulnerabilities, and vulnerability remediation timelines.
• Deconstruct complex security processes and solutions to identify relevant risk areas, potential control points, and provide sound recommendations for risk treatment.
• Ensures team takes ownership of assigned areas of responsibility and effectively manages workload to meet team deliverables and deadlines.

The essentials

• Five (5) or more years of experience performing or supervising team members in Cybersecurity Risk Management, Incident Response, Threat Analysis, Engineering, and/or development, maintenance, and implementation of enterprise cybersecurity policies and standards.
• Experience researching, discovering and properly mitigating cybersecurity vulnerabilities.
• Knowledge of cybersecurity tools used to detect vulnerabilities.

The preferred

• Bachelor's degree in engineering, computer science, information systems or related field.
• Seven (7) years of experience leading or managing teams.
• Seven (7) years of combined experience in managing cybersecurity programs.
• Analysis, design, and Implementation of industry-standard information security programs on mainframe, mid-range, network, and distributed computing environment.
• Experience in establishing and managing cyber penetration testing programs.
• Development of strategic information cybersecurity plans, policies, procedures, and controls, and extensive experience in regulatory compliance, up to and including, external and internal audits.
• Design and implementation of security systems, common services, governance, programs, administrative functions, and energy systems, as well familiarity with security in-depth practices in information classification, forensics investigations, incident response and tracking, and risk management and assessment methodologies and programs.
• Knowledge of Information Security best practice such as NIST 800 series, ISO 27000 series, ISA, or COBIT.
• Knowledge of change management processes such as Agile, ITIL, Six Sigma, or MSF.
• Ability to work well as a team leader, independently and proactively exercise initiative to accomplish assigned responsibilities and anticipate/solve problems.
• Strong oral and written communication skills including the ability to interact and communicate with all levels of personnel in a professional and tactful manner.
• Interpersonal and leadership skills to form and maintain effective teams consisting of members across a variety of departments and/or organizations.

You should know

• This position's work mode is hybrid. The employee will report to an SCE facility for a set number of days with the option to work remotely on the remaining days. Unless otherwise noted, employees are required to reside in the state of California. Further details of this work mode will be discussed at the interview stage. The work mode can be changed based on business needs.
• Visit our Candidate Resource page to get meaningful information related to benefits, perks, resources, testing information, hiring process, and more!
• This position has been identified as a NERC/CIP impacted position - Prior to being hired, the successful candidate must pass a Personnel Risk Assessment (PRA) or Background Investigation. Once hired, the candidate must complete specified training prior to gaining un-escorted access to assigned work location and performing necessary job duties.
• US Citizenship required as part of Critical Infrastructure security protocols.
• Relocation may apply to this position.

About Southern California Edison
The people at SCE don't just keep the lights on. Our mission is so much bigger. We're fueling the kind of innovation that's changing an entire industry, and quite possibly the planet. Join us and create a future with cleaner energy, while providing our customers with the safety and reliability they demand. At SCE, you'll have a chance to grow personally and professionally, making a real impact in Southern California and around the world.

At SCE, we celebrate our differences. We are a proud Equal Opportunity Employer and will not discriminate based on race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status or any other protected status.

We are committed to ensuring that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodations at (833) 343-0727.