Job Summary: 

• Provide professional OT and IT/OT converged cybersecurity consulting services for internal and external clients
• Lead business development activity to establish and convert a pipeline of cybersecurity advisory services in EMEA
• Suggest, implement, and maintain technology solutions based on proven security architectures
• Participate in the design, documentation, implementation, and maintenance of complex networks
• Understand the process for handling complex problems during the  design, installation, and maintenance of ICS and IoT elements and networks
• Understand the functionality of network switches, routers, firewalls, virtualized servers, converged platforms, client workstations, and various cybersecurity platforms and tools
• Support projects to achieve or surpass client expectations for quality, schedule, and budget
• Participate in project decisions and client interactions regarding technical approaches, cost, and scheduling performance
• Interact with clients, business groups, vendors, and subcontractors.
• Travel to project sites to support cyber-related efforts
• Manage and maintain converged platforms, virtualization, networks, security platforms, and various other OT technologies

Skills on Resume: 

• OT/IT Cybersecurity (Hard Skills)
• Business Development (Soft Skills)
• Security Architecture (Hard Skills)
• Network Design (Hard Skills)
• ICS/IoT Problem-Solving (Hard Skills)
• Network & Security Tools (Hard Skills)
• Client Management (Soft Skills)
• Project Management (Soft Skills)

Job Summary: 

• Lead the Security Compliance team to ensure annual PCI and SOX compliance
• Ensure IT General Controls are consistently followed
• Proactively communicate compliance expectations to peers and IT team members
• Work collaboratively with internal and external audit teams on compliance reviews/audits
• Develop a management control program that proactively identifies threats to the organization.
• Conduct periodic risk assessment reviews, cybersecurity inspections, etc.
• Formulate management’s response to audit and regulatory cybersecurity findings and follow up periodically to ensure that appropriate controls and procedures are implemented.
• Implement and drive the cybersecurity awareness program for clients.
• Oversee, actively test, and refine the incident response plan.
• Ensure that the incident response team is in place, prepared, and ready to act
• Declare incidents, coordinate and assist in the investigation of incidents, assist in the recovery from attacks, coordinate with law enforcement agencies, etc.
• Negotiate and manage contracts for IT cybersecurity software, hardware, and consulting services.
• Proactively manage and report vendor performance metrics including service levels.

Skills on Resume: 

• Compliance Leadership (Soft Skills)
• IT Controls (Hard Skills)
• Compliance Communication (Soft Skills)
• Audit Collaboration (Soft Skills)
• Risk Management (Hard Skills)
• Cybersecurity Awareness (Soft Skills)
• Incident Response (Hard Skills)
• Vendor Management (Soft Skills)

Job Summary: 

• Lead the vulnerability management and threat-hunting team
• Follow relevant trends surrounding practices involving cyber security analysis
• Establish industry cyber leadership and law enforcement relationships
• Establish business-relevant cyber threat intelligence sources
• Assist Security Operations Center (SOC) personnel with advanced threat identification and incident response actions
• Communicate key cyber security concepts and findings with IT and company leadership
• Develop cyber security threat mitigation methods
• Coordinate external penetration testing activities
• Provide vulnerability and threat metrics for technical and business leadership stakeholders
• Enhance the organization’s ability to detect, prevent, and mitigate all security threats
• Create a visionary architecture road map and strategy to align business and technology

Skills on Resume: 

• Vulnerability Management Leadership (Soft Skills)
• Cybersecurity Trend Analysis (Hard Skills)
• Industry Relationships (Soft Skills)
• Threat Intelligence Development (Hard Skills)
• Threat Identification Support (Soft Skills)
• Cybersecurity Communication (Soft Skills)
• Threat Mitigation (Hard Skills)
• Penetration Testing Coordination (Hard Skills)

Job Summary: 

• Develop metrics that measure and communicate the health and risk of the company's cyber capability.
• Develop the ability to track month over month-over-month score of the systems security toolkit to help prioritize to advance security interests.
• Act as the key driver of the InfoSec Data Strategy to set and communicate objectives and ensure teams conform to established standards, policies, and guidelines.
• Champion cyber data vision and roadmaps for the suite of capabilities within strategic initiatives and lead reuse, buy, and build decisions.
• Report to senior management on implications of trends, risk, strategy, and regulatory requirements affecting InfoSec.
• Collaborate with business leaders to determine how to best use technology to enable their growth and success.
• Evaluate potential security breaches, coordinate response, and recommend corrective actions.
• Lead staff as assigned in the performance of the job duties.
• Define and report on information security metrics - operational metrics and metrics to assess alignment with policies
• Ensure accomplishment of all objectives in accordance with 3D policies, procedures, and strategic direction, as well as regulatory standards governing 3D.
• Maintain current knowledge of industry and regulatory trends and developments for enterprise technology.

Skills on Resume: 

• Cyber Risk Metrics Development (Hard Skills)
• Security Toolkit Tracking (Hard Skills)
• InfoSec Data Strategy (Soft Skills)
• Cyber Data Vision and Roadmaps (Soft Skills)
• Senior Management Reporting (Soft Skills)
• Technology Enablement Collaboration (Soft Skills)
• Security Breach Evaluation (Hard Skills)
• Information Security Metrics (Hard Skills)

Job Summary: 

• Develop, implement, and monitor a strategic, comprehensive enterprise information security and IT risk management program integrating business priorities and risks into the strategy.
• Demonstrate in-depth industry knowledge and cyber best practices when defining the company’s security initiatives.
• Use security assessments to evaluate the processes, procedures, and tools used to review and test information system controls and security across enterprise systems and third-party supplier IT systems.
• Evaluate the adequacy of IT security controls to verify compliance with corporate standards and regulatory compliance
• Create, plan, and execute information security training and awareness programs.
• Evaluate emerging technologies, industry trends, and innovations and assess potential impacts on the company's systems.
• Audit applications and infrastructure to predict vulnerabilities and mitigate them before they become incidents.
• Mature and socialize a robust incident response plan to guide security incidents of all sizes including partners, decision criteria, communication protocols, and escalation paths.
• Report program status through an intentionally designed set of standard metrics.
• Continually evolve information security policies, standards, and procedures and ensure compliance by all corporate staff.
• Collaborate with the IT team and other cross-functional partners to guide technology decisions consistent with good security practices.
• Partner with the Enterprise Risk team to evolve disaster recovery and corporate crisis response.

Skills on Resume: 

• Information Security Program Management (Hard Skills)
• Cybersecurity Best Practices (Hard Skills)
• Security Assessment and Testing (Hard Skills)
• IT Security Controls Evaluation (Hard Skills)
• Security Training (Soft Skills)
• Emerging Technologies Evaluation (Hard Skills)
• Incident Response Planning (Hard Skills)
• Security Policy and Compliance (Hard Skills)

Job Summary: 

• Develop the long-term strategy, execute the strategy, and manage the teams responsible for Vulnerability Management, Pen Testing, and Red Team missions
• Ensure the fusion of threat intelligence drives the prioritization of vulnerabilities and overall remediation efforts
• Determine the appropriate schedule and mix of external and internal vulnerability scans, manual security testing, and red team exercises
• Develop close working relationships with technology owners and leaders to ensure the missions have the support, access, and permissions to conduct test operations
• Provide quality control and oversight for testing reports, presentations, and brief-outs
• Develop and present clear business recommendations to address vulnerability findings
• Provide the direction for Companies' Privacy, data, and cybersecurity protection, and oversee Technology governance and policies.
• Develop Company security strategy, security awareness programs, security architecture, and security incident response.
• Identify project roadblocks and work with management and team members to resolve them.
• Act as primary contact for security-related anomalies and provide information security guidance as a subject matter expert.
• Responsible for the technical oversight of the implementation and operation of cybersecurity and information security tools, technologies, solutions, and methodologies.
• Coordinate bid process for all projects requiring security infrastructure and participate in the purchasing process.
• Work with management, engineers, and technicians to set project objectives, priorities, and deliverables.
• Align to the NIST Cybersecurity framework as it relates to direct departmental responsibilities.

Skills on Resume: 

• Vulnerability Management (Soft Skills)
• Threat Intelligence (Hard Skills)
• Security Testing (Hard Skills)
• Relationship Building (Soft Skills)
• Quality Control (Hard Skills)
• Business Recommendations (Soft Skills)
• Cybersecurity Strategy (Hard Skills)
• Security Tools Oversight (Hard Skills)

Job Summary: 

• Provide the direction for 3D’s data and cybersecurity protection and oversee technology governance and policies.
• Develop cybersecurity strategy, awareness programs, architecture, and incident response.
• Provide strategic risk guidance for IT projects, including evaluation and recommendation of technical controls.
• Educate IT and 3D leaders on appropriate cybersecurity risk and mitigation strategies.
• Collaborate with IT and 3D compliance teams, and coordinate the IT component of both internal and external audits to ensure cyber security programs comply with relevant laws, regulations, and policies.
• Develop, maintain, and publish up-to-date security policies, standards, and guidelines.
• Oversee training and dissemination of security policies and practices.
• Evaluate new cybersecurity threats and IT trends and develop effective security controls.
• Oversee the development of security awareness programs.
• Develop and oversee effective disaster recovery policies and standards to align with company business continuity management program goals.
• Coordinate development of implementation plans and procedures to ensure business-critical services are recovered in the event of disasters or other incidents, and provide direction, support, and in-house consulting in these areas.

Skills on Resume: 

• Cybersecurity Governance (Hard Skills)
• Strategy Development (Hard Skills)
• IT Risk Guidance (Soft Skills)
• Cybersecurity Education (Soft Skills)
• Compliance Coordination (Soft Skills)
• Policy Development (Hard Skills)
• Awareness Programs (Soft Skills)
• Disaster Recovery (Hard Skills)

Job Summary: 

• Work with WVPA’s staff and Members on technology compliance to North American Electric Corporation (NERC) Critical Infrastructure Protection (CIP) cyber security standards and industry best practices
• Represent the company with electric industry committees and teams for cybersecurity and CIP activities in conjunction with compliance and other technology team members.
• Represent the company on state and local cyber security committees and groups as assigned.
• Lead cyber security policy, procedure, and training development for improving the overall cyber posture
• Participate on internal company committees related to risk, cyber security, and compliance.
• Assist in the creation of documented processes and procedures for the testing, deployment, management, and secure retirement of business and operational technology solutions.
• Work with Technical Services leadership in the establishment and maintenance of a project management methodology for the Technical Services department.
• Create a program for mock technology cyber security audits and develop remediation plans for any deficiencies found.
• Work with the business, operations, and technology teams on the selection of new or replacement technology for the organization and membership.
• Define cyber security training for technology staff members, business, and operational users to ensure compliance with NERC CIP and industry best practice security standards.
• Develop, test, and maintain business continuity plans for the company power.
• Create templates and a framework WVPA members can use to develop their business continuity plans.
• Participates with the Technical Services leadership team in researching, planning, and implementing major strategic initiatives of the organization.
• Assist membership with technology and cyber security projects, processes, and procedures.

Skills on Resume: 

• NERC CIP Compliance (Hard Skills)
• Industry Representation (Soft Skills)
• Cybersecurity Policy Development (Hard Skills)
• Risk and Compliance Participation (Soft Skills)
• Technology Lifecycle Management (Hard Skills)
• Project Management Methodology (Hard Skills)
• Cybersecurity Audit Programs (Hard Skills)
• Business Continuity Planning (Hard Skills)

Job Summary: 

• Lead a global Cybersecurity team in identifying, detecting, and responding to cyber threats to the organization
• Drive collaboration with IT Operations and technology leadership from business units in efforts to secure the company together
• Oversee incident response engagements, providing both technical guidance and executive updates
• Work with various business units and technical disciplines in a security consultant role for cyber direction across enterprise-wide projects
• Manage an offshore Security Operations Center (SOC), uplifting their capability and integrating them with the broader team
• Develop new detective, forensic, threat-hunting, and investigative capabilities using current technical solutions
• Serve as a driving force for automation, continuous learning, and operational best practices
• Participate in business unit steering committees, presenting roadmap and program overviews to CTOs and technology leadership
• Stay abreast of the security industry threat landscape and brief the management team on current intelligence
• Develop reporting metrics to communicate the efficacy of tools and programs
• Provide thought leadership within Cybersecurity, guiding the team in both traditional and innovative ways to detect and respond to security incidents

Skills on Resume: 

• Cybersecurity Leadership (Soft Skills)
• Cross-functional Collaboration (Soft Skills)
• Incident Response Oversight (Hard Skills)
• Security Consulting (Soft Skills)
• SOC Management (Hard Skills)
• Threat Detection and Investigation (Hard Skills)
• Automation and Best Practices (Hard Skills)
• Security Intelligence and Reporting (Hard Skills)