Manager Security Operations & Cyber Assurance PSEG LI

Job Summary

The leader of Security Operations and Response leads the development, implementation, and ongoing coordination of an enterprise-wide cyber security operations and response program including Security Monitoring, Detection, Sec Ops Tools & Automation, Vulnerability Management, Cyber Threat Monitoring, Incident Response, Cyber Resiliency, Threat Intel, & Cyber Threat Hunting. Coordinates among all lines of business and service departments, as well as external risk organizations (Law Enforcement, E-ISAC, and other cyber industry trade organizations) and peer energy companies, as PSEG’s senior leader responsible for Security Operations and Response which includes enhance security operations and response capabilities (e.g. people, process, & technologies). In addition, this lead is responsible for defining and aligning security policies, strategy, standards and govern day to day security operations which includes oversight of a managed service provider for SOC services as well as maintaining an Incident Response program to ensure that the appropriate responses to various types of cybersecurity incidents. This individual, during a cyber incident may be designated as lead cyber incident commander and responsible for the containment, eradication, and recovery (as applicable) from an incident. The portfolio included in this security pillar includes multiple discrete projects/enhancements per year for security capabilities within this remit.  The leader of Security Operations & Cyber Assurance engages across the entire IT, OT, and managed services. This individual is responsible to ensure appropriate maturity of controls within their remit.

Job Responsibilities

• Direct, coach and counsel Cyber resources (internal and external) on SecOps technology consisting of  Security Monitoring, Detection, Sec Ops Tools & Automation, Cyber Threat Monitoring, Incident Response, Cyber Resiliency, Threat Intel, & Cyber Hunting for both IT and OT functions in all facets of Security Operations and Response service delivery.  Ensure that the Security Operations service delivery aligns with the corporate strategic Information Technology plan, inclusive of development of security operations standards, capacity planning, lifecycle management plans, solution selection, and partner management. Ensure scalability of Security Operations and Response function & tools for hardware and software to meet cyclical business needs & risk tolerance.
• Develop and implement best practices for Security Operation and Response for PSEG.  Participate in peer group meetings and benchmark Security Operations and Response objectives and tools with leading companies inside and outside the industry. Work with professional security operations and response associations, and consultants as required, to identify best practices
• Interacts with Product, Technology teams, and various contracted IT resources. Operationalizing threat models to protect against existing and emerging threats.
• Builds relationships with technology and business teams across the company. Interacts routinely with vendors, service providers, consultants/advisors, law enforcement agencies and professional organizations. Ensure that cyber operations requirements are identified, well defined, properly documented and approved by appropriate stakeholders.
• Develop and manage SecOps capital and O&M budgets to meet business needs.  Provide leadership in the identification of optimal O&M and capital allocations, inclusive of opportunities to reduce expenditures while transforming the way PSEG Security Operations and Response conducts its business.  Lead and/or participate in business case development.
• Evaluate performance, perform career development, coaching and counseling for SecOps staff.
   

Job Specific Qualifications

Required

• Bachelors degree and 10 years of relevant cyber security experience
• In lieu of a degree 14 years of cyber experience
• Demonstrated Strong leadership and influence skills
• Demonstrated strong presentation skills with the ability to present to all levels of management and executive leadership
• Experience working in and leading a 24x7x365 Security operations center
• Experience managing incident response processes for both large and small scale incidents.
• Experience with red team and table top exercises
• Prior experience with vulnerability and compliance management.
• Experience with penetration testing including scoping, executing and reporting. 
• Excellent teamwork, facilitation, relationship building, and negotiation skills
• Ability to maintain positive working relationships both leading and as part of a team
• Must demonstrate effective time management skills and able to multitask effectively
• Ability to to communicate effectively with both technical and non-technical individuals

Desired

• Industry Cyber Security certifications (e.g. GIAC, CISSP, etc…)
• Masters in Business, Engineering, or related fields
• Experience in Electric or Gas Utility or Power Generation industry
• Broad knowledge of IT and related control environments
• Experience with CMMI

Minimum Years of Experience

Education