Mgr IT Security

Job Number: 667

External Description: Requisition ID:  65085 

Job Function/Category:  Information Technology 

Employment Type:  Exempt Full Time 

This is an exciting time to be joining PSEG. Our commitments, which include safety, integrity, customer focus, and diversity & inclusion, are the fabric of our culture and help drive the success of our business. We are fortunate to have an outstanding workforce of diverse and highly skilled talent who move us forward in our operational excellence journey.  PSEG has more than 12,000 employees who are dedicated to the communities we serve and embody our vision: People providing Safe, Reliable, Economic and Greener Energy. Job Summary

This position is responsible for overseeing the Cyber Security, Risk, and Compliance (CSR&C) for PSEG Long Island and PSEG Services. This includes overseeing the operations of information security technologies, compliance, vendor reviews, and architecture reviews. Provides leadership to CSR&C resources and engages with all levels of management to ensure that their information security needs are met. Focuses on staying current with PSEG Services and PSEG Long Island projects and ensures that security and compliance standards are followed. Works closely with CSR&C team to keep them up to date with any relevant PSEG Services and PSEG Long Island information. This position reports to the Senior Director Chief Information Security Officer and is located in Bethpage, New York. Travel to our General Office in Newark, New Jersey will be required as necessary.

Job Responsibilities

•Oversees day to day operations of PSEG Long Island and PSEG Services security tools, administrators, and information security projects and implementations. •Works with all levels of management to fulfill the specific security needs of their projects and efforts. •Reviews new technologies and changes to existing technologies to ensure proper information security and compliance. •Works closely with CSR&C Team to ensure conformance with PSEG information security policies, practices, and compliance requirements. •Manages cybersecurity for PSEG Services and PSEG Long Island Operational Technologies. •Provides leadership and technical guidance to team performing security functions. •Manages operations of information security technologies such as antivirus, IDS/IPS, SIEM, endpoint detection & response, DLP, data encryption, proxies, privileged account management, as well as security policies and procedures, and incident response. •Provides technical expertise and support to clients, IT management and staff in cybersecurity threat risk assessments, development, testing and the implementation and operation of appropriate information security plans, procedures, and control techniques designed to prevent, minimize or quickly recover from cyber-attacks or other serious events. •Reviews complex architecture design diagrams and documents for new technologies and changes to existing technologies to determine risks and provide recommendations and mitigations. •Triages tool issues in Long Island environment and routes concerns back to tool owner. •Assures compliance with various regulatory standards, such as Sarbanes Oxley, NERC CIP, and 10CFR 810. •Oversees vendor risk assessments and contract reviews. •Supports information security awareness campaigns for users. •Oversees vulnerability management and analysis/mitigation plans. •Ensures that standards created by CSR&C team are implemented and followed. •Documents business requirements, feasibility studies, and cost justification statements for proposed security solutions. •Contributes to and/or leads drafting of statements of work and/or RFPs to secure 3rd party services required to achieve business objectives. Leads the effort to select 3rd party services to execute projects and manages on-boarding and collaborative working relationship with selected Vendors.

Job Specific Qualifications

•Bachelor's degree in Computer Science, Information Systems, Cyber Security, Engineering, or related discipline i.e. STEM. •CISSP or equivalent security certification •At least 8 years of experience in cybersecurity field. •Technical experience includes: information / data / network / computer security design, administration and/or assessment. •Broad knowledge of information systems including Windows security, network security, systems development, communication networks, security software/hardware and operating systems. •Experience with key information security technologies such as SIEM, firewalls, intrusion detection/prevention systems, vulnerability assessment, encryption, identity and access control systems, anti-malware, and security event analysis. •Experience with security risk assessment of cloud based solutions. •Ability to foster working relationships with the team, IT Management and Client departments. •Performs related duties as assigned or requested. •Excellent oral and written communication skills. •Excellent leadership, technical teamwork, and interpersonal skills. •Willing to work in strong team environment, constantly teaching and learning from other team members. •Ability to explain technical concepts to the business users in the context of business requirements.
Desired:
•Experience with the implementation of NIST Cyber Security Framework (CSF), and North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) •Previous experience of IT/OT technologies and utility industry experience preferred with an awareness of utility specific security threats.

Disclaimer

Certain positions at the Company may require you to have access to Part 810-Controlled Information. Under the law, the Company is limited in who it can share this information with and in certain circumstances it is necessary to obtain specific authorization before the Company can share this information. Accordingly, if the position does require access to this information, you must complete a 10 CFR Part 810 Export Control Compliance Nationality Request Form, a copy of which will be provided to you by Talent Acquisition if an offer is made. If there is a need for specific authorization, due to the time it takes to obtain authorization from the government, we will likely not be able to further proceed with an offer.As an employee of PSE&G or PSEG Long Island, you should be aware that during storm restoration efforts, you may be required to perform functions outside of your routine duties and on a schedule that may be different from normal operations.

This site ( http://www.pseg.com ) is strictly for candidates who are not currently PSEG employees. PSEG employees must apply for jobs internally through empower which can be accessed through the mypseg homepage by clicking on the employee center tab, then under the empower header, choose careers.

Business needs may cause PSEG to cancel or delay filling position at any time during the selection process.

Certain positions at the Company may require you to have access to Part 810-Controlled Information.  Under the law, the Company is limited in who it can share this information with and in certain circumstances it is necessary to obtain specific authorization before the Company can share this information.  Accordingly, if the position does require access to this information, you must complete a 10 CFR Part 810 Export Control Compliance Nationality Request Form, a copy of which will be provided to you by Talent Acquisition if an offer is made.  If there is a need for specific authorization, due to the time it takes to obtain authorization from the government, we will likely not be able to further proceed with an offer.

Public Service Enterprise Group (PSEG) is an equal opportunity employer, dedicated to a policy of non-discrimination in employment, including the hiring process, based on any legal protected characteristic. Legally protected characteristics included, race, color, religion, national origin, sex, age, marital status, sexual orientation, disability, or veteran status or any other characteristic protected by federal, state, or local law in locations where PSEG employs individuals.

Need to request an accommodation?

If you have a disability and need assistance submitting your resume, applying for a position or registering for a test, please call 973-430-3845. Any information provided regarding a disability will be kept strictly confidential and will not be shared with anyone involved in making a hiring decision.

Nearest Major Market: Long Island
Nearest Secondary Market: New York CIty
Job Segment: Engineer, Law, Information Systems, Drafting, Computer Science, Engineering, Legal, Technology

Job Number: 65085

Community / Marketing Title: Mgr IT Security

Location_formattedLocationLong: Bethpage, New York US