CORE COMPETENCIES & ESSENTIAL DUTIES Responsible for overseeing governance of cyber programs and cyber risk management for the organization. Specific responsibilities include: providing policy and procedural technical guidance for application security and cyber compliance initiatives for projects, maintaining and applying compliance controls, overseeing risk management, leading risk assessments and audits, conducting investigations, implementing risk mitigation strategies, and driving the implementation of enterprise-wide cybersecurity policies, standards, guidelines, and procedures. Consistent and reliable attendance is required.
Provides uniform and standard approach for IT and OT governance, risk management, and compliance, driving consistency across the company. Creates program metrics to measure success.
Provides governance, risk, and compliance leadership to project managers, analysts, and engineers.
Identifies current and emergent threats and risks. Conducts risk assessments using approved cybersecurity risk assessment methods to model and track threats and build mitigation strategies.
Serves as lead for assessing and managing LES security posture using approved cybersecurity frameworks such as but not limited to CIS 18, NIST, and NERC/CIP.
Recommends, develops, implements, and updates policies and processes for area of assignment based on program analysis, customer feedback, survey results, etc., and creates associated training plans as required.
Audits change management processes, practices, and guidelines and generates improvement recommendations based upon audit findings.
Customer Focus – The successful candidate puts customers, both internal and external, at the center of business decisions in order to identify and respond to current and future customer needs. Builds customer confidence, is committed to increasing customer satisfaction, sets achievable customer expectations, assumes responsibility for solving customer problems, ensures commitments to customers are met, solicits opinions and ideas from customers, responds to internal customers.
Initiative – Seeking a candidate who takes action on their own without being prompted; handles problems independently; able to resolve issues without relying on extensive help from others; does more than is expected or asked.
Communication – The ideal candidate expresses ideas and information in a clear and concise manner whether verbally, written, or other means; tailors message to fit the interests and needs of the audience; delivers information in a manner that is interesting and compelling.
Continuous Performance Improvement - The individual continues to identify opportunities and strategies to improve work processes, products, or services.
Critical and Analytical Thinking - A person in this position uses logical thought processes to analyze information and draw conclusions. Skilled at finding logical flaws in arguments and plans; identifies problems and solutions that others might miss; provides detailed insight and constructive criticism into problems and complex situations.
EDUCATION and/or EXPERIENCE
Bachelor’s degree in related field, and
Five years of related work experience in area of assignment, or
An equivalent combination of education and experience sufficient to successfully perform the essential duties of the job.