Required Qualifications
- Bachelor's Degree in Bachelor's Degree in Computer Science, Cybersecurity, or related fields
- 8 years’ experience in Information Security, Cyber Security, or relevant roles
- 3+ years in managing the Information Security functions of an organization with a complex Information Technology environment
- Technical Skills and Knowledge:
- Threat Intelligence: Understanding and analyzing threat data to identify potential risks and vulnerabilities
- Incident Response: Managing and coordinating responses to cybersecurity incidents, including detection, containment, eradication, and recovery, tailoring incident response strategies to address the unique challenges of energy systems
- Security Information and Event Management (SIEM): Proficient in SIEM systems to monitor and analyze security events
- Network Security: Knowledge of network protocols, firewalls, intrusion detection/prevention systems (IDS/IPS), and network segmentation
- Behavior Analytics: Utilizing user and entity behavior analytics (UEBA) to detect anomalies and potential threats
- Critical Infrastructure Protection: Implementing measures to protect critical infrastructure from cyber threats
- Physical Security Integration: Integrating cybersecurity measures with physical security to protect energy facilities
- Cybersecurity Frameworks and Standards: Familiarity with frameworks such as NIST, ISO 27001, CIS Controls and regulations such as NERC CIP, and standards like IEC 62443
- Emerging Threats in Energy: Staying updated on the latest threats and vulnerabilities targeting the energy sector
- Business Continuity and Disaster Recovery: Developing and implementing plans to ensure business continuity and disaster recover
- People and Vendor Leadership:
- Demonstrated skills to manage a diverse technical workforce spread across multiple locations involving the full range of technology platforms and solutions as well as vendor personnel
- Ability to lead, manage and coach staff; Personal drive and energy level to achieve superior results individually and through others; Proven track record of successful team leadership and development
- Ability to manage the performance of outsourced vendors and Managed Services agreements
- Cross-Functional Collaboration:
- Ability to participate in co-operative working relationships including knowledge sharing and partnership in achieving solutions within and across business or operational functions
Preferred Qualifications
- 3+ years in experience in the energy industry
- Master's Degree in Cybersecurity or IT Management
- Professional certifications in Information Security (CISSP, CISM, CISA) strongly encouraged
- Technical certifications (operations i.e. GCIA, GCIH, CEH, SSCP, endpoint protection i.e. GCTI, CCIP, CCTA, defense i.e. GSEC, GCED, and GISF or GIAC, and in other relevant areas) is a plus