Job Description
Location: Bethpage, NY, US.
Company: PSEG.
Requisition: 74930.
PSEG Company: PSEG Long Island.
Salary Range: $ 109,100 - $ 181,500.
Incentive: PIP 15%.
Work Location Category: Remote Local.
Job Summary:
This position is an experienced, senior level, hands-on technical lead, performing OT security functions and maintaining systems, while providing technical guidance to the team. Manages Operational Technology security technologies such as antivirus, IDS/IPS, SIEM, endpoint detection & response, DLP, data encryption, proxies, and network access control, as well as OT security policies and procedures, and OT incident response. Provides technical expertise and support OT management and staff in OT Security threat risk assessments, development, testing and the implementation and operation of appropriate information security plans, procedures, and control techniques designed to prevent, minimize or quickly recover from OT cyber-attacks or other serious events.
Job Responsibilities
Responsibilities include:
- Leads and manages OT security technologies.
- Provides technical expertise in OT threat/risk assessments.
- Defines, designs, and implements strategies to protect against emerging OT threats using security tools.
- Responds to OT security incidents.
- Performs OT security reviews on new technologies and changes to existing technologies.
- Hands-on technical lead performing IT and OT security functions and maintaining systems, while providing technical guidance to the team.
- Manages information security technologies such as antivirus, IDS/IPS, SIEM, endpoint detection & response, DLP, data encryption, proxies, and network access control, as well as security policies and procedures, and incident response.
- Provides technical expertise and support to clients, IT management and staff in cybersecurity threat risk assessments, development, testing and the implementation and operation of appropriate information security plans, procedures, and control techniques designed to prevent, minimize or quickly recover from cyber-attacks or other serious events.
- Maintains a solid working knowledge of Information Security principles and practices.
Job Specific Qualifications:
Required:
- Bachelor’s degree in Computer Science, Information Systems, Cyber Security, Engineering or related technical field and 8 or more years of experience in information security or related IT or OT experience.
In lieu of a degree, 12 or more years of experience in information security or related IT or OT experience:
- Must be able to perform as a hands-on technical lead performing IT security functions and maintaining systems, while providing technical guidance to the team.
- Must demonstrate strong incident response and threat analysis experience, including SIEM technology. Proficient in defining processes and procedures for OT incident response.
- Must have experience following Cyber Security news and alerts, understands complex attack vectors and risks, and identifies and evaluates emergent Cyber Security threats and vulnerabilities. Experiencing recommending appropriate corrective actions for information security incidents and provides risk mitigation recommendations to management and team.
- Experience designing process flows to be implemented in OT security automation tools to automatically respond to threats quickly and effectively.
- Experience reviews complex OT architecture design diagrams and documents for new technologies and changes to existing technologies to determine risks and provide recommendations and mitigations.
- Must be able to works independently with little or no supervision.
- Must demonstrate strong verbal and written communication skills.
- Must demonstrate excellent leadership, technical teamwork, and interpersonal skills.
- Must be willing and able to work in strong team environment, constantly teaching and learning from other team members.
- Ability to foster working relationships with the team, IT & OT Management.
- Must demonstrate the ability to explain technical concepts to the business users in the context of business requirements.
- Must demonstrate technical experience including: information / data / network / computer security design, administration and/or assessment.
- Must have broad knowledge of information systems including Windows security, network security, systems development, communication networks, security software/hardware and operating systems.
- Must demonstrate experience with key information security technologies such as SIEM, firewalls, intrusion detection/prevention systems, vulnerability assessment, encryption, identity and access control systems, anti-malware, and security event analysis.
- Must demonstrate strong leadership and be results oriented.
- Must demonstrate excellent interpersonal, organizational, managerial, financial management and leadership skills.
- Must be able to communicate effectively with both technical and non-technical individuals.
Desired:
- Security certifications in incident response, cyber investigation, forensics, or threat hunting.
- Programming Experience in Python.
Please Note the Following:
- Approximately 5% Travel required.
- NERC CIP position, requires NERC CIP background investigation prior to start.
Minimum Years of Experience
- 8 years of experience.
Education
- Bachelors.