Cybersecurity Vulnerability Management, Senior Specialist

findings with asset inventory and business risk, helping stakeholders make informed decisions. You agree that security must be proactive and adaptive. You recognize that keeping pace with modern threats means continuously learning and refining strategies while being adaptive and collaborating with the business. You have the ability to break down complex systems, communicate technical findings effectively, and lead program-level cybersecurity initiatives with confidence. The results you deliver are clear and actionable, providing a risk-based approach to cybersecurity vulnerability management. As au00a0 Cybersecurity Vulnerability Management, Senior Specialist, your work will help power our planet, reduce carbon emissions and create cleaner air for everyone. Are you ready to take on the challenge to help us build the future?

Responsibilities

• Performs security risk, vulnerability assessments, and business impact analysis for medium complexity information systems

• Carries out project reporting for assigned projects, monitoring project status, timeline and budgets

• Assists in the planning and implementation of current and future security domains including those which may introduce new service areas

• Adopts and follows security controls, processes, and procedures to manage risk across all information system environments (infrastructure, network, and applications) with the assistance of the application and infrastructure management teams

• Monitors technology risk, identifies root cause or key themes, recommends for resolution

• Investigates suspected attacks and manages security incidents. Uses forensics where appropriate

• Reviews and shapes the production of evidence to support internal and external audits

• Implements appropriate security measures for information systems and applications that control access to data, and prevents unauthorized modification, destruction, or disclosure of information

• Develops and maintains metrics, alerts, dashboards, and reports for security monitoring

• Maintains incident response plans and performs incident response activities as directed and in accordance with established procedures and guidelines and those of federal authorities

• A material job duty of all positions within the Company is ensuring the protection of all its physical, financial and cybersecurity assets, and properly accessing and managing private customer data, proprietary information, confidential medical records, and other types of highly sensitive information and data with the highest standards of conduct and integrity.

Minimum Qualifications

• Five or more years of experience in information technology, information security and/or cybersecurity.

• US Citizenship Required.

u00a0

Preferred Qualifications

• Bacheloru2019s degree or higher in Computer Science, Information Technology, or related field.

• Professional certifications such as: Certified Information Systems Security Professional (CISSP), Global Industrial Cyber Security Professional (GICSP), Certified Information Security Manager (CISM), Certified Secure Software Lifecycle Professional (CSSLP), GIAC Response and Industrial Defense (GRID), Certified Application Security Professional (CASP), Offensive Security Certified Professional (OSCP), Certified Web Application Defender (GWEB), and/or any other relevant certifications.

• Familiarity with security in industrial control systems (ICS), OT, data centers, or industrial environments.

• Two or more years of experience contributing to and creating program-level cybersecurity artifacts, such as RACI matrices, ConOps documents, process diagrams, or risk tracking frameworks.

• Strong documentation skills, including the ability to develop runbooks and technical playbooks.

• Two or more years of experience working with asset inventory platforms, SIEM, or SOAR tools like Splunk, ServiceNow SecOps, or Axonius.

• Relevant cybersecurity certifications, such as CISSP, GSEC, CEH, Security+, or OSCP.

• Knowledge of cybersecurity standards such as NIST Cybersecurity Framework (CSF) and CIS Controls.

u00a0

u00a0

Additional Information u00a0

• This positionu2019s work mode isu00a0hybrid.u00a0The employee will report to an SCE facility for a set number of days with the option to work remotely on the remaining days.u202f Unless otherwise noted, employees are required to work andu00a0reside in the state of California.u202f Further details of this work mode will be discussed at the interview stage.u00a0The work mode can be changed based on business needs.

• Visit ouru00a0 Candidate Resource u00a0page to get meaningful information related to benefits, perks, resources, testing information, hiring process, and more!

• Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.u00a0

• This position has been identified as a NERC/CIP impacted position - Prior to being hired, the successful candidate must pass a Personnel Risk Assessment (PRA) or Background Investigation. Once hired, the candidate must complete specified training prior to gaining un-escorted access to assigned work location and performing necessary job duties.

u00a0

About Southern California Edison

The people at SCE don't just keep the lights on. Our mission is so much bigger. Weu2019re fueling the kind of innovation thatu2019s changing an entire industry, and quite possibly the planet. Join us and create a future with cleaner energy, while providing our customers with the safety and reliability they demand. At SCE, youu2019ll have a chance to grow personally and professionally, making a real impact in Southern California and around the world.

u00a0

Southern California Edison is a proud Equal Opportunity Employer, including disability and protected veteran status. We are committed to ensuring that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodations at (833) 343-0727.