Business Information Security Liaison
Job Responsibilities
- Serve as a trusted advisor to our stakeholders, by designing security solutions, for better security and business enablement.
- Design and implement guardrails to secure modern networks and infrastructure with a variety of vendors and device types.
- Continuously seek opportunities to enhance the security posture of HR infrastructure and technologies, including but not limited to: Identity & Access Management (IAM), Cloud Security Posture Management (CSPM), Data Loss Prevention (DLP).
- Align forward thinking strategy with business goals to integrate and raise the bar on security practices and solutions.
- Assist in the ongoing development of Southern Company’s security architecture – identify areas of opportunity, research alternatives, and recommend solutions.
- Develop creative solutions to meet business needs while ensuring appropriate security controls and best practices are implemented.
- Partner with others to identify and resolve information security issues.
- Plan, coordinate, and lead information security projects.
- Help customers understand and apply information security concepts, processes, and technologies.
- Maintain current knowledge of information security and cybersecurity concepts, technologies, and practices.
- Mentor others to strengthen cybersecurity principles and best practices to outside operational areas.
- Create an environment that fosters accountability, innovation, and engagement at all levels.
Requirements and Qualifications
- Minimum working knowledge of information technology and cloud network design and practice.
- Hands-on experience designing, architecting, and implementing various information security tools/products such as PKI, Full Packet Capture, Next-Generation Firewalls, HSM’s, SIEM, Multi-Factor Authentication, IDS/IPS, Database Encryption, Privileged Identity Management, Cloud Posture Management, etc.
- Competency in APIs (Rest, Graph), VMware, and/or cloud environments.
- Experience promoting security as a business enablement function using influence, metrics, documentation, strong verbal communication, and presentation skills.
- Working knowledge of cloud and traditional security network architectures.
- Able to lead a project from concept through implementation and anticipate potential problems.
- Able to perform detailed information security risk assessments and recommend mitigating controls.
- Must pass NERC CIP & Insider Threat Protection background checks.
About Southern Company
We are a leading energy provider serving 9 million customers across the Southeast and beyond through our family of companies. Providing clean, safe, reliable and affordable energy with excellent service is our mission. The company has electric operating companies in three states, natural gas distribution companies in four states, a competitive generation company, a leading distributed energy solutions provider with national capabilities, a fiber optics network and telecommunications services. Through an industry-leading commitment to innovation, resilience and sustainability, we are taking action to meet customers' and communities' needs while advancing our goal of net-zero greenhouse gas emissions by 2050. Our uncompromising values ensure we put the needs of those we serve at the center of everything we do and are the key to our sustained success. We are transforming energy into economic, environmental and social progress for tomorrow. Our corporate culture has been recognized by a variety of organizations, earning the company awards and recognitions that reflect Our Values and dedication to service. To learn more, visit www.southerncompany.com. Southern Company invests in the well-being of its employees and their families through a comprehensive total rewards strategy that includes competitive base salary, annual incentive awards for eligible employees and health, welfare and retirement benefits designed to support physical, financial, and emotional/social well-being. This position may also be eligible for additional compensation, such as an incentive program, with the amount of any bonus/awards subject to the terms and conditions of the applicable incentive plan(s).