Jobs · Information Technology · New York

Manager - Cyber Operations

Avangrid · Rochester, New York Metropolitan Area · 2 days ago
On-siteInformation Technology$128k–$160k/yrFull-time

About the role

The Manager Cyber Operations primary function is to manage operational activities related to the execution of the Avangrid Networks information security roadmap and manage the day-to-day workload of the Avangrid Networks security/NERC operations team. This position provides leadership and support across Avangrid Networks to balance real world risks with business drivers such as reliability, speed, agility, flexibility, and performance. The role assures maintenance and support of infrastructure assets across Avangrid Networks.

Responsibilities

  • Provide direct leadership and support across the Avangrid Networks business to support NERC operations and Protection Systems.
  • Contribute to the design, implementation, operation, and evolution of solutions and strategies for Avangrid Networks Operational Technologies operating companies progress for Grid Digitalization.
  • Be responsible for managing day to day aspects of Operational Smart Grids NERC operations and Protection Systems Applications.
  • Ensure security services and solutions are operated in compliance with industry best practices as well as applicable privacy and legal/regulatory requirements including, GDPR, SOX, CEII, and NERCFollow applicable federal agency guidance on security operations practices relevant to Grid Modernization and assess impact on AVANGRID Networks business model
  • Develop reports, dashboards, and metrics for cyber operations and present to OSG Management
  • Enhance NERC operations team with advanced techniques and technologies such as automation of manual related efforts
  • Lead, develop, and maintain, Operations Security policies, rules standards, and guidelines
  • Oversee employees that are completing cyber vulnerability assessments, SPR’s, OT NOW and IT NOW workflows that ensure NERC/CIP
  • Oversee employees managing Protection Systems applications to ensure the safety of the Operational Smart Grids IT and OT systems
  • Ensure that network infrastructure such as firewalls, routers, and switches are implemented operated in compliance with documented policies and procedures
  • Ensure that system security controls such as system hardening, vulnerability/patch management, account management, system baselines, change control, and mobile/transient devices implemented operated in compliance with documented policies and procedures
  • Understand data analytics and associated technologies
  • Define, manage and lead our data initiatives to blend our cybersecurity data into a date lake that can produce useful insights and reports
  • Improve current vulnerability management workstream while managing internal/external relationships, communicating to impacted areas, creating/maintaining dashboards and automating/coordinating deployments

Requirements

  • Education & Experience Required: Master’s Degree in Engineering, Computer Science, or technical related degree with a minimum of 4+ years’ experience in IT/OT, NERC/CIP and/or Cybersecurity; orBachelor’s Degree in Engineering, Computer Science, or technical related degree with a minimum of 6-8 years’ experience in IT/OT, NERC/CIP and/or CybersecurityAssociate Degree in Engineering, Computer Science, or technical related degree with a minimum of 8+ years’ experience in IT/OT, NERC/CIP and/or CybersecurityNo Degree minimum of 15+ years’ experience in IT/OT, NERC/CIP and/or Cybersecurity
  • Experience with key security process and procedures (system hardening, patch management, vulnerability management, supplier management)
  • Supervisory / Manager experience over staff, projects, or contractors
  • 2 + Years Data Center and OT InfrastructureExperience preferred of 5+ years in Business Decision Support including Cybersecurity Operations and Performance/Metrics reporting.
  • Experience preferred with Access Controls systems and solutions (SSO, AD, TACACS, MFA, cloud based)
  • Experience preferred with a variety of information and network security infrastructure and tools (IDS/IPS, firewall, WAF, configuration management)

Competencies

  • Strong understanding of applicable NERC/CIP Standards
  • Strong communication written and verbal skills related to cybersecurity technology
  • Strong system engineering and advanced networking
  • Strong understanding of current and future state of cyberspace
  • A team-focused mentality with the proven ability to work effectively with diverse stakeholders
  • An ability to effectively influence others to modify their opinions, plans, or behaviors
  • Proactive attitude, seeking for improvement opportunities which can positively impact the security posture and the business
  • An ability to work extremely well under pressure while maintaining a professional image and approach
  • Decision-making capabilities, with an ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
  • Able to lead projects

Desired Skills/Abilities

  • Ability to obtain security clearance at secret level
  • Knowledge of federal government cybersecurity activities and practices
  • Experience in federal or state regulatory environments
  • Experience in federal cybersecurity agencies and environments
  • Experience in a utility environment
  • Certified Information Systems Security Professional (CISSP)
  • Experience in federal or state regulatory environments
  • Experience with NERC-CIP
  • Experience in a utility environment

Similar jobs