Responsible for researching, developing, and implementing information security programs for all the GPL information systems including critical systems. Provide leadership and direction for information security initiatives that support and protect the GPL business objectives and requirements. Responsible for identifying internal and external information security risks and providing a solution that eliminates/mitigate the identified risks.
Schedule: This is an on-site position. (Remote work is NOT available for this role.)
Target Hiring Range: $102,000 - $137,000/yr. depending on qualifications and experience.
Essential Duties and Responsibilities include the following. Other duties may be assigned.
Researching NIST, CIS, and other well-established national and international security-focused organizations to come up with an initial (subsequent) security framework (changes to the framework) that support and protect the GPL business objectives and requirements.
Developing security policies and procedures that comply with chosen security framework.
Review system/application architecture from a security aspect.
Maintain a role as a technical expert for information security-related activities.
Conduct a periodic security assessment of all GPL systems.
Periodic monitoring of security-related logs and events.
Manage the daily review and identification of cybersecurity vulnerabilities, Indicators of Compromise, and recommend solutions from E-ISAC, M-ISAC, etc., to secure, repair or mitigate those vulnerabilities.
Developing and delivering security-related training.
Interpret, guide, and lead in the development of the implementation of cybersecurity requirements in standards, policies, protocols, or operating guidelines to maintain compliance.
Participate in internal and external audits related to cybersecurity.
Minimum Qualifications
4-year college degree in Electrical Engineering or Computer Science
7 years of experience building, designing, and managing an electric utility cyberinfrastructure
IT Security certifications such as CISSP, CISA, CISM or ability to obtain one in a year
Or an equivalent combination of education and experience sufficient to successfully perform the essential functions of the job.
Preferred Qualifications
Education/ Experience:
Degree in Electrical Engineering or Computer Science
3-5 years of managerial experience in Operational Technology (Electric utility Generation, Transmission and Substation systems)
Knowledge, Skills & Abilities
Extensive knowledge of NIST/CIS security framework
Hands on experience using security related tools/applications
Extensive knowledge of NERC CIP standards
Extensive knowledge of IT infrastructure
Extensive knowledge of physical and IT security requirements including network administration, systems administration, network security, remote access and identification of Indicators of Compromise (IOC)
Intermediate skill with Microsoft Office and Project Management software
General knowledge of the principles and practices of business organizations
Licenses and Certifications
Valid Class C Texas driver's license
IT Security certifications such as CISSP or equivalent one
Physical Requirements / Work Environment
The work environment and physical demands described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
The incumbent works in a typical office environment; relatively free from unpleasant environmental conditions or hazards. Occasional exposure to unpleasant environmental conditions and/or hazards may be required during field visits.
MISSION STATEMENT We are committed to preserve public trust, deliver quality services, promote economic growth, protect our community and enhance the quality of life for the good of our city and our future.VISION STATEMENT Garland’s vision is to be a progressive city working together to nurture and grow the economic, social, environmental, and cultural well-being of our community.