Supervisor, Cybersecurity
Concord, CA, US, 94518
Full Time Mid-level / Intermediate USD 126K - 200K
Pacific Gas and Electric Company
Pacific Gas and Electric Company (PG&E) provides natural gas and electric service to residential and business customers in northern and central California.Requisition ID # 156767
Job Category: Information Technology
Job Level: Supervisor
Business Unit: Information Technology
Work Type: Hybrid
Job Location: Concord
Department Overview
Information Systems Technology Services is a unified organization comprised of various departments which collaborate effectively to deliver high quality technology solutions.
The Security Intelligence and Operations Center (SIOC) is responsible for ensuring that PG&E proactively identifies and assesses threats to its user and operational network and data, monitors its network for malicious activity, investigates intrusions and other relevant events, and has a sophisticated and detailed understanding of the evolving threat landscape.
Position Summary
The Security Intelligence and Operations Center (SIOC) is seeking a Supervisor for PG&E’s Monitor and Response team. The responsibility of this position is to lead a 24 hour per day/7 days per week three shift team that performs the following activities:
- Responding to, investigating, and confirming security alerts
- Taking initial response and mitigation actions on malicious activity not stopped by controls
- Taking cyber hotline calls
- Threat hunting
The successful candidate will provide leadership for threat hunting campaigns, process improvements, product documentation, and support technology service offerings managed by Cybersecurity operations. The successful candidate will utilize the National Institute of Standards and Technology Cybersecurity Framework as a guide for the day-to-day operations of the Monitor and Response team.
The role is hybrid working from your remote office and in-person 1x weekly at the Concord SIOC.
PG&E is providing the salary range that the company in good faith believes it might pay for this position at the time of the job posting. This compensation range is specific to the locality of the job. The actual salary paid to an individual will be based on multiple factors, including, but not limited to, specific skills, education, licenses or certifications, experience, market value, geographic location, and internal equity. Although we estimate the successful candidate hired into this role will be placed between the entry point and the middle of the range, the decision will be made on a case-by-case basis related to these factors. This job is also eligible to participate in PG&E’s discretionary incentive compensation programs.
A reasonable salary range is:
Bay Area Minimum: $126,000
Bay Area Maximum: $200,000
Job Responsibilities
- Perform administrative duties as assigned and supervise personnel on the team
- Develops effective metrics to track, report on, and improve overall department performance
- Develops and implements work plans in support of department goals and develop employee accountability
- Sets department goals in support of established objectives
- Ensures the team has adequate training on the appropriate tools and technology to successfully perform their jobs
- Ensure team availability to support Security Intelligence and Operations Center (SIOC) escalations
- Drives continuous process improvement and automation as applicable to the team
- Manages complex processes, requirements, and data
- Collaborates with teams, leaders, and peers to work on issues, projects, and activities
Qualifications
Minimum:
- Bachelor’s degree in computer science, Cybersecurity, or similar field; or equivalent experience
- 4 years of combined IT, critical infrastructure, intelligence, and/or cyber/information security work experience
- Relevant certification or ability to obtain by year one, such as as Certified Information Systems Security Professional (CISSP), Certified Information Systems Manager (CISM), Certified in Risk and Information Systems Control (CRISC), Professional in Critical Infrastructure Protection (PCIP), Certified Protection Professional (CPP), Certified Fraud Examiner (CFE), Certified Identity Theft Risk Management Specialist (CITRMSR), Computer Hacking Forensic Investigator (CHFI), Global Information Assurance Certification (GIAC), Certified Information Systems Auditor (CISA), Certified Internal Auditor (CIA), Certification in Control Self-Assessment (CCSA), Certified Ethical Hacker (CEH), Licensed Penetration Tester (LPT)
Desired:
- MS in Computer Science or Cybersecurity
- Utility industry experience
- Experience with regulatory requirements (NERC-CIP, SOX, FCC, TSA, etc.)
- Experience with Palo Alto XSOAR SOAR, IBM QRadar, Palo Alto NGFW, AWS Security Services, Azure Security Services
- Experience with threat hunting
- Experience with the National Institute of Standards and Technology Cybersecurity Framework
Knowledge, Skills, and Abilities:
- Strong leadership skills; able to manage, mentor and motivate
- Excellent planning, organizational management skills, process-oriented, and be able to juggle multiple priorities in a fast-paced environment
- Expert understanding of cybersecurity concepts and strategy
- Strong understands of cybersecurity and its relationship to business goals
- Excellent understanding of risk assessment and risk analysis frameworks
- Demonstrated strategic planning and road mapping ability
- Exceptional interpersonal skills, including teamwork, facilitation, and negotiation
- Highly collaborative, able to work cross-functionally; possessing the ability to forge relationships and partner effectively
- Resourceful and self-motivated, able to work independently when required
- Credible and persuasive; able to present often complex information in an accessible fashion to a nontechnical audience
- Outstanding problem-solving/decision making ability
- Excellent written and verbal communication skills, able to explain complex issues in clear and concise terms
- First class documentation skills
Tags: Automation AWS Azure CEH CHFI CIA CISA CISM CISSP Computer Science CRISC GIAC NGFW QRadar Risk analysis Risk assessment Risk management SOAR SOX Strategy
Perks/benefits: Equity Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Manager Pentest H/F jobs
- Open Cybersecurity Analyst jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Security Specialist jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Penetration Tester jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Specialist jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Java-related jobs
- Open Forensics-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs