Southern California Edison (SCE)
Security & Compliance, Senior Specialist
Southern California Edison (SCE), Alhambra, California, us, 91802
Security & Compliance, Senior Specialist
Join to apply for the
Security & Compliance, Senior Specialist
role at
Southern California Edison (SCE) This range is provided by Southern California Edison (SCE). Your actual pay will be based on your skills and experience — talk with your recruiter to learn more. Base pay range : $126,000.00/yr - $189,000.00/yr Job Description Become a Security & Compliance, Senior Specialist at Southern California Edison (SCE) and build a better tomorrow. In this job, you’ll support the implementation of business requirements, assists in gap analyses, and contributes to the development of control strategies and risk mitigation efforts. This role helps identify regulatory challenges and opportunities within the current and evolving compliance landscape. The Senior Specialist provides input on new product structures and ensures they align with applicable regulatory requirements. They assist in meeting NERC CIP and Grid compliance obligations, including security reporting and audit preparation. Working under the guidance of the Program Manager, the specialist helps maintain operational efficiency and supports day-to-day compliance with NERC CIP standards. The role involves collaboration with various departments such as Transmission & Distribution, Corporate Security, Generation, Energy Procurement, and Ethics & Compliance to support program deliverables and ensure effective communication with stakeholders. Responsibilities
Analyzes existing security systems and makes recommendations for changes or improvements Prepares reports and action plans in the event of a security breach Ensures regular penetration testing is completed and any findings are remediated in a timely manner Assists security team by completing tasks of low to medium complexity for projects of various size and scope as assigned by information security leadership Creates, revises, and maintains high-quality written process documents, methods of procedure, knowledge base articles, flowcharts Monitors day-to-day security logs and traffic and analyzes for network attacks or intrusions Participates in rollouts of threat and vulnerability management solutions across various business entities; assists program leader with documentation, testing, and validation of deployed scanning solution Identifies and manages risk to ensure that risks are mitigated, and problems resolved, in relation to meeting relevant commitments Reviews policies and procedures for compliance with applicable standards and to identify areas of improvement for finding remediation Maintains cybersecurity procedures and processes as assigned A material job duty of all positions within the Company is ensuring the protection of all its physical, financial and cybersecurity assets, and properly accessing and managing private customer data, proprietary information, confidential medical records, and other types of highly sensitive information and data with the highest standards of conduct and integrity. Minimum Qualifications
Five or more years of experience in information technology, information security and/or cybersecurity. Preferred Qualifications
Bachelor’s Degree in Engineering, Business, Information Technology, JD, or related field. Two or more years of experience working with industry-standard frameworks such as NIST, ITIL, COBIT, CSF, and ISO 27001, supporting cybersecurity, IT governance, or compliance initiatives. One or more years of experience with regulatory compliance in utility or other industry with exposure to NERC or FERC standards and audit processes. Two or more years of experience in supporting diverse IT infrastructure and operating systems, with proficiency in basic scripting (e.g., PowerShell, Bash) or advanced Excel skills for automation, reporting, and data analysis. Should be a good team player and detail-oriented. CISA, Security+ or any compliance or cyber security certification. Additional Information
This position’s work mode is hybrid. The employee will report to an SCE facility for a set number of days with the option to work remotely on the remaining days. Visit our Candidate Resource page to get meaningful information related to benefits, perks, resources, testing information, hiring process, and more! Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. Position will require up to 10% traveling and being out in the field throughout the SCE service territory. This position has been identified as a NERC/CIP impacted position - Prior to being hired, the successful candidate must pass a Personnel Risk Assessment (PRA) or Background Investigation. Relocation does not apply to this position. About Southern California Edison The people at SCE don't just keep the lights on. Our mission is so much bigger. We’re fueling the kind of innovation that’s changing an entire industry, and quite possibly the planet. Join us and create a future with cleaner energy, while providing our customers with the safety and reliability they demand. Southern California Edison is a proud Equal Opportunity Employer, including disability and protected veteran status. We are committed to ensuring that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment.
#J-18808-Ljbffr
Join to apply for the
Security & Compliance, Senior Specialist
role at
Southern California Edison (SCE) This range is provided by Southern California Edison (SCE). Your actual pay will be based on your skills and experience — talk with your recruiter to learn more. Base pay range : $126,000.00/yr - $189,000.00/yr Job Description Become a Security & Compliance, Senior Specialist at Southern California Edison (SCE) and build a better tomorrow. In this job, you’ll support the implementation of business requirements, assists in gap analyses, and contributes to the development of control strategies and risk mitigation efforts. This role helps identify regulatory challenges and opportunities within the current and evolving compliance landscape. The Senior Specialist provides input on new product structures and ensures they align with applicable regulatory requirements. They assist in meeting NERC CIP and Grid compliance obligations, including security reporting and audit preparation. Working under the guidance of the Program Manager, the specialist helps maintain operational efficiency and supports day-to-day compliance with NERC CIP standards. The role involves collaboration with various departments such as Transmission & Distribution, Corporate Security, Generation, Energy Procurement, and Ethics & Compliance to support program deliverables and ensure effective communication with stakeholders. Responsibilities
Analyzes existing security systems and makes recommendations for changes or improvements Prepares reports and action plans in the event of a security breach Ensures regular penetration testing is completed and any findings are remediated in a timely manner Assists security team by completing tasks of low to medium complexity for projects of various size and scope as assigned by information security leadership Creates, revises, and maintains high-quality written process documents, methods of procedure, knowledge base articles, flowcharts Monitors day-to-day security logs and traffic and analyzes for network attacks or intrusions Participates in rollouts of threat and vulnerability management solutions across various business entities; assists program leader with documentation, testing, and validation of deployed scanning solution Identifies and manages risk to ensure that risks are mitigated, and problems resolved, in relation to meeting relevant commitments Reviews policies and procedures for compliance with applicable standards and to identify areas of improvement for finding remediation Maintains cybersecurity procedures and processes as assigned A material job duty of all positions within the Company is ensuring the protection of all its physical, financial and cybersecurity assets, and properly accessing and managing private customer data, proprietary information, confidential medical records, and other types of highly sensitive information and data with the highest standards of conduct and integrity. Minimum Qualifications
Five or more years of experience in information technology, information security and/or cybersecurity. Preferred Qualifications
Bachelor’s Degree in Engineering, Business, Information Technology, JD, or related field. Two or more years of experience working with industry-standard frameworks such as NIST, ITIL, COBIT, CSF, and ISO 27001, supporting cybersecurity, IT governance, or compliance initiatives. One or more years of experience with regulatory compliance in utility or other industry with exposure to NERC or FERC standards and audit processes. Two or more years of experience in supporting diverse IT infrastructure and operating systems, with proficiency in basic scripting (e.g., PowerShell, Bash) or advanced Excel skills for automation, reporting, and data analysis. Should be a good team player and detail-oriented. CISA, Security+ or any compliance or cyber security certification. Additional Information
This position’s work mode is hybrid. The employee will report to an SCE facility for a set number of days with the option to work remotely on the remaining days. Visit our Candidate Resource page to get meaningful information related to benefits, perks, resources, testing information, hiring process, and more! Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. Position will require up to 10% traveling and being out in the field throughout the SCE service territory. This position has been identified as a NERC/CIP impacted position - Prior to being hired, the successful candidate must pass a Personnel Risk Assessment (PRA) or Background Investigation. Relocation does not apply to this position. About Southern California Edison The people at SCE don't just keep the lights on. Our mission is so much bigger. We’re fueling the kind of innovation that’s changing an entire industry, and quite possibly the planet. Join us and create a future with cleaner energy, while providing our customers with the safety and reliability they demand. Southern California Edison is a proud Equal Opportunity Employer, including disability and protected veteran status. We are committed to ensuring that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment.
#J-18808-Ljbffr