CenterPoint Energy
CenterPoint Energy Overview
CenterPoint Energy and its predecessor companies have been in business for more than 150 years. Our Vision:
Our vision is to become the most admired utility in the United States through the execution of our long-term growth strategy. We have an unwavering commitment to safely and reliably deliver electricity and natural gas to millions of people. Our Commitment:
CenterPoint Energy is committed to creating an inclusive work environment where business results are achieved through the skills, abilities and talents of our diverse workforce. At CenterPoint Energy, individuals are respected for their contributions toward our company objectives. We strive for an inclusive work environment across all levels that is reflective of the available workforce in the communities we serve.
Position
Manager, OT Security Operations Center (SOC)
The OT SOC Manager will oversee OT cyber incident monitoring & triage procedures, operational activities, and make key strategic decisions/escalations around the OT SOC. This resource will serve as the liaison between the CISO, Business Unit Senior Leadership, and the CSOC team, and will oversee the OT SOC Tier 1 and Tier 2 Analysts and the SIEM/SOAR Engineer roles. The OT SOC Manager will define and optimize SIEM/SOAR playbooks and runbooks, and manage Splunk SIEM/SOAR infrastructure, application, and automation maintenance, ensuring efficient and effective response to security incidents.
Critical Responsibilities
Establishing/Maintaining Strategic Governance & Escalation protocol with Cyber & BU Orgs/POCs
Onboarding & Managing OT SOC resources (including OT SOC Tier 1/2 Analyst & SIEM/SOAR Admin FTEs)
Creating/Maintaining OT Cyber Incident identification & response processes
Conducting comprehensive post-incident reviews to assess response activities, document findings, and update incident response plans and security controls
Creating/Maintaining Standard Operating Procedures (SOPs) and Automation Playbooks to identify & detect OT Cyber Alerts across BU networks
Managing Splunk automation & workflow enhancement pipeline, carried out by SIEM/SOAR Engineer
Collaborate with OT Cyber Org groups and Business Units to track and maintain OT Cyber Assets
Establishing relationships for information sharing with adjacent partners (threat intelligence exchange), i.e., E-ISAC
Skills
Identifying and assessing network and cybersecurity threats, including anomalous activities and vulnerabilities
Comprehensive understanding of NERC / CIP & TSA Regulations, along with the ability to develop and implement risk mitigation strategies
Skill in writing and implementing incident response procedures, leading response strategies, and managing escalation processes
Monitoring system activity, leading forensic analysis, and conducting malware and log analysis
Managing SIEM and Network Sensors, as well as developing and implementing threat intelligence strategies for the OT sector
Experience in managing OT SOC operations and personnel
Cross-Organizational Communication & Collaboration
Commitment to ongoing training and development for SOC personnel
What We Bring to You
Competitive pay
Paid training
Benefits eligibility begins on your first day
Transit subsidies
Flexible work schedule, paid holidays and paid time off
Access to discounts at fitness clubs and an on-site wellness center at our headquarters in Houston
Professional growth and development programs including tuition reimbursement
401(k) Savings Plan featuring a company match dollar-for-dollar up to 6% and a company contribution of 3% regardless of your contribution
Job Type:
Full Time Posting Start Date:
10/20/2025 Posting End Date:
11/07/2025
This contractor and subcontractor shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a), and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, or national origin. Moreover, these regulations require that covered prime contractors and subcontractors take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status or disability.
#LI-CNP
#J-18808-Ljbffr
CenterPoint Energy and its predecessor companies have been in business for more than 150 years. Our Vision:
Our vision is to become the most admired utility in the United States through the execution of our long-term growth strategy. We have an unwavering commitment to safely and reliably deliver electricity and natural gas to millions of people. Our Commitment:
CenterPoint Energy is committed to creating an inclusive work environment where business results are achieved through the skills, abilities and talents of our diverse workforce. At CenterPoint Energy, individuals are respected for their contributions toward our company objectives. We strive for an inclusive work environment across all levels that is reflective of the available workforce in the communities we serve.
Position
Manager, OT Security Operations Center (SOC)
The OT SOC Manager will oversee OT cyber incident monitoring & triage procedures, operational activities, and make key strategic decisions/escalations around the OT SOC. This resource will serve as the liaison between the CISO, Business Unit Senior Leadership, and the CSOC team, and will oversee the OT SOC Tier 1 and Tier 2 Analysts and the SIEM/SOAR Engineer roles. The OT SOC Manager will define and optimize SIEM/SOAR playbooks and runbooks, and manage Splunk SIEM/SOAR infrastructure, application, and automation maintenance, ensuring efficient and effective response to security incidents.
Critical Responsibilities
Establishing/Maintaining Strategic Governance & Escalation protocol with Cyber & BU Orgs/POCs
Onboarding & Managing OT SOC resources (including OT SOC Tier 1/2 Analyst & SIEM/SOAR Admin FTEs)
Creating/Maintaining OT Cyber Incident identification & response processes
Conducting comprehensive post-incident reviews to assess response activities, document findings, and update incident response plans and security controls
Creating/Maintaining Standard Operating Procedures (SOPs) and Automation Playbooks to identify & detect OT Cyber Alerts across BU networks
Managing Splunk automation & workflow enhancement pipeline, carried out by SIEM/SOAR Engineer
Collaborate with OT Cyber Org groups and Business Units to track and maintain OT Cyber Assets
Establishing relationships for information sharing with adjacent partners (threat intelligence exchange), i.e., E-ISAC
Skills
Identifying and assessing network and cybersecurity threats, including anomalous activities and vulnerabilities
Comprehensive understanding of NERC / CIP & TSA Regulations, along with the ability to develop and implement risk mitigation strategies
Skill in writing and implementing incident response procedures, leading response strategies, and managing escalation processes
Monitoring system activity, leading forensic analysis, and conducting malware and log analysis
Managing SIEM and Network Sensors, as well as developing and implementing threat intelligence strategies for the OT sector
Experience in managing OT SOC operations and personnel
Cross-Organizational Communication & Collaboration
Commitment to ongoing training and development for SOC personnel
What We Bring to You
Competitive pay
Paid training
Benefits eligibility begins on your first day
Transit subsidies
Flexible work schedule, paid holidays and paid time off
Access to discounts at fitness clubs and an on-site wellness center at our headquarters in Houston
Professional growth and development programs including tuition reimbursement
401(k) Savings Plan featuring a company match dollar-for-dollar up to 6% and a company contribution of 3% regardless of your contribution
Job Type:
Full Time Posting Start Date:
10/20/2025 Posting End Date:
11/07/2025
This contractor and subcontractor shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a), and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, or national origin. Moreover, these regulations require that covered prime contractors and subcontractors take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status or disability.
#LI-CNP
#J-18808-Ljbffr