New York, NY
Industry: Business Services•
8 - 10 years
Posted 294 days ago
Qualifications: O&R Control Center Operations is seeking to hire a Section Manager to join its Critical Infrastructure Protection team. This position requires candidates to demonstrate in the application they possess the following required skills and ability:
Responsibilities: This position is the senior technical position responsible for the on-going development and maintenance of Information Security Policy to meet the business unit’s cyber security and cyber compliance missions and objectives. The Section Manager is responsible to:
Is dedicated to enhancing the Customer Experience, both within the Company and externally and demonstrates a commitment to the ideal of developing a proactive, customer-centric culture to foster trust and confidence among customers and improve value for all our stakeholders. Responsible for direct supervision of O&R’s Critical Infrastructure Protection Program including evaluating the performance of direct reports and taking action to develop individual and group performance indicators. Ensure that all the CIP requirements are met, as and when mandated, through the continuing development, revision, recommendation and implementation of operational strategies, budgets, technologies and required policies and procedures to meet NERC CIP requirements applicable to O&R assets and respond to real-time, specific, actionable threat information. Responsible for sustaining compliance with new and developing versions of CIP Standards through review, analysis and/or providing appropriate recommendations in the NERC standards development stakeholder process.
Provide ongoing technical entity-specific risk analysis as well as assessment and recommendation for mitigation for the protection of applicable infrastructure. Risk analysis must provide the ability to identify, assess, monitor and respond to cybersecurity-related risks and provide the organization with the information needed to make risk-based decisions. Approach must consider safety and reliability, privacy and data integrity, business continuity and reputation management. Responsible for direct supervision and administrative support of the O&R ECC and ACC High Value Networks software and hardware utilized in support of the CIP Standards. Responsibilities include, but are not limited to, patching, antivirus, domain administration, networking, and hardware support, and including ensuring compliance with the BPU cybersecurity order and similar cybersecurity regulatory and/or corporate requirements. Interface with designated organizations and departments at O&R and CECONY, with service vendors and contractors, and with appropriate regulatory bodies to achieve sustainable compliance with all CIP Standards requirements to secure the identified cyber assets and systems from threats that could attack, damage, or gain unauthorized access to networks, facilities, data or programs.
Interface with and participates in various working groups and committees as necessary. (e.g. Corporate cybersecurity team, DOE, NERC, NPCC, RF, PJM and NYISO sub-committees). Conduct reviews, audits, tests and drills, as appropriate, of CIP compliance activities, processes and documented guidance in order to monitor and report on status of compliance. In accordance with O&R’s established policies as well as the applicable CIP requirements, grant, change or revoke physical and/or electronic access to the Control Centers and BES Cyber Systems and critical cyber assets. Maintains expert knowledge of new and emerging cybersecuritytechnology and plan for related technology implementations several years in the future. Acquire in-depth knowledge of new and emerging cybersecuritytechnologies and plan for technology implementation into the future. Perform other related assignments, as required.
Physical Requirements:This position requires candidates to demonstrate in the application they possess the following required skills and ability:
Job Code: 18-0116