Associate Cyber Security Analyst Jobs in Rochester, NY

Position Information:

Job Title: Manager - Cyber Operations

Location: Rochester, NY

Salary Range: $128,320 - $160,400

Schedule: On Site - Office

Purpose

The Manager Cyber Operations primary function is to manage operational activities related to the execution of the Avangrid Networks information security roadmap and manage the day-to-day workload of the Avangrid Networks security/NERC operations team. This position provides leadership and support across Avangrid Networks to balance real world risks with business drivers such as reliability, speed, agility, flexibility, and performance. The role assures maintenance and support of infrastructure assets across Avangrid Networks.

Responsibilities

This position provides direct leadership and support across the Avangrid Networks business to support NERC operations and Protection Systems. This position will contribute to the design, implementation, operation, and evolution solutions and strategies for Avangrid Networks Operational Technologies operating companies progress for Grid Digitalization. This position will be responsible for managing day to day aspects of Operational Smart Grids NERC operations and Protection Systems Applications.

• Ensure security services and solutions are operated in compliance with industry best practices as well as applicable privacy and legal/regulatory requirements including , GDPR, SOX, CEII, and NERC
• Follow applicable federal agency guidance on security operations practices relevant to Grid Modernization and assess impact on AVANGRID Networks business model
• Ensure that security services and solutions are well defined, highly available, repeatable, and are constantly measured for key performance, key risk, and key operational level metrics
• Develop reports, dashboards, and metrics for cyber operations and present to OSG Management
• Enhance NERC operations team with advanced techniques and technologies such as automation of manual related efforts
• Lead, develop, and maintain, Operations Security policies, rules standards, and guidelines
• Oversee employees that are completing cyber vulnerability assessments, SPR's, OT NOW and IT NOW workflows that ensure NERC/CIP
• Oversee employees managing Protection Systems applications to ensure the safety of the Operational Smart Grids IT and OT systems
• Ensure that network infrastructure such as firewalls, routers, and switches are implemented operated in compliance with documented policies and procedures
• Ensure that system security controls such as system hardening, vulnerability/patch management, account management, system baselines, change control, and mobile/transient devices implemented operated in compliance with documented policies and procedures
• Understanding of data analytics and associated technologies
• Ability to define, manage and lead our data initiatives to blend our cybersecurity data into a date lake that can produce useful insights and reports
• Improve current vulnerability management workstream while managing internal/external relationships, communicating to impacted areas, creating/maintaining dashboards and automating/coordinating deployments

JOB REQUIREMENTS:

Education & Experience Required:

• Master's Degree in Engineering, Computer Science, or technical related degree with a minimum of 4+ years' experience in IT/OT, NERC/CIP and/or Cybersecurity; or
• Bachelor's Degree in Engineering, Computer Science, or technical related degree with a minimum of 6-8 years' experience in IT/OT, NERC/CIP and/or Cybersecurity
• Associate Degree in Engineering, Computer Science, or technical related degree with a minimum of 8+ years' experience in IT/OT, NERC/CIP and/or Cybersecurity

• No Degree minimum of 15+ years' experience in IT/OT, NERC/CIP and/or Cybersecurity
• Experience with key security process and procedures (system hardening, patch management, vulnerability management, supplier management)
• Supervisory / Manager experience over staff, projects, or contractors
• 2 + Years Data Center and OT Infrastructure
• Experience preferred of 5+ years in Business Decision Support including Cybersecurity Operations and Performance/Metrics reporting.
• Experience preferred with Access Controls systems and solutions (SSO, AD, TACACS, MFA, cloud based)
• Experience preferred with a variety of information and network security infrastructure and tools (IDS/IPS, firewall, WAF, configuration management)

Competencies:

• Strong understanding of applicable NERC/CIP Standards
• Strong communication written and verbal skills related to cybersecurity technology
• Strong system engineering and advanced networking
• Strong understanding of current and future state of cyberspace
• A team-focused mentality with the proven ability to work effectively with diverse stakeholders
• An ability to effectively influence others to modify their opinions, plans, or behaviors
• Proactive attitude, seeking for improvement opportunities which can positively impact the security posture and the business
• An ability to work extremely well under pressure while maintaining a professional image and approach
• Decision-making capabilities, with an ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
• Ability to lead projects

Desired Skills/ Abilities:

• Ability to obtain security clearance at secret level
• Knowledge of federal government cybersecurity activities and practices
• Experience in federal or state regulatory environments
• Experience in federal cybersecurity agencies and environments
• Experience in a utility environment
• Certified Information Systems Security Professional (CISSP)
• Experience in federal or state regulatory environments
• Experience with NERC-CIP
• Experience in a utility environment.

What We Offer:

• Competitive benefits and growth opportunities
• Generous performancebased bonuses
• 12% 401(k) match
• Comprehensive health, dental, and vision insurance
• Tuition reimbursement
• Professional development and clear careeradvancement pathways

#LI-Onsite; #LI-CH1

For more information, please visit: Benefits - Avangrid

Company:

Mobility Information

Please note that any applicant who is not a citizen of the country of the vacancy will be subject to compliance with the applicable immigration requirements to legally work in that country.

At Avangrid we provide fair and equal employment and advancement opportunities for all employees and candidates regardless of race, color, religion, national origin, gender, sexual orientation, age, marital status, disability, protected veteran status or any other status protected by federal, state, or local law.
If you are an individual with a disability or a disabled veteran who is unable to use our online tool to search for or to apply for jobs, you may request a reasonable accommodation by contacting our People and Organization department at careers@avangrid.com.

Avangrid employees may be assigned a system emergency role and in the event of a system emergency, may be required to work outside of their regular schedule/job duties. This is applicable to employees that will work in Connecticut, Maine, Massachusetts, and New York within Avangrid Network and Corporate functions. This does not include those that will work for Avangrid Power.

Avangrid employees may also be assigned a NERC Reliability Standards compliance role supporting Critical Infrastructure Protection (CIP) and/or Operations and Planning (O&P) responsibilities. This is applicable to employees that will work in electric transmission, operations, and cyber security business areas in Connecticut, Maine, Massachusetts, and New York within Avangrid Network and Corporate business areas. NERC Reliability Standards compliance roles and responsibilities may include additional access protections, training, audit engagement, and required evidence retention, and will be communicated by the employee's management.

Job Posting End Date: