Share this Job

OT Security Specialist

Date: Nov 21, 2022

Location: Bethpage, NY, US

Company: PSEG

Requisition: 73030

PSEG Company: PSEG Long Island    

Salary Range: $ 76,700 - $ 145,700 

Incentive: PIP 10%   

Work Location Category: Remote Non-Local  

PSEG operates under a Flexible Work Model where flexible work is offered when job requirements allow. In support of this model, roles have been categorized into one of four work location categories: onsite roles, hybrid roles that are a blend of onsite and remote work, remote local roles that are primarily home-based but require some level of purpose-driven in-person interaction and living within a commutable distance, and remote non-local roles that can be effectively performed remotely with the ability to work in approved states.

PSEG offers a unique experience to our more than 12,000 employees – we provide the resources and opportunities for career development that come with being a Fortune 500 company, as well as the attention, camaraderie and care for one another you might typically associate with a small business. Our focus on combatting climate change through clean energy technology, our new net zero climate vision for 2030 and enhanced commitment to diversity, equity and inclusion; and supporting the communities we serve make this a particularly exciting time to join PSEG.

Job Summary

This position is an experienced, hands-on technical lead, performing IT security functions with Operational Technology (OT) environments.  Utilizes information security technologies such as antivirus, IDS/IPS, SIEM, endpoint detection & response, DLP, data encryption, proxies, and network access control, as well as security policies and procedures, and incident response.  Provides technical expertise and support PSEG-LI business lines, IT management, and staff. Serve as a cyber-technical liaison with the Operations Technology (OT) organizational units to ensure production facilities, operations and systems are following security best practices.  in cybersecurity threat risk assessments, development, testing and the implementation and operation of appropriate information security plans, procedures, and control techniques designed to prevent, minimize or quickly recover from cyber-attacks or other serious events.

Job Responsibilities

Responsibilities include:
•    Assist in the planning and implementation of the OT cyber security compliance work by creating and implementing ongoing, sustainable, and repeatable processes, including NERC-CIP.
•    Support all efforts to maintain compliance with organizational and industry security standards with OT environments
•    Lead cyber threat and security incident identification, protection, detection, response and remediation activities impacting the manufacturing operations environment and escalating to management.
•    Lead and participate in auditing activities conducted for compliance verification by OT security controls, Internal Audit, and other auditing bodies/regulatory agencies.
•    Develop, refine, review and update documentation, processes, procedures and standards to maintain compliance with OT security controls; develop tools and metrics for periodic reporting. Develop OT security compliance assessments and remediation reports. 
•    Assist in recommendations, design, and implementation of future automated systems, procedures, and methods required for maintaining and streamlining NERC CIP compliance. 
•    Participate in department and/or cross-functional teams to complete special projects or assignments as requested.
•    Utilizes information security technologies
•    Provides technical expertise in threat/risk assessments
•    Defines, designs, and implements strategies to protect against emerging threats using security tools
•    Responds to security incidents

Job Specific Qualifications

Required:
•    Bachelor’s degree in Computer Science, Information Systems, Cyber Security, Engineering or related discipline 
•    4 or more years of experience in information security or related field
•    Hands-on technical lead performing IT/OT security functions and maintaining systems.
•    Experience with key information security technologies such as SIEM, firewalls, intrusion detection/prevention systems, vulnerability assessment, encryption, identity and access control systems, anti-malware, and security event analysis as well as security policies and procedures, and incident response.
•    Provides technical expertise and support to clients, IT/OT management and staff in cybersecurity threat risk assessments, development, testing and the implementation and operation of appropriate information security plans, procedures, and control techniques designed to prevent, minimize or quickly recover from cyber-attacks or other serious events.
•    Broad knowledge of information systems including Windows security, network security, systems development, communication networks, security software/hardware and operating systems.
•    Follows cyber security news and alerts, understands complex attack vectors and risks, and identifies and evaluates emergent cyber security threats and vulnerabilities. Recommends appropriate corrective actions for information security incidents and provides risk mitigation recommendations to management and team.
•    Reviews complex architecture design diagrams and documents for new technologies and changes to existing technologies to determine risks and provide recommendations and mitigations.
•    Excellent oral and written communication skills.
•    Excellent leadership, technical teamwork, and interpersonal skills.
•    Willing to work in strong team environment, constantly teaching and learning from other team members.
•    Communicates effectively with both technical and non-technical individuals.
•    Maintains a solid working knowledge of Information Security principles and practices.

Please Note the Following: 
•    Approximately 5% Travel required
•    NERC CIP position, requires NERC CIP background investigation prior to start

Desired:
•    Security certifications in incident response, cyber investigation, forensics, or threat hunting.

 

Minimum Years of Experience

4 years of experience

Education

Bachelors in Computer Science or Information Technology
Bachelor in Engineering

Certifications

None Noted

Disclaimer

Certain positions at the Company may require you to have access to Part 810-Controlled Information.  Under the law, the Company is limited in who it can share this information with and in certain circumstances it is necessary to obtain specific authorization before the Company can share this information.  Accordingly, if the position does require access to this information, you must complete a 10 CFR Part 810 Export Control Compliance Nationality Request Form, a copy of which will be provided to you by Talent Acquisition if an offer is made.  If there is a need for specific authorization, due to the time it takes to obtain authorization from the government, we will likely not be able to further proceed with an offer.

Candidates must foster an inclusive work environment and respect all aspects of diversity. Successful candidates must demonstrate and value differences in others' strengths, perspectives, approaches, and personal choices.

As an employee of PSE&G or PSEG LI, you should be aware that during storm restoration efforts, you may be required to perform functions outside of your routine duties and on a schedule that may be different from normal operations.

Certain positions at the Company may require you to have access to 10 CFR Part 810 controlled information.  If the position does require access to this information, the Talent Acquisition representative will provide further details upon making an offer.

PSEG is an equal opportunity employer, dedicated to a policy of non-discrimination in employment, including the hiring process, based on any legally protected characteristic. Legally protected characteristics include race, color, religion, national origin, sex, age, marital status, sexual orientation, disability or veteran status or any other characteristic protected by federal, state, or local law in locations where PSEG employs individuals.

Business needs may cause PSEG to cancel or delay filling position at any time during the selection process.

This site (http://www.pseg.com) is strictly for candidates who are not currently PSEG employees. PSEG employees must apply for jobs internally through emPower which can be accessed through sharepoint.pseg.com by clicking on the emPower icon, then selecting careers.

 

PEOPLE WITH DISABILITIES:

PSEG is committed to providing reasonable accommodations to individuals with disabilities.  If you have a disability and need assistance applying for a position, please call 973-430-3845 or email accommodations@pseg.com.  If you need to request a reasonable accommodation to perform the essential functions of the job, email accommodations@pseg.com. Any information provided regarding a disability will be kept strictly confidential and will not be shared with anyone involved in making a hiring decision.

 

ADDITIONAL EEO/AA INFORMATION (Click link below)

Know your Rights: Workplace Discrimination is Illegal

Pay Transparency Nondiscrimination Provision


Nearest Major Market: New York City

Job Segment: Information Security, Compliance, Computer Science, Information Systems, Recruiting, Technology, Legal, Human Resources