Sr. Manager Cybersecurity

The Manager of Cybersecurity Operations will play a crucial role in safeguarding our people and digital assets by developing and enacting a comprehensive cybersecurity defense plan. This position leads cybersecurity professionals in developing adaptable defense strategies that integrate both offensive and defensive cybersecurity techniques, utilizing security solutions and threat intelligence to proactively mitigate risks and enhance the company's incident response capability. The manager will collaborate closely with other departments to ensure that all cyber defense activities align with strategic objectives and follow applicable rules of engagement, cybersecurity practices, laws, and regulations.

POSITION DIMENSIONS

Reporting directly to this position are up to seven exempt employees and up to four non-exempt employees. This position will exchange information with Executive Management, Directors and Managers at both division and corporate, third-party partners, and other utility representatives.

QUALIFICATIONS

This position requires at least ten years of experience in cybersecurity, including leading offensive teams and/or directing an organization's incident response. The candidate should also have in-depth knowledge of EDR, CDR, and SIEM technologies and a strong understanding of cloud security, particularly in Azure and AWS environments. A bachelor's in computer science or Cybersecurity is preferred, along with certifications in penetration testing and incident handling; however, experience may substitute for these.

ESSENTIAL JOB RESPONSIBILITIES

Develop and implement department goals that are aligned with Information Security objectives. Lead a team of cybersecurity technical professionals on offensive and defensive security practices, ensuring comprehensive and proactive threat detection and mitigation. Foster collaboration between the team and various departments to maximize the effectiveness of an adaptable defense strategy in protecting the people and technology against cyber threats. Conduct regular cybersecurity assessments and vulnerability evaluations while incorporating threat intelligence to identify and address potential weaknesses in systems and applications. Plan, organize, and conduct investigations, both internal and external to the Company, based on cybersecurity events. Lead incident response and recovery efforts, ensuring effective communication and coordination during cybersecurity incidents. Prepare detailed reports of findings, recommendations, and progress, presenting them to senior management and stakeholders. Oversee implementation, maintenance, and services of security solutions, as well as monitoring and configuration based on threats. Maintain compliance with relevant regulatory standards and frameworks (e.g., GDPR, ISO 27001, MITRE, NIST) and ensure that security controls align with industry best practices. Stay current with the latest cybersecurity trends, technologies, and threats to assess potential risks and recommend appropriate countermeasures. Collaborate with engineering and other teams to drive automation for analysis efficiency, containment, and remediation activities. Manage relationships with cybersecurity service partners, negotiate contracts, and monitor against contractual terms. Lead the preparation and management reporting of the O&M and capital plans and provide variance analysis. Understand the business drivers and associate culture of the enterprise and partner with relevant stakeholders to ensure regulatory compliance, data protection, and associate protection are in place Manage and develop staff and exercise authority regarding promotions, transfers, evaluations, compensation, disciplinary actions and terminations Perform related duties and responsibilities as assigned Regular and predictable attendance is a condition of employment and is an essential function of the job

SALARY DETAILS

Las Vegas:

$125,997.00 - $189,046.00