Job Details

ID #53738287
Estado California
Ciudad Rosemead
Full-time
Salario USD TBD TBD
Fuente Southern California Edison
Showed 2025-03-28
Fecha 2025-03-29
Fecha tope 2025-05-28
Categoría Etcétera
Crear un currículum vítae
Aplica ya

Cybersecurity Vulnerability Management, Senior Specialist

California, Rosemead, 91770 Rosemead USA
Aplica ya

Join the Clean Energy RevolutionBecome a Cybersecurity Vulnerability Management, Senior Specialist at Southern California Edison (SCE) and build a better tomorrow. In this job, you’ll serve as a member of our Cybersecurity Risk and Engineering Team. You ask the right questions. You love using technology to solve problems, reduce risk, and want your work to make a difference in the world. Your role is to offensively test the confidentiality, integrity, and availability of pre-production Grid and Enterprise systems to enhance the security of Critical Infrastructure. You understand that dealing with a malicious and intelligent opponent requires a different mindset compared to facing a naturally occurring or accidental problem. You agree with the principal of Open Security; even if an attacker knows exactly how the system’s security is implemented, the attacker should still be thwarted. You have the ability to reason around uncertainty. You are able to quickly digest architecture and engineering technical documentation, understand the target systems attack surface, generate a test plan and secure the appropriate resources with various domain expertise. The results you deliver are clear and actionable, providing a risk-based approach to remediation. As a Cybersecurity Vulnerability Management, Senior Specialist , your work will help power our planet, reduce carbon emissions and create cleaner air for everyone. Are you ready to take on the challenge to help us build the future?Responsibilities

Performs security risk, vulnerability assessments, and business impact analysis for medium complexity information systems

Carries out project reporting for assigned projects, monitoring project status, timeline and budgets

Assists in the planning and implementation of current and future security domains including those which may introduce new service areas

Adopts and follows security controls, processes, and procedures to manage risk across all information system environments (infrastructure, network, and applications) with the assistance of the application and infrastructure management teams

Monitors technology risk, identifies root cause or key themes, recommends for resolution

Investigates suspected attacks and manages security incidents. Uses forensics where appropriate

Reviews and shapes the production of evidence to support internal and external audits

Implements appropriate security measures for information systems and applications that control access to data, and prevents unauthorized modification, destruction, or disclosure of information

Develops and maintains metrics, alerts, dashboards, and reports for security monitoring

Maintains incident response plans and performs incident response activities as directed and in accordance with established procedures and guidelines and those of federal authorities

A material job duty of all positions within the Company is ensuring the protection of all its physical, financial and cybersecurity assets, and properly accessing and managing private customer data, proprietary information, confidential medical records, and other types of highly sensitive information and data with the highest standards of conduct and integrity.

Minimum Qualifications

Five or more years of experience in information technology, information security and/or cybersecurity.

US Citizenship Required.

Preferred Qualifications

Bachelor’s degree or higher in Computer Science, Information Technology, or related field.

Professional certifications such as: Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), Certified Information Security Manager (CISM), Certified Secure Software Lifecycle Professional (CSSLP), Certified Application Security Engineer (CASE), Certified Application Security Professional (CASP), Offensive Security Certified Professional (OSCP), Certified Web Application Defender (GWEB), and/or any other relevant certifications.

Five years of experience working with cybersecurity frameworks such as: MITRE, NIST, CISA, CIS, CSF.

Expertise in vulnerability management and penetration testing tools and techniques.

Five years of experience in application security, including conducting security assessments, code reviews, and implementing security controls.

Familiarity with cloud security (AWS, Azure, or GCP) and DevSecOps practices.

Experience with the Service Now platform; requesting enhancements via business requirements documentation to platform developers.

Excellent communication skills for technical and non-technical audiences.

Highly organized and efficient. Ability to work independently or part of a team in a fast-paced, dynamic environment.

Additional Information

This position’s work mode is hybrid. The employee will report to an SCE facility for a set number of days with the option to work remotely on the remaining days.  Unless otherwise noted, employees are required to work and reside in the state of California.  Further details of this work mode will be discussed at the interview stage. The work mode can be changed based on business needs.

Visit our Candidate Resource (https://www.edisoncareers.com/page/show/candidate-resources) page to get meaningful information related to benefits, perks, resources, testing information, hiring process, and more!

This position has been identified as a NERC/CIP impacted position - Prior to being hired, the successful candidate must pass a Personnel Risk Assessment (PRA) or Background Investigation. Once hired, the candidate must complete specified training prior to gaining un-escorted access to assigned work location and performing necessary job duties.

Relocation does not apply to this position

Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act

About Southern California EdisonThe people at SCE don't just keep the lights on. Our mission is so much bigger. We’re fueling the kind of innovation that’s changing an entire industry, and quite possibly the planet. Join us and create a future with cleaner energy, while providing our customers with the safety and reliability they demand. At SCE, you’ll have a chance to grow personally and professionally, making a real impact in Southern California and around the world.At SCE, we celebrate our differences. We are a proud Equal Opportunity Employer and will not discriminate based on race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status or any other protected status.We are committed to ensuring that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodations at (833) 343-0727.

Aplica ya Suscribir Reportar trabajo