Job Posting End Date06-01-2024Please note the job posting will close on the day before the posting end date.Job SummaryResponsible for moderate-scale security assignments with limited direction from senior team members. Develops and maintains necessary documentation of security systems, projects, and/or processes to ensure unified understanding of system details. Performs and analyzes security controls assessments (internal and third party) through application security testing, penetration testing or other means to ensure controls effectiveness. Identifies and documents potential mitigations/remediations and creates reports of findings with identified risk response. Participates in the review, evaluation, and recommendation of emerging security technologies. More involved in advanced level implementation, support, and/or usage of technical solutions. Assists with problem solving, decision-making, and functional area knowledge.Job DescriptionEssential Job Functions:
Develop policies, standards, plans, and strategy in compliance with laws, regulations, policies, and standards in support of organizational cyber activities.
Consult with internal and external AEP stakeholders to ensure inclusion.
Manage lifecycle of policies and standards to ensure aligned with goals and security posture.
Leverage best practices and lessons learned of external organizations and government agencies dealing with cyber issues.
Interpret and apply applicable laws, statutes, and regulatory documents and integrate into policy.
Ability to accurately and completely source all data used in intelligence, assessment and/or planning products.
Ability to clearly articulate intelligence requirements into well-formulated research questions and data tracking variables for new/revised policies and standards.
Promote awareness of Security policies, standards, and strategy as appropriate among the entire workforce and ensure sound principles are reflected.
Minimum Requirements :Security Specialist Senior (SG7):Education: Bachelor's degree OR Associates degree with 2 years relevant experience in system administration/help desk/security (cyber or physical) OR High School Diploma/GED with 3 years relevant experience in IT system administration/help desk/security (cyber or physical); OR graduation from an approved Cybersecurity Program; alternatively may have non-degree qualifications (such as hands-on demonstrated ability in a technical interview/assessment).Experience: 2 or more years of Information Technology related experience; OR 1 or more years of security related experience, which may include military/government work experience in addition to any experience identified above.Security Specialist Principal (SG8):Education: Bachelor's degree OR Associates degree with 2 years relevant experience in system administration/help desk/security (cyber or physical) OR High School Diploma/GED with 4 years relevant experience in IT system administration/help desk/security (cyber or physical); OR graduation from an approved Cybersecurity Program; alternatively may have non-degree qualifications (such as hands-on demonstrated ability in a technical interview/assessment).Experience: 4 or more years of Information Technology related experience; OR 2 or more years of security related experience, which may include military/government work experience in addition to any experience identified above.Preferred Requirements:Experience/Knowledge:
Security Domain knowledge
Risk Management Experience
Project Management Experience
Knowledgeable of National Institute of Standards and Technology (NIST) Cybersecurity Framework
Knowledgeable NERC CIP
Prior knowledge in utilities background and/or specific business knowledge is a plus
Recordkeeping and communication skills
Knowledgeable of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.
Knowledgeable of laws, policies, procedures, or governance relevant to cybersecurity for critical infrastructures
Licenses/ Certifications: Any Security related certifications/licenses like CISSP, CRISC, CISM, CISACompensation:Security Specialist Sr (SG7): $83,413-$104,268Security Specialist Prin (SG8): $94,225- $122,491#LI-REMOTECompensation DataCompensation Grade:SP20-008Compensation Range:$94,225.00-122,490.00 USDCandidates will be considered based on their qualifications and the candidate’s ability to work from an approved work location. Although the location is flexible, AEP does not have a presence in all states and localities. The following locations are NOT currently approved for this position: AK, CA, CO, CT, DE, HI, IA, ID, KS, MA, ME, MS, MT, ND, NH, NJ, NM, NV, NY, OR, RI, SD, UT, VT, WY, US Territories or international work locations. AEP will consider qualified candidates who are willing to relocate to an approved work location, at the candidate’s expense, provided the relocation can be completed within a timeframe that meets AEP’s staffing needs. NOTE: All remote work locations require vetting and final approval prior to offer and/or start date. Any work locations listed as preferred or unapproved relate specifically to the requirements for this position and are not necessarily applicable to other posted positions.Hear about it first! Get job alerts by email. Log in to your Candidate Home Account today! If you don't have an account, you can create one.It is hereby reaffirmed that it is the policy of American Electric Power (AEP) to provide Equal Employment Opportunity in all aspects of the employer‐employee relationship including recruiting, hiring, upgrading and promotion, conditions and privileges of employment, company sponsored training programs, educational assistance, social and recreational programs, compensation, benefits, transfers, discipline, layoffs and termination of employment to all employees and applicants without discrimination because of race, color, religion, sex, age, national origin, ethnicity, ancestry, veteran or military status, disability, genetic information, sexual orientation, gender identity, or any other basis prohibited by applicable law. When required by law, we must record certain information to be made part of an Affirmative Action Plan. Applicants for employment may also be invited to participate in the Affirmative Action Program by self-identifying their Race or Ethnic Identity.