Enterprise Security Architect

Company: FirstEnergy Corp
Location: Wadsworth
Posted on: May 15, 2022

Job Description:

FirstEnergy FirstEnergy at a Glance We are a forward-thinking electric utility powered by a diverse team of employees committed to making customers' lives brighter, the environment better and our communities stronger. FirstEnergy -(NYSE: FE) is dedicated to safety, reliability and operational excellence. Headquartered in Akron, Ohio, FirstEnergy includes one of the nation's largest investor-owned electric systems, more than 24,500 miles of transmission lines that connect the Midwest and Mid-Atlantic regions, and -a regulated generating fleet with a total capacity of -3,780 megawatts. About the Opportunity This is an open position with FirstEnergy Service Co., a subsidiary of FirstEnergy Corp. - [SC00] The Security Architect is responsible for translating security and business requirements into policies and procedures and/or technical designs. - This role provides thought leadership and support across all security teams in order to improve the security posture of FirstEnergy overall. - The Security Architect also measures effectiveness and security metrics to report up to all levels of leadership, as well as, maintain open communications with peers in Cyber Security, TSTE (Transmission Security Technology and Engineering), and TSOC (Transmission Security Operations Center) teams. Responsibilities Include:

• Defining, analyzing, planning, measuring and improving all aspects of IT security and ensuring that all IT infrastructure, processes and tools align with accepted standards
• Providing overall security guidance and leadership in projects involving a variety of infrastructure technologies (e.g. cloud, storage, compute, network, etc.)
• Providing highest technical level of security operations and design for security technologies such as FW, Wireless security, VPN, Proxy, MFA, and security components of the smart meter infrastructure.
• Educating, consulting and influencing IT and business stakeholders to better understand existing security risks, best practices, and infrastructure changes required to support business and IT strategies
• Reviewing and assessing infrastructure solutions for specific vulnerabilities or security risks, and guide business enabling IT security investment
• Driving technology strategy and enterprise architecture for core IT security technologies
• Developing, documenting and recommending plans for investing in IT security, including risk analysis and cost reduction opportunities
• Developing and presenting business cases and security architecture migration plans to management
• Identify gaps in controls or visibility to assist in driving future strategy within corporate Cyber Security
• Supporting and assisting with defining and implementing the corporate Cyber Security strategy
• Identify process improvements to further advance security operations
• Make recommendations for use of new technologies to support cyber security activities
• Work with subject matter experts in other technologies to create advanced detection capabilities
• Develop, implement, and maintain best practices, procedures, and performance metrics
• Work with the Cyber Security Manager to create measurable reporting and pertinent information for routine monthly meetings to different security groups and business units
• Assist to provide investigation services and coordinate mitigation efforts during an incident
• Build and maintain relationships with key business unit areas within IT, Transmission, and Physical security Qualifications -include:
  • A Bachelor Degree in Cyber Security, Information Technology, Computer Science, Information Assurance or related field along with 5 years of related experience required. In lieu of a degree, 9 years of related experience required.
  • Related experience includes, but is not limited to:
    • Cyber Security experience
    • Experience managing penetration assessments, incident response, and operational/security monitoring
    • Experience with multiple security technologies to include firewalls, intrusion detection/prevention, endpoint protection, SIEM, data loss prevention, and vulnerability scanners
    • Experience making strategic decisions derived from threat and risk-based analysis
    • Demonstrated understanding of best practices in cyber / physical security encompassing strategies, policies, principles, procedures and standards
    • Demonstrated understanding of Forensic processes and capabilities
    • Demonstrated understanding of Adversarial Tactics, Behaviors, and Threat Intelligence
    • Advanced working knowledge of Threat Lifecycle and Incident Management
    • Advanced knowledge of risk management techniques to defeat advanced attackers and capability to discuss techniques at an executive level.
    • Strong technical leadership, oral, and written communication skills required
    • Experience with the effective use of Microsoft Office Suite (Outlook, Teams, Word, Excel, and PowerPoint)
    • Solid interpersonal and organizational skills
    • Ability to work with all levels of management inside and outside the organization -
    • Strong analytical and problem-solving skills
    • Strong decision-making skills during emergency and crisis situations
    • Ability to work with highly confidential information
    • Ability to effectively manage multiple tasks concurrently on a regular basis. #CB Benefits, Compensation & Workforce Diversity At FirstEnergy, employees are key to our success. We depend on their talents to meet the challenges of our changing business environment. We are committed to rewarding individual and team efforts through our total rewards philosophy which includes competitive pay plus incentive compensation, a company-sponsored pension plan, 401(k) savings plan with matching employer contribution, a choice of medical, prescription drug, dental, vision, and life insurance programs, as well as skills development training with tuition reimbursement. Please visit our website at www.firstenergycorp.com to learn more about all of our employee rewards programs. FirstEnergy proudly supports workforce diversity. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, gender identity, age, status as a protected veteran, or status as a qualified individual with a disability. No recruiters or agencies without a previously signed contract. Unable to sponsor or transfer H-1B visas at this time. Safety Safety is a core value for FirstEnergy and is essential to all of our business activities. We ensure employees have the tools, information, and processes to perform their duties in a manner that assures safety for themselves, their co-workers, our customers and the public. Our goals are to provide a safe work environment, to maintain an accident-free, injury-free workplace, and to promote and maintain public safety. To meet these goals, we dedicate ourselves to achieving world-class safety standards. Position Classification Exempt FirstEnergy Human Resources Team

Keywords: FirstEnergy Corp, Cleveland , Enterprise Security Architect, Professions , Wadsworth, Ohio