Manager, Cybersecurity

at PG&E Corporation
Published March 26, 2021
Location San Francisco, CA
Category Default  
Job Type Full-time  

Description

Requisition ID # 88583 

Job Category : Information Technology 

Job Level : Manager/Principal

Business Unit: Information Technology

Department Overview

The PG&E Cybersecurity organization is a dynamic group of security professionals, working to protect our critical assets, highest risks, adapting and growing to meet the challenges from ever-evolving adversaries. The Cybersecurity Risk Management department within the boarder organization focuses on identifying risks, helping partners reduce or mitigate risks, developing initiatives to protect PG&E from cyber-attacks, and engaging with other stakeholders to continually improve PG&E’s security posture. The department provides governance and direction of initiatives to safeguard PG&E’s cyber-assets, working hand in hand with key partners, as well as technical and engineering experts in PG&E’s lines of business. The department performs projects, vendor, and production systems risk assessments to ensure PG&E deploys and manages technology platforms that meet our security standards and regulatory requirements.  

Position Summary

The Cybersecurity Manager will oversee the LOB Risk Consulting team which supports our line of business risk management and strategic partnership. This team seeks to understand, assess, analyze, and advise our LOB stakeholders on how to manage their risks, and develop mitigation strategies that safeguards our company. This role will be accountable for the development of the team’s personnel & execution of overall Cybersecurity department strategic plans in alignment with company strategic vision & goals.

Qualifications

Minimum:

Knowledge, Skills, and Abilities

  • Strong leadership skills; able to manage, mentor and motivate
  • Excellent planning, organizational management skills, process-oriented, and be able to juggle multiple priorities in a fast-paced environment
  • Expert understanding of information security concepts and strategy
  • Strong understands information security holistically and how it relates to business goals
  • Excellent understanding of risk assessment and risk analysis frameworks
  • Demonstrated strategic planning and road mapping ability
  • Exceptional interpersonal skills, including teamwork, facilitation and negotiation
  • Highly collaborative, able to work cross-functionally; possessing the ability to forge relationships and partner effectively
  • Resourceful and self-motivated, able to work independently when required
  • Credible and persuasive; able to present often complex information in an accessible fashion to a nontechnical audience
  • Outstanding problem-solving/decision making ability
  • Excellent written and verbal communication skills, able to explain complex issues in clear and concise terms
  • Experience with regulatory requirements (NERC-CIP, HIPPA, CCPA, SOX, etc.)

Job Responsibilities

  • Perform administrative duties as assigned and oversee personnel on the team
  • Perform mentoring, coaching, and support employee development
  • Develops effective metrics to track, report on and improve overall department performance
  • Develops and implements work plans in support of department goals and develop employee accountability
  • Sets department goals in support of established objectives
  • Ensures the team has adequate tools, training and technology to successfully perform their jobs
  • Ensure availability to support the Cybersecurity organization and personnel for on-call duties and escalations
  • Drives continuous process improvement and automation as applicable to the team
  • Manages complex processes, requirements, and data
  • Collaborates with teams, leaders, or peers to work on issues, projects or activities
  • Ensures compliance with legal, Federal and State regulations
  • Acts as a subject matter expert in area of risk management and applies extensive knowledge of concepts, principles, and practices
  • Manages department budget