Cybersecurity Governance Policy and Standards Advisor

09 Nov, 2021


Cybersecurity Governance Policy and Standards Advisor

Edison International
Rosemead, CA

Join the Clean Energy Revolution 

Become a Cybersecurity Governance Policy and Standards Advisor at Southern California Edison (SCE) and build a better tomorrow. The individual will also frequently serve in a consultative/ advisory role, evaluating our client’s business challenges and applying knowledge of key cybersecurity frameworks (e.g. NIST CSF, ISO 27001, and COBIT 5).As a Cybersecurity Governance Policy and Standards Advisor, your work will help power our planet, reduce carbon emissions and create cleaner air for everyone. Are you ready to take on the challenge to help us build the future?

A day in the life – Get ready to think big, work smart and shine bright! 

  • Have a working knowledge of common cybersecurity frameworks (e.g., NIST CSF, ISO 27001, COBIT, CCPA/CPRA)
  • Experience with leading, developing, maintaining, and writing administrative focused cybersecurity policies, standards, and protection profiles by researching current industry and government frameworks, vulnerabilities, and risk trends, and how they could impact the enterprise. Coordinate training and awareness campaigns with various organizations. This will be done in coordination with key stakeholders in IT, Transmission and Distribution, Enterprise Information Governance, Legal, and others.
  • Develop and deliver training and awareness campaigns to assure stakeholders understand their role in how to apply the standards internally and with third party vendors parties to review requested deviations from SCE’s applicable cyber standards/policies through establishing an attestation process and metrics. If needed, work with those suppliers to develop and/or recommend appropriate mitigation/remediation countermeasures in operational and nonoperational environments.
  • Develop recommendations for improvements in cybersecurity business processes related to identifying, processing, and managing cyber risk.
  • Develop cybersecurity standards metrics to gauge how SCE is following cyber standards, policies, and technical requirements.
  • Respond to audits, participate in cybersecurity-related committees, and act as a cybersecurity lead on to explain policy impacts to all levels of the company.

The essentials 

  • Seven or more years of combined experience working with common cybersecurity or governance related frameworks through developing, implementing and training cybersecurity and/or governance standards

The preferred  

  • Bachelor’s degree in Information Systems, Governance, Legal, or related field
  • Experience with leading and delivering training and communication programs, tailored to stakeholder roles
  • Experience with developing policy attestation processes
  • CISA, CISM, CISSP, GIAC, or GICSP certifications.
  • Excellent writing and presentation skills with demonstrated ability to communicate clearly and concisely with peers and all levels of leadership
  • Have strong creative problem solving and analytical thinking
  • Cybersecurity/risk management governance, including development, maintenance, and implementation of cybersecurity policies and standards, particularly for ICS/OT.
  • Working knowledge of standard electric industry PLC and SCADA/HMI systems.

You should know… 

  • This position’s work mode is Hybrid.  The employee will report to an SCE facility for a set number of days with the option to work remotely on the remaining days.  Unless otherwise noted, employees are required to reside in the state of California.  Further details of this work mode will be discussed at the interview stage.
  • Visit our Candidate Resource page to get meaningful information related to benefits, perks, resources, testing information, and hiring process, and more!
  • Relocation may apply to this position.
  • This position requires testing and applicants who are identified to continue through the selection process will be invited to test via email. Please access our Information Guides to reference test: (Edison Individual Contributor Workstyles – Test 8203). Candidates who have previously passed these assessment(s), in some cases, may not need to retest again for this position.
  • This position has been identified as a NERC/CIP impacted position – Prior to being hired, the successful candidate must pass a Personnel Risk Assessment (PRA) or Background Investigation.  Once hired, the candidate must complete specified training prior to gaining un-escorted access to assigned work location and performing necessary job duties.
  • US Citizenship required as part of Critical Infrastructure security protocols.

About Southern California Edison 

The people at SCE don’t just keep the lights on. Our mission is so much bigger. We’re fueling the kind of innovation that’s changing an entire industry, and quite possibly the planet. Join us and create a future with cleaner energy, while providing our customers with the safety and reliability they demand. At SCE, you’ll have a chance to grow personally and professionally, making a real impact in Southern California and around the world.

At SCE, we celebrate our differences. We are a proud Equal Opportunity Employer and will not discriminate based on race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status or any other protected status.

We are committed to ensuring that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodations at (833) 343-0727. #L1-HY1

Job posted: 2021-11-09