SDG&E is not just an energy company, we are the architects of a brighter, cleaner future. Our employees power everyday life for 3.7 million people - bringing the energy to support their passions, ambitions, and the heartbeat of our community.

We call Southern California our home. It's where we chase our dreams and raise our families. That's why the people who live here deserve an energy company unlike any other, and that's why every day, SDG&E employees strive to be at the forefront of innovations to reduce emissions, modernize the electric grid, and enable our customers to make the transition to clean technologies. We're redefining sustainability, advancing zero-emissions solutions, and driving the electric vehicle revolution.

It takes the best to build the best - join us!

Primary Purpose:

Provides leadership and support for Cybersecurity Critical Infrastructure Protection (CIP) staff and systems. Manages the work efforts of others, leading teams responsible for security, privacy and compliance of all North American Electric Reliability Corporation (NERC) CIP systems and its data. Establishes the strategy and direction for security-specific systems within NERC CIP environments. Works closely with leadership personnel (e.g., managers, directors, senior management teams, and key senior stakeholders) across all NERC CIP utility business units. Works with Federal Regulatory & Compliance (FRC) staff on security-related policy and legislation. Responsible for cyber security of critical utility infrastructure. Responsible for maintaining relationships with key IT suppliers. Contributes to the development of the IT strategy and the company's security and privacy policies for NERC CIP environments.

Duties and Responsibilities:

• Responsible for operations of production and monitoring of CIP security systems. Solve problems of moderate complexity. Supervise the daily activities of team members. Prioritize team tasks and provide work direction and guidance, based on manager directives. Mentor, coach, and provide constructive feedback to team members. Ensure compliance with NERC CIP policies, laws, and regulations in ensuring a secure CIP environment, including cyber security of critical utility infrastructure. Work within an established budget. Implement business and process improvements developed by upper-level management.
• Clearly communicate with peers and management about CIP security status and activities. Keep management, business peers, and all stakeholders informed of threats, vulnerabilities, and action plans to minimize or mitigate threats to NERC CIP environments. Provide input to management on identifying and minimizing new threats, and vulnerabilities. Ensure effective implementation of plans to ensure business continuance of CIP standards, address Cybersecurity risks, and minimize risks. Manage relationships and negotiations with vendors. Develop and maintain a professional network of cybersecurity experts inside and outside the organization.
• Provide supervisory leadership for Cybersecurity and data privacy activities for NERC CIP environments. Provide input into CIP Cybersecurity strategy, including risk mitigation plans; implement strategy and monitor progress with direction from manager. Stay current on industry and government best-practices regarding NERC CIP security. Recommend policy and procedural changes reflective of these practices. Facilitate business and culture change in line with communicated strategic priorities. Contribute to the development of policies, procedures, and standards within area of specialization.
• Perform other duties as assigned (no more than 5% of duties).

Hybrid Schedule:

• Although the schedule may vary, typically this will allow the employee to work onsite three days per week and remotely on the remaining workdays.
• Must reside in Southern California or be willing to relocate upon hire.

Required Qualifications:

• Bachelor's Degree in computer science, engineering, or a related field or equivalent training/experience.
• 8 years - Information Technology and Security, including 5 years of Cybersecurity experience in NERC CIP standards.
• 5 years - Experience with implementing NERC CIP standards and controls in various information systems and technologies, including applications, networks, network topologies, communications protocols, software, hardware required.
• 3 years - Team leadership experience required.
• Professional certification such as Certified Information Systems Security Professional (CISSP) or equivalent required.
• Knowledge of various information systems and technologies, including applications, networks, network topologies, communications protocols, software, hardware in regards to CIP standards.
• Ability to work through diverse, sensitive company issues including digital forensics, investigations, legal matters, and close interface with Western Electricity Coordinating Council (WECC) and FRC teams. Ability to handle sensitive information, perform discreet tasks, properly dispose of information, and provide for secure management of data and to advise others on proper procedures.
• Thorough and up-to-date knowledge of cybersecurity best practices and NERC CIP standards.
• Strong ability to communicate complex technical information to various stakeholders and NERC CIP Business Units.
• Strong interpersonal communication skills, including influencing and negotiating.
• Strong analytical, problem solving, and strategic planning ability.
• Ability to work within a budget.
• Strong judgment and creative thinking skills to address cybersecurity CIP challenges.
• Ability to manage resources in area of specialization, as directed, to ensure that CIP security issues are handled effectively and efficiently.
• Ability to encourage high performance and strong collaboration among team members in area of supervision.
• Ability to negotiate vendor contracts.
• Ability to supervise complex projects.
• Emergency 24 hour response availability is required for this position.

Preferred Qualification:

• 5 years - Experience in a Fortune 500 or large US Government agency desired, with a strong technical emphasis.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, citizenship, disability or protected veteran status.

Note: SDG&E strives to ensure that employees are paid equitably and competitively. Starting salaries may vary based on factors such as relevant experience, qualifications, and education.

SDG&E offers a competitive total rewards package that goes beyond base salary. This position is eligible for an annual performance-based incentive (bonus) as well as other merit-based recognition. Company include health and welfare (medical, dental, vision), employer contributions to retirement benefits, life insurance, paid time off, as well as other company offerings such as tuition reimbursement, paid parental leave, and employee assistance programs.