Job Specifications
This role will work with the Senior Manager Security Governance within Black Hills Energy Enterprise Security department. As part of the security governance & awareness team, this role will help with driving and improving the Black Hills Energy Enterprise Security Program and security risk posture of the company. Additionally, this position will continuingly review, refine, and recommend improvements to the Information Security operating model, enterprise policies, standards, and processes in order to provide reporting and recommendations to the CISO, CIO, and senior leadership.
SALARY RANGE: $73,700 - $110,600 (Determined by the knowledge, skills and abilities of the applicant.)
REPORTING RELATIONSHIP: Senior Manager Security Governance
LOCATION: This position may be located in Council Bluffs, Iowa; our corporate headquarters in Rapid City, South Dakota; or remote.
- Remote: This position is remote eligible in the United States. Currently, Black Hills Energy may have employees in the following states: AR, CO, IA, NE, KS, SD, WY, TX, or IN. This role may also require occasional work at a Black Hills Energy office as agreed to with your manager. This list is continuously evolving and being updated, please check back with us if the state you live in is not currently eligible.
- In-Office Location: Our corporate headquarters in Rapid City, South Dakota or Council Bluffs, Iowa.
- A comprehensive relocation package is offered for this position! Details about his package will be shared during the interview and offer process.
ESSENTIAL JOB FUNCTIONS:
- Work with the Information Security team to improve the protection of information for the company.
- Perform periodic security control assessments and reviews in accordance with security plans.
- Design and implement automation to enhance IT Controls or manual processes.
- Review, update and develop required security documentation, including Information Security policies and standards.
- Perform security testing including review, analysis, and validation of findings, and tracking these to remediation.
- Develop and compile metrics, dashboards, and analytics for executive-level audiences, using SQL and/or reporting tools (Excel data function, Excel pivot table, PowerBI).
- Stay current on IT compliance trends and news related to security (NIST, Cobit, PCI, SOX, GDPR ) and make recommendations to the security team.
- Align Information Security processes with Cyber Security Framework such as CIS, ISO 27001, PCI, NIST.
- Support project assignments with strong and effective communication, contributing to success or project through clearly communicated security control requirements.
ADDITIONAL RESPONSIBILITIES:
- Understand current as well as emerging security threats and design security controls to mitigate threats where possible.
- Serve as security ambassador, information security domain expert, trusted advisor; provide advisory and consulting services as needed to various department and project teams.
- Maintain an awareness of existing and proposed security standard setting groups as well as State and Federal legislation and regulations pertaining to information security.
QUALIFICATIONS:
- Bachelor's degree in Computer Science, Information Assurance, Network Security Administration or the equivalent combination of education and experience required.
- Minimum of (3) three years of Information Technology and/or Information Security work experience required.
Black Hills Corporation
625 Ninth St
Rapid City
South Dakota United States
www.blackhillscorp.com
