JOB INFORMATION
Job Title: Supervisor Enterprise Security
Job Code: 128880
Pay Grade: 59
JOB SUMMARY
Equal Opportunity Employer - Minorities, Women, Individuals with DisABILITIES & Veterans Encouraged to apply.
Responsible for analyzing, developing and managing Corporate Cyber Security policy, standards, best practices and procedures to ensure appropriate level of data and information security is maintained across the corporation. Advise staff and management throughout the organization on relevant Cyber Security issues. Fosters appreciation among business leaders of the importance of cyber security in achieving their goals, and in adhering to corporate cyber security policies, standards and practices.
LEVEL OF RESPONSIBILITY
Supervises daily activities of team. Sets priorities to accomplish task or process completion. Decisions guided by policies, procedures and business plan. Typically does not perform same work as subordinates.
ESSENTIAL FUNCTIONS
Remain current with continual development of cyber security threats in the world at large, security software and IT systems as they become available in the market to include evaluating security implications of new technologies and applications as they are considered by the company.
Evaluate security requirements to make sure they are appropriately architected, designed, and implemented.
Responsible for the evaluation and recommendation of security applications and systems.
Represent the cyber security needs of OGE by providing security expertise and assistance for all IT or Cyber Security related projects.
Supervise and actively participate in the planning and implementation of security controls for all IT or Cyber Security related projects.
Responsible for evaluating corporate data privacy issues and recommending solutions to appropriately mitigate those issues according to industry norms.
Coordinate with Legal department and Compliance Officer to ensure solutions meet regulatory and internal policy requirements.
Assist in the implementation of processes and methodologies for addressing non-compliance to cyber security standards; facilitate migration of non-compliant environments to a compliant state.
Provide recommendations and assist in the implementation of changes to work methods and procedures to ensure strong and effective security measures.
Assist internal and external auditors in conducting security reviews, receive and review their findings and recommend, adopt and implement actionable solutions.
Provide oversight and mentoring of staff regarding appropriate security controls around systems such as: network, VPN, operating system, database, application, and hardware systems.
Assist in updating, maintaining and documentation of security controls.
Routinely prepare security related reports on various security issues.
Lead/conduct security assessments to ensure adherence to company specific security policy, procedures and industry standards.
Lead the review and definition of security requirements and review systems to ensure they are designed to comply with established standards.
Investigate security violations and breaches; prepare reports on intrusions as necessary.
May oversee the audits of computer systems to ensure that they are operating securely and that data is protected from both internal and external attack.
REQUIREMENTS
Bachelor's Degree and 6 years of experience in security, technology or engineering in the utility industry; Or
High School Diploma/GED equivalent and 10 years of experience in security, technology or engineering in the utility industry and
3 years of experience of leading large projects or project teams.
Preferred qualifications:
Ability to utilize tools and/or applications to automate existing processes to increase operational efficiencies.
Knowledge of and demonstrated ability to assist in activities related to compliance with Sarbanes-Oxley Act of 2002.
WORKING CONDITIONS
Occasional overnight or extended travel required.
Office environment.
Ability to work outside of normal workday/workweek to meet deadlines.
SPECIAL SAFETY REQUIREMENTS
All positions in which driving is an essential function of the job, regardless if the job code is marked safety sensitive or not, will also be included as safety sensitive. Individuals in positions in which driving is an essential function are subject to the terms and conditions set forth in OGE Energy Corp.'s Drug Testing Plan.
KNOWLEDGE, SKILLS AND ABILITIES (KSAS)
In depth knowledge and experience in all facets of cyber security related issues.
Recognized as an expert in area of specialization.
Demonstrated initiative and ability to work well under pressure.
Excellent interpersonal skills.
Ability to work effectively in a team environment.
Recognized leader/achiever.
Innovative
Exceptional problem solving skills, organization and analytical skills.
Ability to lead and direct diverse teams.
Effective business communication and consultation skills to communicate with all levels throughout the organization and outside professionals.
Attain Certified Information Systems Security Professional (CISSP) certification within 12 months.
OG&E
321 N Harvey
Oklahoma City
Oklahoma United States
www.oge.com