Missouri River Energy Services (MRES) is an organization of 61 member municipalities that own and operate their own electrical distribution systems. Inspired by the company’s mission to supply its members with reliable, cost-effective, long-term energy and energy services in a fiscally responsible and environmentally sensitive manner, members of the MRES team embrace the challenge of understanding and solving the evolving energy needs of all customers today, and for years to come.
We are looking to hire a manager of cyber security. In this position, you will have the opportunity to manage the information technology (IT) and operational technology (OT) cyber security requirements for MRES. This position:
Develops corporate IT and OT cyber security policy and operating procedures; ensures network security; provides project management, subject-matter expert support for internal staff, regulatory compliance, and corporate IT/OT security strategy.
Manages assigned major and critical application IT Security Systems and services (including network hardware, software systems, desktop systems, mobile and remote systems, associated operating systems, risk assessments, security audits, penetration testing, and vulnerability assessments) to meet user-functional needs.
Reviews day-to-day management of IT and OT security operations.
Provides leadership, vision, and guidance for programs related to cyber security and compliance management that have organization-wide impact..
Develops and institutes cyber and physical security compliance goals, objectives, policies, and procedures. Develops metrics and reporting for management to ensure compliance with internal and external compliance requirements, including NERC/CIP regulations.
Creates and communicates strategies for risk mitigation and deploys an integrated security toolset.
Manages securing of all platforms and centralizes security event management.
Develops, implements, and maintains incident response and disaster recovery planning activities.
Identifies, selects, and deploys standard risk assessment models and appropriate governance frameworks, such as NIST or COBIT.
Develops and delivers risk and security awareness training for key staff and stakeholders.
Establishes guiding principles for flexible, yet holistic, compliance management for the organization.
Knowledge, Skills, Abilities:
Bachelor's degree from four-year college or university in information systems or similar field and seven years of progressively responsible experience to include a minimum of five years’ leadership experience or an equivalent combination of education and experience sufficient to successfully perform the essential duties of the job. Advanced degree preferred.
Certifications in CISSP, CISA, CISM, or GICSP (preferred). Apply Today:
We provide very competitive wages, a comprehensive/low-cost benefits package, and an outstanding work environment that promotes a long-lasting career. For consideration, send your resume describing your qualifications for the position to firstname.lastname@example.org. The position closes: March 12, 2020. MRES is an Equal Opportunity Employer