Supervisor Cyber Security Program

About The Position

Requirements

• 8 Years + experience in information security and risk management. (Required)
• Maintains knowledge of current NRC Cyber Security Regulations (10 CFR 73.54, RG 5.71) and all NEI Cyber Security Industry Guidance documents (NEI 08- 09, 10-04).
• Current knowledge and expertise of NIST 800-53 (Recommended Security Controls for Federal Information Systems and Organizations) and NIST 800-82 (Guide to Industrial Control Systems (ICS) Security).
• Superior knowledge of cyber security capabilities of operating systems, networking devices, and control systems.
• Environmental and physical requirements are subject to crouching, stooping, bending, twisting and/or lifting up to 30 lbs; ascending/descending stairs; sitting for extended periods of time; and spending considerable time in front of computer monitors.
• Overtime and alternate work schedules as needed.
• Subject to callouts twenty-four hours per day seven days per week.
• Travel may be required.
• Frequent plant environment.
• May be required to carry phone.

Nice To Haves

• Bachelor degree in computer science, computer information systems, business administration (Preferred)
• Or Associates degree and three (3) years of experience.
• Without a degree, five (5) years of experience in Cyber/Information Security
• 0 - 2 Years Supervisory or leadership experience preferred. (Preferred)
• Certified Information Systems Security Professional (Preferred)
• Microsoft Certified Systems Engineer (preferred)
• Cisco Certified Network Administrator (Preferred)

Responsibilities

• Prepares and delivers oral and written communications relating to work group and station activities (e.g., reports, presentations, department meetings).
• Monitors work group reports and recommendations to assure evaluations, assessments and support are effectively developed and communicated.
• Develops and maintains appropriate technical expertise within the work group to ensure adequate talent to perform meaningful assessments and program oversight.
• Represents department/company on internal work teams and committees and with external entities.
• Understands and implements company policies.
• Provide employees with tools and training necessary for them to perform their assignments. Resolves problems and interpersonal conflicts in the section.
• Perform personnel activities for direct reports (promotions, salary changes, counseling, performance appraisals, development plans).
• Coordinates with USNRC, USDHS, USDOE, and FBI, as required, during and after cyber security events.
• Develops and maintains the Cyber Security plan and Defensive Strategy and ensures systems follow regulatory requirements associated with STP Cyber Security Plan
• Coordinates reviews and provides input to cyber security related design change packages for all systems at STP.
• Researches and evaluates cyber security equipment and management packages. Provides management with technological advice and recommendations.
• Implements and maintains a Life Cycle Management Program for systems related to Cyber Security.
• Maintains knowledge of digital systems in the energy sector, including digital instrumentation, programmable logic controllers (PLC), control systems, and distributed control systems.
• Accept ERO position as needed.
• Accept outage position as needed.
• Ability to obtain and maintain unescorted access.