Senior Cyber Security Specialist, Threat Hunt

Join the Clean Energy Revolution

Become a Senior Cyber Security Specialist, Threat Hunt at Southern California Edison (SCE) and build a better tomorrow. In this job, you\u2019ll be a part of the Cyber Threat Hunt and Intelligence team, a sub-team under SCE\u2019s broader Cybersecurity Operations Center (CSOC) \u2013 the team is responsible for keeping SCE\u2019s network and grid secure from emerging threats and cyber actors. As a Senior Cyber Security Specialist, Threat Hunt, your work will help power our planet, reduce carbon emissions and create cleaner air for everyone. Are you ready to take on the challenge to help us build the future?

\u00a0

In this role as Senior Specialist for the Cyber Threat Hunt and Intelligence Team, you will be primarily responsible for not only conducting continuous research on emerging threats and threat actor activity but also actioning that intelligence through proactive and innovate threat hunts using SIEM, EDR, and other technology. We are looking for a Senior Cyber Specialist with a technical and analytical background that can leverage their solid understanding of networks, network architectures, and adversarial tradecraft to enable proactive and innovative approaches to their cybersecurity threat hunting work across the SCE environment, with a specific focus on Operational Technology (OT). Job function examples include:

\u00a0

• Leverage technical expertise and adversarial knowledge to hunt across the SCE Admin, cloud, and OT environment
• Aid in the development and maturation of the OT hunt program
• Breaking down and leveraging technical intelligence reports and analyze Tactics Techniques and Procedures utilized by cyber adversaries and proactively hunt for those across the SCE environment.
• Use understanding of Vulnerability Exploitation to Hunt for Evidence of exploitation of emerging vulnerabilities.
• Through hunting efforts, proactively identify and document logging gaps, architectural gaps, visibility gaps, misconfigurations and control gaps, and other observations to aid in the maturation SCE\u2019s cyber posture.
• Articulate hunt findings and advise on remediation methods. Aid in coordinating execution of these remediations.
• Work with Threat Hunt Team lead to identify capability and process improvements for threat hunting program.
• Assists in the development of relevant detections to identify current and future malicious/suspicious activity. Candidate should be comfortable creating detections within multiple different operating systems and network appliances.

Responsibilities

• Performs security risk, vulnerability assessments, and business impact analysis for medium complexity information systems
• Carries out project reporting for assigned projects, monitoring project status, timeline and budgets
• Assists in the planning and implementation of current and future security domains including those which may introduce new service areas
• Adopts and follows security controls, processes, and procedures to manage risk across all information system environments (infrastructure, network, and applications) with the assistance of the application and infrastructure management teams
• Monitors technology risk, identifies root cause or key themes, recommends for resolution
• Investigates suspected attacks and manages security incidents. Uses forensics where appropriate
• Reviews and shapes the production of evidence to support internal and external audits
• Implements appropriate security measures for information systems and applications that control access to data, and prevents unauthorized modification, destruction, or disclosure of information
• Develops and maintains metrics, alerts, dashboards, and reports for security monitoring
• Maintains incident response plans and performs incident response activities as directed and in accordance with established procedures and guidelines and those of federal authorities
• A material job duty of all positions within the Company is ensuring the protection of all its physical, financial and cybersecurity assets, and properly accessing and managing private customer data, proprietary information, confidential medical records, and other types of highly sensitive information and data with the highest standards of conduct and integrity.

Minimum Qualifications

• Five or more years of experience in information technology, information security and/or cybersecurity.
• US Citizenship Required.

\u00a0

Preferred Qualifications

• Bachelor's degree in specialized field or an equivalent combination of education, training, and experience.
• Two or more years of experience threat hunting.
• Experience supporting cyber defense analysis of Operational Technology (OT) Networks to include Integrated Controls Systems (ICS), SCADA, and Process Control Networks (PCN).
• Two or more years of experience working in Security Operations Centers.
• Two or more years of experience working with Incident Response and Cyber Threat Intelligence functions.
• Security +, CISSP, GCIA, GCIH, GMON, GICSP, GRID, etc.

\u00a0

\u00a0

Additional Information

• This position\u2019s work mode is\u00a0hybrid.\u00a0The employee will report to an SCE facility for a set number of days with the option to work remotely on the remaining days. Unless otherwise noted, employees are required to work and\u00a0reside in the state of California. Further details of this work mode will be discussed at the interview stage.\u00a0The work mode can be changed based on business needs.
• Visit our\u00a0Candidate Resource\u00a0page to get meaningful information related to benefits, perks, resources, testing information, hiring process, and more!
• Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.\u00a0

\u00a0

About Southern California Edison

The people at SCE don't just keep the lights on. Our mission is so much bigger. We\u2019re fueling the kind of innovation that\u2019s changing an entire industry, and quite possibly the planet. Join us and create a future with cleaner energy, while providing our customers with the safety and reliability they demand. At SCE, you\u2019ll have a chance to grow personally and professionally, making a real impact in Southern California and around the world.

\u00a0

Southern California Edison is a proud Equal Opportunity Employer, including disability and protected veteran status.

\u00a0

We are committed to ensuring that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodations at (833) 343-0727.