Pattern Energy Group

Returning Candidate?

Cyber Security Analyst

Cyber Security Analyst

# of Openings 
1
Job Locations 
US-CA-San Francisco
US-TX-Houston
Posted Date 
10/10/2017
Category 
Information Technology
Job ID 
2017-1215

More information about this job

Overview

Pattern Energy Group is an independent, fully integrated energy company that develops, constructs, owns and operates renewable energy projects and transmission assets across North America, Japan, and parts of Latin America.  The company focuses primarily on wind, solar and transmission. The Pattern Energy Group team has a history as one of the top North American renewable energy and transmission providers in the industry. The team is dedicated to delivering the highest value for its customers, partners, financial supporters and the communities in which it works, while exhibiting a strong commitment to promoting environmental stewardship and corporate responsibility.

Pattern Energy Group operates in the United States, Canada, Japan, Chile, and Mexico with offices in San Francisco, Houston, San Diego, New York, Santiago, Tokyo, and Toronto.  Pattern Energy Group’s corporate headquarters is in San Francisco.

Responsibilities

Job Description:

The Cyber Security Analyst develops a governance, oversight, and support of operational resiliency and asset safeguards in a relevant, timely manner.  Review the current cyber threat landscape and help the company understand its security posture and act on the highest priority risks.

The Cyber Security Analyst takes a proactive approach to security by focusing on the cyber risks Pattern faces. Cybersecurity’s methodology and framework synthesizes current legal, regulatory, and operating mandates with Pattern’s business goals and operations. By taking this information and focusing on the cyber risks unique to Pattern’s business.

Key Accountabilities:

  • Identify, assess, prioritize and mitigate cybersecurity risks for new technologies.
  • Conducts technology assessments to understand capabilities of required systems or networks.
  • Provides input on security requirements to be included in statements of work and other appropriate procurement documents.
  • Identifies cyber capabilities strategies for technology development based on stakeholder requirements.
  • Performs security reviews and identify gaps in security architecture and design.
  • Identifies necessary security controls to be integrated within the development lifecycle.
  • Translates security controls into technical specifications and guidance to stakeholders to ensure common understanding across the stakeholders and enable adequate implementation.
  • Defines engineering solutions in collaboration with IT team and product owners to remediate inherent cyber security risks.
  • Partners with the IT team to recommend and deploy process improvements to ensure that security requirements are incorporated in all technology projects.
  • Own IDS-IPS, system,
  • Work closely with IT department on corporate technology development to fully secure information, computer, network, and processing systems.
  • Manage the administration of all computer security systems and their corresponding or associated software, including firewalls, intrusion detection systems, cryptography systems, and anti-virus software.
  • Provide monthly Cyber Sec reports to Director of IT
  • Provide quarterly report to Director of IT to be shared with the Board of Directors

Provides peer review and support for organizational deliverables

Qualifications

Educational and Work Experience

  • Bachelor’s degree required. Master’s degree preferred in Computer Science, Information Systems or other related field, or equivalent year work experience
  • 5 years of experience in IT, critical infrastructure, intelligence, and/or cyber information security work

 

Additional Requirements

  • Knowledge of regulatory requirements
  • Utility industry experience in one or more specialty areas (i.e. Gas Operations, Safety & Electric Transmission and Distribution, Generation and Energy Policy/Procurement
  • Certified Information Systems Security Professional (CISSP), Certified Information Systems Manager (CISM), Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Auditor (CISA), or equivalent
  • Cybersecurity best practices and standards (e.g. NIST, ISO, etc.)
  • Experience with Cyber/information security management policies, procedures, regulations and governance processes, Information Systems/Network Security, System Security Analysis, Information Assurance Compliance
  • Knowledge of risk management techniques, technological trends and developments in cyber/information security, systems/software development, engineering, integration, testing and evaluation and operating systems.
  • Understanding of computer networking concepts and protocols, and network security methodologies.
  • Ability to communicate and convey complex IT/OT technical security related concepts to business and technology teams.
  • Excellent written and verbal communication skills required
  • Ability to perform complex tasks using established policies, procedures and guidelines as reference
  • Complex problem analysis and decision-making skills.

Pattern Energy Group LP is an equal opportunity employer