Job Posting End Date
06-13-2026
Please note the job posting will close on the day before the posting end date.
Responsible for large-scale security assignments providing direction to other team members. Responsible for gathering, investigating, and analyzing very complex security requirements, processes, and incidents. Leads analysis of security controls assessments (internal and third party) through application security testing, penetration testing or other means to ensure controls effectiveness. Leads the identification and documentation of potential mitigations /remediations and ensures report creation of findings with identified risk response. Responsible for the conceptual design of implementation strategies on assigned security projects/activities. Leads advanced level implementation, support, and/or usage of technical solutions. Leads others in advanced problem solving, decision-making, and functional area knowledge. Mentors and provides functional/technical work direction to team.
What you’ll do:
Essential Job Functions & Tasks
Lead the Vulnerability Dispositioning sub-team (Pillar 3 of AEP's four-pillar Cybersecurity Vulnerability Management program), responsible for moving analyzed vulnerabilities through to documented remediation decisions in partnership with AEP business units.
Receive analyzed vulnerabilities from the Vulnerability Analysis sub-team and oversee the team's work building remediation action plans with affected business units, including patch, mitigate, configuration change, and formal exception paths.
Own end-to-end operation of AEP's vulnerability exception process, including intake, validation, risk ranking inputs, and routing of exceptions through the appropriate Director, VP, and SVP approval chains.
Own the File Integrity Assurance function within the Vulnerability Management program, ensuring the integrity of monitored files and systems is maintained, reviewed, and reported on as part of the team's overall risk posture.
Serve as the AEP point of contact for the on-premises Fortress vulnerability management platform — partnering directly with the Fortress vendor on platform health, configuration, and roadmap alignment with AEP's needs.
Perform quality control on Fortress platform releases, regression-test new versions before they reach the team, validate that the platform behaves as expected, and submit, track, and drive resolution of bug tickets and feature requests with the vendor.
Lead the continued rollout of the vulnerability automation initiative, including the Fortress platform's automated vulnerability ticketing capability — driving design, configuration, testing, business unit onboarding, and post-launch tuning.
Host twice-weekly Vulnerability Management office hours for remediation teams across AEP, fielding questions, clarifying process, and removing roadblocks that slow business unit response.
Provide technical leadership and day-to-day coordination for one junior AEP analyst and approximately three Fortress Information Security contractors supporting routine dispositioning processes.
Coach, mentor, and develop junior team members and contract personnel; establish processes, runbooks, and standards that allow analysts at varying skill levels to operate consistently and effectively.
Build and maintain strong, collaborative working relationships with business unit partners across IT, Operational Technology, and corporate functions; model a constructive, helpful posture rather than an adversarial enforcement stance and hold the team to the same standard.
Build and maintain strong working relationships with AEP's Operational Technology partners (generation, transmission, distribution) so that dispositioning activities are coordinated, respectful of operational realities, and supportive of safe operations.
Ensure clean, structured warm handoffs of dispositioned items from the Dispositioning sub-team to the Vulnerability Tracking sub-team (Pillar 4), including approved exceptions, action plans, and remediation commitments with full context.
Produce and oversee director, VP, and SVP-level exception reports, approval packets, and status summaries; own the templates and standards the team uses to communicate with executive audiences.
Maintain clear, current documentation of exception status, business unit commitments, and outstanding action items so leadership has accurate visibility at any point in the process.
Advise the Vulnerability Management Manager on platform effectiveness, vendor performance, dispositioning process improvements, and resource needs.
Communicate complex risk decisions clearly to peers, business partners, contractors, and leadership at all levels of the organization.
Maintain awareness of NERC CIP regulatory requirements as dispositioning activities interact with CIP-regulated assets and information.
Participate in a shared on-call rotation across the broader Vulnerability Management team.
Pass and maintain the background check required for access to NERC CIP-regulated assets and information.
Additional Job Functions
Vulnerability Dispositioning Lead
Vulnerability Exception Lead
Cybersecurity Risk Lead
Cybersecurity Platform Lead
Vulnerability Management Operations Lead
Cybersecurity Specialist Lead
What We're Looking For:
Education requirements are listed below:
Bachelor's degree or associate degree with 2 years relevant experience in system administration/help desk/security (cyber or physical) OR High School Diploma/GED with 4 years relevant experience in IT system administration/help desk/security (cyber or physical).
Work Experience requirement listed below:
7 or more years of Information Technology related experience; OR 5 or more years of security related experience, which may include military/government work experience in addition to any experience identified above.
What You'll Get:
Base Salary from $ 116,255.00 - $151,132.50year.In addition to a competitive compensation, AEP offers a unique comprehensive benefits package that aims to support and enhance the overall well-being of our employees.
At AEP, we’re more than just an energy company — we’re a team of dedicated professionals committed to delivering safe, reliable, and innovative energy solutions. Guided by our mission to put the customer first, we strive to exceed expectations by listening, responding, and continuously improving the way we serve our communities. If you're passionate about making a meaningful impact and being part of a forward-thinking organization, this is the company for you!
Compensation Data
Compensation Grade:
SP20-009
Compensation Range:
$116,255.00 - $151,132.50
The Physical Demand Level for this job is: S – Sedentary Work: Exerting up to 10 pounds of force occasionally (Occasionally: activity or condition exists up to 1/3 of the time) and/or a negligible amount of force frequently. (Frequently: activity or condition exists from 1/3 to 2/3 of the time) to lift, carry, push, pull or otherwise move objects, including the human body. Sedentary work involves sitting most of the time but may involve walking or standing for brief periods of time. Jobs are sedentary if walking and standing are required only occasionally, and all other sedentary criteria are met.
Hear about it first! Get job alerts by email. Log in to your Candidate Home Account today! If you don't have an account, you can create one.
It is hereby reaffirmed that it is the policy of American Electric Power (AEP) to provide Equal Employment Opportunity in all respects of the employer-employee relationship including recruiting, hiring, upgrading and promotion, conditions and privileges of employment, company sponsored training programs, educational assistance, social and recreational programs, compensation, benefits, transfers, discipline, layoffs and termination of employment to all employees and applicants without discrimination because of race, color, religion, sex (including pregnancy, gender identity, and sexual orientation), national origin, age, veteran or military status, disability, genetic information, or any other basis prohibited by applicable law. When required by law, we might record certain information or applicants for employment may be invited to voluntarily disclose protected characteristics.
Our team at American Electric Power is committed to improving our customers' lives with reliable, affordable power. We are investing $54 billion from 2025 through 2029 to enhance service for customers and support the growing energy needs of our communities. Our nearly 16,000 employees operate and maintain the nation's largest electric transmission system with 40,000 line miles, along with more than 225,000 miles of distribution lines to deliver energy to 5.6 million customers in 11 states. AEP also is one of the nation's largest electricity producers with approximately 29,000 megawatts of diverse generating capacity. We are focused on safety and operational excellence, creating value for our stakeholders and bringing opportunity to our service territory through economic development and community engagement. Our family of companies includes AEP Ohio, AEP Texas, Appalachian Power (in Virginia and West Virginia), AEP Appalachian Power (in Tennessee), Indiana Michigan Power, Kentucky Power, Public Service Company of Oklahoma, and Southwestern Electric Power Company (in Arkansas, Louisiana, east Texas and the Texas Panhandle). AEP also owns AEP Energy, which provides innovative competitive energy solutions nationwide. AEP is headquartered in Columbus, Ohio. For more information, visit aep.com.
