Con Edison

Systems Cyber Specialist - Cyber Governance and Information Protection

Con Edison  •  New York City, NY (Onsite)  •  25 days ago
Apply
Save Job
Mark Applied Mark Interviewed Mark Offered
Hide Job Report Job
AI can make mistakes so check important info. Chat history is never stored.

Job Description

The Systems Cyber Specialist, under the general guidance of the Systems Manager or Project Manager, is responsible for managing large-scale projects and initiatives, and for providing technical support for existing cyber security tools within Information Security. This role includes overseeing, mentoring, and coordinating the work of a team of analysts who support ongoing IT and cybersecurity projects, while serving as a team leader by setting priorities, assigning tasks, monitoring performance, and providing technical direction and guidance. The Systems Cyber Specialist fosters collaboration, ensures adherence to best practices and standards, supports professional development of team members, and acts as an escalation point for complex technical and operational issues. The role leads and assumes responsibility for data security and governance. This includes implementing and enforcing data protection standards, data classification, access controls, and governance frameworks to ensure confidentiality, integrity, availability, and regulatory compliance of enterprise data. Additionally, the position is responsible for day-to-day cybersecurity administrative tasks, problem-solving, issue resolution, stakeholder communication, and the continuous improvement of cybersecurity, team effectiveness, and data governance practices.

Core Responsibilities

  • Oversee responsibilities related to identifying, classifying, and protecting sensitive data throughout the organization.
  • Ensure thorough coverage and accountability for all aspects of enterprise data security.
  • Lead enterprise-wide sensitive data discovery efforts across varied repositories, including both structured and unstructured.
  • Responsible for defining and maintaining a comprehensive data classification taxonomy.
  • Enforce a least privileged access model across enterprise data stores.
  • Serves as a people manager with responsibility for hiring, coaching, work assignment, performance management, and ongoing development of a team supporting critical IT and cybersecurity initiatives.
  • Design, implement, and manage Data Loss Prevention (DLP) policies using tools such as Microsoft Purview.
  • Establish and maintain a data security risk register aligned with enterprise requirements.
  • Define and track key performance indicators (KPIs) and key risk indicators (KRIs); develop executive dashboards and board-level reporting for metrics and executive communications.
  • Drive data security awareness and behavior change programs across the organization.
  • Demonstrate leadership qualities and responsibilities relevant to core-to-edge enterprise data security initiatives.

Required Education/Experience

  • Master's Degree Information Technology,
  • Computer Science, Math,
  • Engineering or business
  • related disciplines. and a minimum of three (3)
  • years' full-time of
  • relevant experience IT or Information Security or
  • Bachelor's Degree Computer Science,
  • Computer Engineering, or
  • Information Security and a minimum of four (4)
  • years' full-time relevant
  • experience IT or Information Security or
  • Associate's Degree Computer Science,
  • Computer Engineering, or
  • Information Security and a minimum of five (5)
  • years' full-time
  • relevant experience IT or Information Security

Preferred Education/Experience

  • Master's Degree Information Technology,
  • Computer Science, Math,
  • Engineering or business
  • related disciplines. and a minimum of three (3)
  • years' full-time of
  • relevant experience With certifications in CISSP, CISM, CIPP are
  • preferred.
  • Three (3) years' full-time work experience
  • in Information Security;
  • Computer Incident Response Team (CIRT),
  • Cyber Security Operation Center (CSOC), or
  • Incident Management experience is
  • preferred.

Relevant Work Experience

  • 3-5 years experience in designing, developing, implementing secure architectures and/or processes, required.
  • Thorough understanding of security standards and strong understanding of cyber security principles, required.
  • Experience in evaluating technology and establishing standard designs, required.
  • Experience with implementing or integrating commercially available cybersecurity components, required.
  • Experience in cybersecurity best practices, security tools, required.
  • Experience in implementing continuous monitoring and detection capabilities to identify anomalous or unauthorized activity in enterprise data space, required.
  • Ability to handle multiple assignments with changing priorities while meeting deadlines, required.
  • Must be flexible and able to work off-hours as required to support deployments, resolve production problems or respond to corporate emergencies, required.
  • Excellent oral and written communication. Must be comfortable and skilled at selling information security processes and techniques. Must be able to communicate designs and give persuasive presentations. Must be able to interact with all levels of management and communicate technical concepts to a non-technical audience, required.
  • Experience in integrating data security controls with governance and risk frameworks to provide measurable reduction in data exposure and improved compliance posture, required.
  • Experience in leading enterprise wide sensitive data discovery across structured and unstructured environments, eliminating blind spots and uncovering high-risk data exposure, preferred.
  • Vulnerability, Threat, Risk management and/or, Compliance experience, preferred.
  • Experience with data classification tools such as Varonis or similar, preferred.
  • Ability to establish medium and long-term plans and priorities and estimate
  • investment requirements skills, preferred.

Skills and Abilities

  • Ability to lead/manage others
  • Builds and manages effective teams
  • Effectively coaches and delivers constructive feedback
  • Excellent collaboration and team building skills
  • Excellent collaboration and team building skills
  • Project Demonstrated project management skills

Licenses and Certifications

  • Driver's License

Physical Demands

  • Sit or stand to answer a phone for the duration of the workday
  • Sit or stand to use a keyboard, mouse, and computer for the duration of the workday
  • Ability to read small print and symbols

Additional Physical Demands

  • The selected candidate will be assigned a System Emergency Assignment (i.e., an emergency response role) and will be expected to work non-business hours during emergencies, which may include nights, weekends, and holidays.
  • The selected candidate will be assigned a System Emergency Assignment (i.e., an emergency response role) and will be expected to work non-business hours during emergencies, which may include nights, weekends, and holidays.

Mission Statement:


Consolidated Edison Company of New York, Inc. (Con Edison), Orange & Rockland Utilities (O&R), and Consolidated Edison Transmission (CET) employees are required to follow health, safety, and environmental policies, EEO, Standards of Business Conduct, and all other applicable company policy and procedures. We all share a responsibility to advance the company’s mission by excelling at our three corporate priorities – safety of our people and the public, operational excellence in all that we do, and ensuring the best possible customer experience.

Benefits:


We are dedicated to supporting the physical, mental, and financial health of our employees and their families. This commitment extends beyond the workplace to foster personal growth and holistic wellbeing. Our life-changing rewards package includes:


  • Rich medical & pharmacy benefits, including vision benefits
  • Dental benefits
  • Health Savings Accounts
  • Health Care and Dependent Care Flexible Spending Accounts
  • 401(k) with robust matching
  • Employer paid Pension Plan
  • Employee Stock Purchase Plan with a generous matching contribution
  • State of the art Employee Assistance Program
  • Paid Parental Leave
  • Generous paid time off plus paid holidays
  • Family support: emergency backup child, & elder care assistance
  • Social responsibility and volunteer opportunities
  • Employee discount program
  • Commuter Benefits
  • Culture of growth and learning: career development; tuition reimbursement; recognition program
  • Life and Long-Term Disability Benefits


*Please be aware that some benefits may not apply to provisional or part-time job titles.

Con Edison

About Con Edison

We provide power to more than 10 million people and businesses across NYC and Westchester. Reliability and accessibility are central to what we do and how we provide energy service. Leading the industry to power tomorrow is our other focus- we are committed to aggressively transitioning away from fossil fuels to a net-zero economy by 2050. To help achieve this we collaborate with customers, regulators, policymakers, engineers, and other stakeholders to ensure our clean energy future is informed by principles of affordability, equity, and environmental justice. We’re also heavily investing in new technologies and the infrastructure that can get us there.

What are a few things we have achieved so far?

• Since 2009, our energy efficiency programs have prevented 11 million metric tons of carbon emissions – the same amount it would take to power 1.4 million homes for a year

• Recently, we’ve embarked on an 8-year project to make our systems more resilient in the face of extreme weather events

Industry
Energy & Utilities
Company Size
5,001-10,000 employees
Headquarters
New York, NY
Year Founded
Unknown
Website
coned.com
Social Media