Apply on Employer Site

Sempra Infrastructure · 1 month ago

Senior Cybersecurity Analyst - Security Operations Center (Operations Technology)

Houston, TX, 77056, United States

Full-time

Onsite

Senior Level

Sempra Infrastructure is focused on enhancing security functions across operational technologies. The Senior Cybersecurity Analyst will design and implement systems to protect Sempra's assets and data, coordinating with various teams to ensure security measures are effectively integrated throughout the organization.

EnergyInfrastructureSustainability

Responsibilities

Provides incident response plans and procedures for foreseeable incidents and continuously update the incident response playbook in line with emerging threats and leading industry standards

Develops and maintains incident response, threat and vulnerability, and security monitoring documentation

Oversees and leads Cybersecurity Specialists – OT, ensuring the specialists follow incident handling procedures and processes

Drives the planning, execution, and management of multi-faceted projects related to Cyber security operations center

Responsible for the design and implementation of activities related to security monitoring and incident response

Oversee OT Specialist participation and ensure OT Specialist provide quality technical and procedural documents

Implements OT security operations in accordance with industry standards and practices (i.e. NIST SP 800-82 AND ISO/IEC 62443)

Responsible for ensuring assigned projects and activities within the functional areas meet all compliance and architecture standards

Ensures proper oversight for solutions and artifacts

Ensures re-use through implementation of shared technology assets

Coordinates activities of incident response, threat and vulnerability analysis, and security monitoring for operational technologies to ensure timely detection, prevention, and response to security incidents

Coordinates the implementation of requirements and recommendations to OT / critical infrastructure

Researches SCADA vendors and CISA advisory documents

Works with all business lines to ensure that incidents are quickly identified and remediated and to define recommended threat mitigation actions

Participates in business continuity plans in business lines

Maintains alignment with IT governance/risk objectives in solution delivery

Drives quick escalation and resolution during major incidents; prioritizes actions to ensure maximum protection of company assets and data

Provides detailed explanations of security events and their impact on specific parts of the business

Train OT Specialists and IT personnel to improve cross-training

Incorporates areas of IT and OT convergence; works closely with IT to secure technologies

Drives continuous improvement across OT Incident response, threat and vulnerability, and security monitoring functions; ensures functions remain up to date with the current threat landscape

Drives innovation and identifies emerging technologies to sustain and automate the cyber security operations

Drives tabletop exercises with playbooks and pertest

Reviews of OT architectures for OT security improvements

Works with cross-functional IT and enterprise teams to build alignment and model commitment to high performance as “one team”

Drives the relationship and communications to across business lines to ensure security is embedded within solutions

Performs other duties as assigned (no more than 5% of duties)

Qualification

Incident response planningThreatVulnerability analysisSecurity monitoringOT security operationsNIST SP 800-82ISO/IEC 62443Cross-trainingCollaborationProject managementCommunication skills

Required

Experience in designing and implementing security systems and processes across operational technologies (OT)

Ability to ensure 24/7 protection of assets and data against evolving threats

Experience in developing and maintaining incident response, threat and vulnerability, and security monitoring documentation

Experience in overseeing and leading Cybersecurity Specialists – OT

Experience in planning, executing, and managing multi-faceted projects related to Cybersecurity operations center

Knowledge of industry standards and practices (i.e. NIST SP 800-82 AND ISO/IEC 62443)

Experience in coordinating incident response, threat and vulnerability analysis, and security monitoring for operational technologies

Ability to research SCADA vendors and CISA advisory documents

Experience in maintaining alignment with IT governance/risk objectives in solution delivery

Experience in driving quick escalation and resolution during major incidents

Ability to provide detailed explanations of security events and their impact on the business

Experience in training OT Specialists and IT personnel

Ability to incorporate areas of IT and OT convergence

Experience in driving continuous improvement across OT Incident response, threat and vulnerability, and security monitoring functions

Experience in driving innovation and identifying emerging technologies for cyber security operations

Experience in conducting tabletop exercises with playbooks

Experience in reviewing OT architectures for security improvements

Ability to work with cross-functional IT and enterprise teams

Company

Sempra Infrastructure

Sempra develop, build, operate and invest in infrastructure critical to meet the world's energy and climate needs. It is a sub-organization of Sempra Energy.

Founded in 1998