Cybersecurity Senior Advisor

Southern California Edison

Rosemead, CA

Apply

JOB DETAILS

SKILLS

Access Control, Alternative Energy, Analysis Skills, Applications Security, Architectural Analysis, Auditing, CISSP - Certified Information Systems Security Professional, Cloud Computing, Code Reviews, Computer Hacking, Computer Security, Concrete, Customer/Client Research, DNS (Domain Name System), Data Analysis, Data Management, Data Quality, Environmental Sciences, Error Handling, Establish Priorities, GSEC - GIAC Security Essentials Certification, Hardware Configuration Management, ISO (International Organization for Standardization), Identify Issues, Information Technology & Information Systems, Information Technology/Systems Audit, Information/Data Security (InfoSec), Internet Security, Interviewing Skills, Linux Operating System, Medical Records, Metrics, Microsoft Windows System Internals/Programming, Multiplatform/Cross-Platform, Operating Systems, Penetration Testing, Physical Science, Problem Solving Skills, Public Key Infrastructure (PKI), Regulatory Requirements, Requirements Management, Risk, Risk Analysis, Risk Management, Root Cause Analysis, SSL-TLS (Secure Socket Layer - Transport Layer Security), Security Analysis, Security Architecture, Security Attacks, Security Compliance, Security Design, Security Monitoring, Security Policy, Software Configuration Management, Software Engineering, Software Patches, Systems Maintenance, TCP/IP (Transmission Control Protocol/Internet Protocol), Team Player, Technical Leadership, Threat Modeling, Time Management, Treatment Plan, U.S. National Institute of Standards and Technology (NIST), United States Citizen, Willing to Travel, Work From Home

LOCATION

Rosemead, CA

POSTED

Today

Join the Clean Energy Revolution

Become a Cybersecurity Senior Advisor at Southern California Edison (SCE) and build a better tomorrow. In this role, you'll be part of SCE's Cybersecurity Exposure Team, leading deep, hands-on risk assessments across enterprise technology and critical operational environments (IT/OT). You'll identify priority systems and threat scenarios, validate control effectiveness, and translate findings into practical risk treatment plans with clear owners and measurable outcomes. Exposure Team members collaborate with internal teams and trusted third parties to drive remediation through to closure and ensure risk is continuously managed.

_Additionally, you'll:_

+ Partner with infrastructure teams to perform threat modeling and attack-path analysis, then recommends concrete platform and network changes (segmentation, identity controls, hardening, logging) that close gaps and reduce exposure.

+ Lead deep-dive cybersecurity assessments with IT and Quality partners: validates controls, performs vulnerability discovery and prioritization, reviews configuration baselines, and drives risk treatment plans; supports investigations and root-cause analysis for security incidents and policy violations.

+ Drive delivery of complex security initiatives from design through rollout, defining success metrics, managing technical risks and dependencies, and coordinating internal teams and vendors to deliver on time.

+ Define and maintain secure-by-default baselines across on-prem and cloud environments, implementing hardening standards, access controls, key/secret handling, and automated guardrails to support repeatable secure build and deployment practices.

+ Create and maintain hardened system profiles and compliance mappings, tracking posture, drift, and remediation progress across enterprise platforms.

+ Establish repeatable assessment, evidence, and exception-handling methods aligned to information security standards and regulatory requirements, ensuring findings translate into actionable remediation backlogs with clear owners and timelines.

As a Cybersecurity Senior Advisor, your work will help power our planet, reduce carbon emissions and create cleaner air for everyone. Are you ready to take on the challenge to help us build the future?

Responsibilities

+ Leads cyber security project delivery by ensuring the cyber security team delivers on success criteria, addresses project issues and risks, and builds commitment with delivery team and internal or external partners.

+ Designs, implements and maintains a secure posture and baseline across all components of the organization on-premises and cloud IT environments, employing recognized security engineering practices and supporting secure build processes.

+ Develops, maintains, and delivers secure system profiles, and maintains an overall view of compliance.

+ Collaborates with the IT and Quality teams to assess, remediate, and prevent information technology risks. Drives system auditing, vulnerability risk assessments, assured file transfers, hardware and software configuration management, data integrity containments and investigations on internal affairs related security violations and incidents.

+ Ensures that new and existing security applications and systems are successfully integrated during implementations, updates, and patching to maintain or increase our ability to detect and prevent security exploits.

+ Collaborates with external managed security solution provider and analysts to enhance security solutions to reduce malicious and suspicious activity based on security data analysis, review of the current threat landscape, and assessment of security tickets.

+ Works with the infrastructure team and security architect to analyze security threats and recommend technical infrastructure and architecture changes to address gaps and reduce risk.

+ Shapes procedures and methods for auditing and addressing risk and non-compliance to information security standards.

+ Fosters strong relationships with senior leaders and stakeholders to understand and map out business priorities and how security engagement can be effectively managed to deliver secure design solutions.

+ A material job duty of all positions within the Company is ensuring the protection of all its physical, financial and cybersecurity assets, and properly accessing and managing private customer data, proprietary information, confidential medical records, and other types of highly sensitive information and data with the highest standards of conduct and integrity.

Minimum Qualifications

+ Ten or more years of experience in information technology, information security and/or cybersecurity. US Citizenship Required.

Preferred Qualifications

+ Bachelor's Degree in Engineering, Information Technology, Cybersecurity, Environmental or Physical Sciences, Business or related discipline.

+ Familiarity with security frameworks (e.g., NIST CSF / NIST 800-53, ISO 27001) and translating requirements into implementable controls and evidence.

+ Hands-on security assessment experience across enterprise environments (on-prem + cloud) including control validation, configuration review, penetration testing, code review, and/or vulnerability triage.

+ CISSP, GSEC, GICSP, or other related security certifications

+ Strong OS and network fundamentals (Windows/Linux internals, TCP/IP, DNS, PKI/TLS) applied to troubleshooting and security analysis.

+ Operational Technology exposure (industrial networks, Purdue model concepts, segmentation, asset inventory constraints) or clear willingness to learn OT.

Additional Information

+ This position's work mode is hybrid. The employee will report to an SCE facility for a set number of days with the option to work remotely on the remaining days.  Unless otherwise noted, employees are required to work and reside in the state of California.  Further details of this work mode will be discussed at the interview stage. The work mode can be changed based on business needs.

+ Visit our Candidate Resource (https://www.edisoncareers.com/page/show/candidate-resources) page to get meaningful information related to benefits, perks, resources, testing information, hiring process, and more!

+ Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.

+ The primary work location for this position is Rosemead, CA.

+ Position will require up to 10% traveling and being out in the field throughout the SCE service territory.

+ This position has been identified as a NERC/CIP impacted position - Prior to being hired, the successful candidate must pass a Personnel Risk Assessment (PRA) or Background Investigation. Once hired, the candidate must complete specified training prior to gaining un-escorted access to assigned work location and performing necessary job duties.

+ Relocation may apply to this position.

About Southern California Edison

The people at SCE don't just keep the lights on. Our mission is so much bigger. We're fueling the kind of innovation that's changing an entire industry, and quite possibly the planet. Join us and create a future with cleaner energy, while providing our customers with the safety and reliability they demand. At SCE, you'll have a chance to grow personally and professionally, making a real impact in Southern California and around the world.

Southern California Edison is a proud Equal Opportunity Employer, including disability and protected veteran status.

We are committed to ensuring that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodations at AskHR@sce.com or (626) 302-3456 and select option 2.

About the Company

Southern California Edison

Resume Resources

Free Resume Templates Free Resume Builder