Principal Information Security Strategist

Southwest Power Pool (SPP) is about more than power. We’re about the power of relationships. Our employees have the opportunity to work together to ensure electricity is delivered reliably and affordably to the millions of people living in our service territory. We have been voted one of Arkansas’ Best Places to work by Arkansas Business and we are looking for a member of our team who is passionate about our mission to keep the lights on!

We have a core ideology here at SPP that we stand by:
Do the right thing, for the right reason, in the right way.

• Competitive pay with bonus opportunities
• Excellent insurance package including three great medical plans to choose from, employer-paid short term disability, long term disability, and life insurance
• Relocation assistance
• Flexible working environment for positions that are eligible where employees have the flexibility to work from home and come in where collaborative in person work is needed.
• Fantastic contributions to your retirement through a 401(k) savings plan with employer-match benefits and a defined benefit plan fully funded by SPP

The salary range(s) represents our good faith estimate for the role at this time. While we strive to provide competitive and transparent compensation, there may be circumstances where an offer is above or outside of the listed range. We are open to discussing salary expectations with qualified candidates considering factors such as the candidate’s qualifications, skills, competencies, experience and geographic location will all be considered during the hiring process.

Are you a strategic cybersecurity leader ready to shape the future of enterprise security? We’re looking for a Principal Information Security Strategist to lead the design, development, and implementation of advanced cyber defense strategies that protect critical information assets and support organizational goals.

In this highly visible role, you’ll serve as a trusted security advisor and technical expert, collaborating across IT teams to develop long-term solutions that strengthen our cybersecurity posture. You’ll drive innovation, guide enterprise security direction, and ensure compliance with FERC/NERC requirements.

• Define and implement long-term cybersecurity strategies aligned with business objectives, such as zero‑trust.
• Design and lead implementation of security controls and solutions to protect enterprise systems and applications.
• Collaborate with IT and architecture teams to ensure infrastructure and application security meet organizational standards.
• Evaluate and recommend new technologies and tools that enhance cyber resilience.
• Identify security threats and vulnerabilities, assess risk, and develop mitigation strategies.
• Ensure compliance with internal policies and regulatory requirements.
• Review IT projects and system designs for adherence to security standards.
• Maintain up‑to‑date knowledge of evolving cyber threats, tools, and best practices.
• Provide mentorship, technical guidance, and knowledge transfer to IT teams.
• Represent the organization in technical committees, working groups, and industry collaborations.

• Bachelor’s degree in Information Technology or a related field. In lieu of a degree, two additional years of relevant professional experience beyond the experience requirements listed below may be considered.

• Twelve (12) plus years of applicable IT experience relating to systems architecture, design, development, and deployment
• Strong knowledge of network security, cloud platforms, application security, and zero trust principles
• Strong leadership skills
• Expert written and oral communication skills
• Knowledge of security…