Data Security Senior Specialist

Data Security Senior Specialist

Southern California Edison (SCE)

This range is provided by Southern California Edison (SCE). Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.

$/yr - $/yr

Become a Data Security Senior Specialist at Southern California Edison (SCE) and build a better tomorrow. In this job, you’ll enhance the SCE Data Security program by assessing and maturing data loss prevention (DLP) initiatives while operating critical data security and DLP tools and solutions. This includes supporting data discovery processes to identify and classify sensitive data, managing tools that limit unauthorized data exfiltration and manipulation, and ensuring compliance with SCEs policies, standards, and regulatory requirements.

Your expertise will be crucial in protecting sensitive information against unauthorized access and breaches by implementing and managing effective data encryption and integrity solutions.

You will be a part of the overall Cybersecurity Architecture & Technology Management function, reporting directly to the Data Security Manager. As a Data Security Senior Specialist, your work will help power our planet, reduce carbon emissions and create cleaner air for everyone. Are you ready to take on the challenge to help us build the future?

• Performs security risk, vulnerability assessments, and business impact analysis for medium complexity information systems
• Carries out project reporting for assigned projects, monitoring project status, timeline and budgets
• Assists in the planning and implementation of current and future security domains including those which may introduce new service areas
• Adopts and follows security controls, processes, and procedures to manage risk across all information system environments (infrastructure, network, and applications) with the assistance of the application and infrastructure management teams
• Monitors technology risk, identifies root cause or key themes, recommends for resolution
• Investigates suspected attacks and manages security incidents. Uses forensics where appropriate
• Reviews and shapes the production of evidence to support internal and external audits
• Implements appropriate security measures for information systems and applications that control access to data, and prevents unauthorized modification, destruction, or disclosure of information
• Develops and maintains metrics, alerts, dashboards, and reports for security monitoring
• Maintains incident response plans and performs incident response activities as directed and in accordance with established procedures and guidelines and those of federal authorities
• A material job duty of all positions within the Company is ensuring the protection of all its physical, financial and cybersecurity assets, and properly accessing and managing private customer data, proprietary information, confidential medical records, and other types of highly sensitive information and data with the highest standards of conduct and integrity.

• Five or more years of experience in information technology, information security and/or cybersecurity.
• US Citizenship Required.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), or Certified Data Privacy Solutions Engineer (CDPSE).
• Five or more years of experience in handling and remediating events and incidents, ideally within cybersecurity, IT, or engineering environments.
• Three or more years of experience in managing and optimizing data discovery tools and methodologies for effective data visibility.
• Three or more years of experience in analyzing security event and incident data to fine-tune policies and rules for improved detection, response, and prevention capabilities.
• Strong background in supporting the lifecycle of security tools including installation, configuration, management, regular…