Invenergy drives innovation in energy. Powered by decades of entrepreneurial
experience and unparalleled execution, we solve the energy challenges facing
our customers and communities. We provide power generation and storage
solutions at scale around the world to create a cleaner energy future. We
develop. We build. We own. We operate. We are Invenergy.
This position will be open for application for at least 3 calendar days from
the posting date. This position will remain open for application based on
business need, which may be before or after the 3-day posting window.
Job Description
Position Overview:
The Director of Information Security Programs will focus on managing risk for
the cybersecurity program at Invenergy, bringing project and program
management expertise to the management of cyber security programs, policies
and compliance. Strengthen information security as a strategic partner to
other business areas. Significantly contribute to cyber security risk
management processes, compliance, metrics, reports, and other security
awareness and communication tools.
Responsibilities:
Manage and develop security program according to security framework.
Lead team responsible for the creation of cybersecurity policies and
procedures in support of all applicable regulations and security frameworks
Establish and maintain metrics for the security and compliance program
Prepare and present detailed, written technical information for internal and
external audiences
Lead the cybersecurity training and awareness program covering employees,
contractors and vendors
Manage the cybersecurity third party risk management program
Negotiate and coordinate with cross-functional organizations
Create and publish reports for compliance and security program metrics for
both internal and external stakeholders
Creates and maintains required project portfolio documentation and artifacts
Ensure and balance the availability of required skills and competencies across
project teams within the program
Act as an advisor, and build and maintain relationships across the wider
stakeholder community
Monitor and coordinate dependencies across projects in the program and resolve
conflicts
Assist with creating or modifying policies as needed based on effectiveness
and internal risk posture
Minimum Qualifications:
Bachelor's or Master's degree in relevant field
Fundamental understanding of Risk Management frameworks including the NIST
800-37, NIST CSF, and ISO 27001 set of publications
Understanding or experience in building and maintaining compliance programs
for NERC CIP, GDPR, PII, NIS
Experience leading cross-org discussions and working with a matrixed team of
stakeholders to achieve common goal
Strong critical thinking skills with ability to challenge normal operations
Proven track record of taking ownership and driving results
Excellent verbal and written communications skills
Preferred Qualifications:
Certifications: CISSP, CISA, and / or CISM
Salary Range
$180,500 - $213,675
Benefits
Eligible for medical, dental, vision, 401(k), bonus, paid time off, etc.
Invenergy LLC is an equal opportunity employer. All qualified applicants will
receive consideration for employment without regard to, among other
things, race, color, religion, sex, sexual orientation, gender
identity, national origin, age, status as a protected veteran, or disability.