Lead Cyber Vulnerability Mgmt

Ybor City, Florida, US, 33605

Applications have closed

Power up a career with us. Our people are our greatest investments. 

 

Be the light to help us keep our customers connected.  If you are interested in a career and not just a position, Tampa Electric is the place to be! Tampa Electric offers competitive pay, a comprehensive benefits package and opportunities for growth and development in a friendly and professional work environment. We embrace diversity and the inclusion of all. We believe our differences, unique perspectives and talents are our strengths and integral to the success of our company.

 

We’re honored to serve approximately 780,000 customers across West Central Florida and safely provide them with clean, affordable and reliable electricity. We’ve been doing it for more than 100 years, and there’s so much more ahead.  

 

Join our team of energy experts as we build on that legacy through innovation, continued solar investments, cost-effective and sustainable energy solutions all while keeping top-notch customer service at the center of all we do. 

 

Tampa Electric is a subsidiary of Emera Inc., a family of energy companies which also includes TECO Peoples Gas and New Mexico Gas Company. Emera provides energy to residential and commercial customers in the United States, Canada, and the Caribbean, with career opportunities available in all of these locations. 

 

 

TITLE:   Lead Cyber Vulnerability Mgmt
PERFORMANCE COACH:   Manager, Cyber Fusion Center
COMPANY:   Tampa Electric.
DEPARTMENT:  Information Security
 

POSITION CONCEPT
The Lead Cyber Vulnerability Management role holds a pivotal role in shaping and fortifying an organization's cybersecurity defenses. Design and oversee the implementation of comprehensive vulnerability management systems aimed at proactively identifying, assessing, and mitigating security risks in the IT infrastructure. Requires a deep understanding of various cybersecurity frameworks, threat landscapes, and advanced technologies to develop strategies that not only address current vulnerabilities but also anticipate future security challenges. Responsible for guiding and mentoring a team of cyber vulnerability management professionals, ensuring they are equipped with the latest tools and knowledge. Collaborates with various departments, ensuring that security measures align with business objectives and compliance requirements. Use a blend of technical expertise, strategic thinking, and strong communication skills, enabling the lead to effectively manage risks and drive the continuous improvement of the organization's security posture.

 

PRIMARY DUTIES AND RESPONSIBLILITIES
1.     Provide strategic direction for the vulnerability management program, aligning it with organizational goals and industry best practices. 25% 
2.    Lead and mentor a team of cybersecurity professionals, fostering a collaborative and high-performance work environment.  Conduct regular performance evaluations, set goals, and identify opportunities for professional growth within the team. 25% 
3.    Lead and conduct advanced vulnerability assessments and penetration testing on critical systems and applications. 20% 
4.    Collaborate with other cybersecurity teams, IT departments, and business units to ensure a holistic and integrated approach to security. 10% 
5.    Analyze and prioritize vulnerabilities based on risk assessments, potential impact, and business criticality. Work closely with cross-functional teams to ensure timely and effective remediation of identified vulnerabilities. 10% 
6.    Stay abreast of emerging cyber threats and vulnerabilities, providing proactive recommendations to enhance the organization's security posture. 10% 

 

SUPERVISION 
Direct Supervision:    Vulnerability management team members 

Indirect Supervision:     Manages the relationship with our Vulnerability Management                     Provider (VMaaS) and Vulnerability Consultants.  


QUALIFICATIONS/EXPERIENCE 
Education 
Required:      Bachelor’s Degree in Computer Science, Information Systems, or other IT related         field.

Preferred:     Master’s Degree in Computer Science, Information Systems, Cyber Security, or             other IT related discipline 

Licenses/Certifications 
Required:     CISSP and from the list of certification vendors below, one related IT Security             professional certifications or ability to obtain via self-study within one year of hire         date: (ex: (ISC)2, GIAC, ISACA, CompTIA, e-Council, etc.) 
 
Preferred:     CISSP, CISM, ITIL v3, and four or more of the following or similar IT Security             professional certifications: (ex: CISSP, CISA, CRISC, CEH, EnCE, ACE, CCE, GCIH, GCIA,         GCFA, GCFE, GPEN, GWAPT, GPPA, GCED, GXPN, GMON,     GNFA, GREM) 

 

Experience 
Required:    8 years of related cyber security experience 

Preferred:

Supervisory Experience 
 Preferred:     3 years leadership experience 

 

Knowledge/Skills/Abilities (KSA)  
Required:  
•     Understanding of foundational cybersecurity principles, concepts, and best practices. 
•    Familiarity with common cyber threats, attack vectors, and risk management. 
•    Proficient in using vulnerability assessment tools such as Nessus, Qualys, OpenVAS, or similar tools. 
•    Knowledge of vulnerability scanning methodologies and techniques. 
•    Good working knowledge of major operating system security (Windows, Mac OS, Linux/Unix), endpoint, server, and network security 
•    Familiarity with cybersecurity frameworks and standards such as NIST Cybersecurity Framework, ISO 27001, and CIS Critical Security Controls. 
•    Basic working knowledge of the processes that ensure compliance with regulatory or industry requirements such as NERC CIP, SOX and PCI. 
•    Ability to analyze vulnerability scan results, assess potential risks, and prioritize vulnerabilities based on severity and business impact. 
•    Ability to perform risk assessments and evaluate the potential impact of vulnerabilities on the organization. 
•    Skill in developing risk mitigation strategies and recommending security controls. 
•    Strong collaborative skills to work effectively with cross-functional teams, including system administrators, developers, and security professionals. 
•    Strong analytical skills to assess complex systems, identify vulnerabilities, and recommend appropriate remediation measures. 
•    Ability to troubleshoot and solve security-related problems efficiently and effectively. 
•    Resourcefulness in identifying creative solutions to security challenges. 
•    Ability to manage multiple tasks and projects simultaneously. 
•    Effective time management and organizational skills to meet deadlines and project milestones. 
•    Thoroughness and attention to detail in conducting vulnerability assessments and documenting findings. 
•    Precision in identifying and reporting vulnerabilities accurately. 
 

 

TECO offers a competitive Benefits package!!

 

Competitive Salary *401k Savings plan w/ company matching * Pension plan * Paid time off* Paid Holiday time * Medical, Prescription Drug, & Dental Coverage  *Tuition Assistance Program * Employee Assistance Program * Wellness Programs * On-site Fitness Centers * Bonus Plan and more!

 

 

 

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  3  0  0
Category: Leadership Jobs

Tags: CEH CISA CISM CISSP Compliance CompTIA Computer Science CRISC EnCE GCED GCFA GCFE GCIA GCIH GIAC GNFA GPEN GREM GWAPT GXPN ISACA ISO 27001 ITIL IT infrastructure Linux NERC CIP Nessus Network security NIST OpenVAS Pentesting Qualys Risk assessment Risk management SOX UNIX Vulnerabilities Vulnerability management Windows

Perks/benefits: 401(k) matching Career development Competitive pay Health care Salary bonus Startup environment

Region: North America
Country: United States

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.