OT Cyber Security

Are you ready to be part of a company that's not just talking about the future, but actively shaping it? Join The AES Corporation (NYSE: AES), a Fortune 500 company leading the global energy revolution. Operating in 14 countries, AES is committed to innovation and collaboration. Recognized as one of the Top Ten Best Workplaces for Innovators by Fast Company in 2022 and certified as a Great Place to Work, we value our people as much as our groundbreaking ideas.

AES is ranked #1 globally in renewable energy sales to corporations, with $12.7B in revenues in 2023. We provide electricity to 25 million customers worldwide and are dedicated to achieving the Paris Agreement's goals by 2050. Our innovative solutions, such as 24/7 carbon-free energy for data centers, are leading the way in global decarbonization.

If you're eager to join a company that drives change and builds a sustainable future, AES is the place for you. Apply now and energize your career with a leader in the energy transformation.

Plays a crucial role in ensuring the security, reliability, and compliance of critical infrastructure. Responsible for implementing and maintaining security measures to protect computer systems, networks, and data. Involves identifying vulnerabilities, ensuring compliance, and responding to incidents.

This position supports the design, implementation, and maintenance of AES's NERC CIP programs related to the Bulk Electric System and cyber systems. As a NERC regulated position, a background check will be conducted every seven years.

1. System Security: Design, implement, and maintain security measures to protect NERC CIP critical infrastructure systems from cyber threats.
2. System Administration: Manage cyber security products, tools, solutions, and applications.
3. Upgrade and Patch Systems: Plan and execute system upgrades and security patches.
4. Manage and Maintain: Oversee domains, networks, and environments supporting cyber assets across AES's NERC CIP footprint.
5. Troubleshooting: Diagnose and resolve OT system issues promptly.
6. Monitoring: Continuously monitor cyber security OT systems for performance and anomalies.
7. Change Management: Follow NERC CIP change processes for all modifications.
8. Backup and Recovery: Ensure data integrity through effective backup and recovery processes.
9. Documentation: Develop and maintain detailed operational procedures.
10. Training: Provide staff training on OT systems.
11. Innovation: Stay updated on NERC CIP standards and recommend improvements.
12. Risk Assessment: Conduct security risk and vulnerability assessments.
13. Access Control: Manage user access rights and privileges.
14. Continuous Monitoring: Implement real-time security event detection and response.
15. Incident Response: Develop and execute incident response plans.
16. Vendor Management: Collaborate with vendors for cybersecurity solutions.
17. Compliance Management: Ensure adherence to NERC CIP standards and regulatory requirements.
18. Collaboration: Work with internal and external teams to manage assets and resolve issues.
19. Other duties as assigned.

• Education: Bachelor's in cyber security, IT, CS, Engineering, or related field.
• Experience: At least 3 years in cyber security or OT systems administration.
• Certifications: CISSP, CISM, CompTIA, Cisco, Microsoft, Linux, Unix, or similar are highly desirable and may substitute for a degree.
• Technical Skills: Proficiency in security applications, VMware, SCADA, DCS, PowerShell, SQL, firewalls, SIEM, endpoint protection, vulnerability management, etc.
• Analytical Skills: Strong troubleshooting and risk assessment skills.
• Communication Skills: Excellent written and verbal communication.
• Team Collaboration: Ability to work with IT, operations, and compliance teams.
• Industry Experience: Preferably in energy or utility sectors, supporting 24/7 operations, and familiarity with FERC, NERC, or regional entities.

Remote work is permitted. Must be able to visit the office and data centers as needed. Up to 10% travel may be required.

None.

AES is an Equal Opportunity Employer committed to diversity and inclusion. All qualified applicants will receive consideration without regard to various protected characteristics. E-Verify will be used to confirm work authorization.