OT Cyber Security

Are you ready to be part of a company that's not just talking about the future, but actively shaping it? Join The AES Corporation (NYSE: AES), a Fortune 500 company leading the global energy revolution. Operating in 14 countries, AES is dedicated to innovation and collaboration. Recognized as one of the Top Ten Best Workplaces for Innovators by Fast Company in 2022 and certified as a Great Place to Work, we value our people and groundbreaking ideas.

With rankings as the #1 global provider in renewable energy sales to corporations and revenues of $12.7B in 2023, AES serves 25 million customers worldwide. Committed to the Paris Agreement goals by 2050, we pioneer solutions like 24/7 carbon-free energy for data centers, leading the decarbonization effort.

If you're eager to drive change and contribute to a sustainable future, AES is your destination. Join us to power a cleaner, more sustainable future. Apply now and energize your career with a leader in the energy transformation.

The role is crucial in ensuring the security, reliability, and compliance of critical infrastructure. Responsibilities include implementing security measures, identifying vulnerabilities, ensuring policy compliance, and responding to incidents.

This position supports the design, implementation, and maintenance of NERC CIP programs related to the Bulk Electric System and cyber systems. A background check will be conducted every seven years as part of NERC regulation.

1. System Security: Design, implement, and maintain security measures to protect critical infrastructure systems from cyber threats.
2. System Administration: Manage cyber security products, tools, solutions, and applications.
3. Upgrade and Patch Systems: Plan and execute system upgrades and security patches.
4. Manage and Maintain: Oversee domains, networks, and environments supporting cyber assets across AES NERC CIP footprint.
5. Troubleshooting: Diagnose and resolve OT system issues promptly.
6. Monitoring: Continuously monitor OT systems for optimal performance and security.
7. Change Management: Follow NERC CIP change processes for all modifications.
8. Backup and Recovery: Manage data backup and recovery processes.
9. Documentation: Develop and maintain operational procedures and processes.
10. Training: Provide staff training on OT systems management.
11. Innovation: Stay updated with industry standards and recommend improvements.
12. Risk Assessment: Conduct security risk and vulnerability assessments.
13. Access Control: Manage user access rights and privileges.
14. Continuous Monitoring: Implement real-time security event detection and response.
15. Incident Response: Develop plans, investigate, and implement corrective actions for security incidents.
16. Vendor Management: Collaborate with vendors for cybersecurity solutions.
17. Compliance Management: Ensure adherence to NERC CIP standards and regulations.
18. Collaboration: Work with internal and external teams to manage assets and resolve issues.
19. Other duties as assigned.

• Education: Bachelor's degree in Cyber Security, IT, CS, Engineering, or related field.
• Experience: At least 3 years in cyber security or OT systems administration.
• Certifications: CISSP, CISM, CompTIA, Cisco, Microsoft, Linux, Unix, or similar are highly desirable and may substitute for a degree.
• Technical Skills: Proficiency in security applications, VMware, SCADA, DCS, PowerShell, SQL, firewalls, SIEM, endpoint protection, vulnerability management, etc.
• Analytical Skills: Strong problem-solving skills for troubleshooting and risk management.
• Communication Skills: Excellent written and verbal skills for policy, incident reports, and technical communication.
• Team Collaboration: Ability to work with IT, operations, and compliance teams.
• Industry Experience: Preferably in energy or utility sectors, supporting 24/7 operations, and familiar with FERC, NERC, or regional entities.

Remote work is permitted. Must be able to visit offices and data centers as needed.

Up to 10% travel may be required.

None.

AES is an Equal Opportunity Employer committed to diversity and inclusion. We respect all backgrounds and perspectives, ensuring equal consideration for all applicants regardless of gender, race, religion, disability, or other protected characteristics. We participate in E-Verify to confirm work authorization.