OT Cyber Security

Are you ready to be part of a company that's not just talking about the future, but actively shaping it? Join The AES Corporation (NYSE: AES), a Fortune 500 company leading the global energy revolution. Operating in 14 countries, AES is dedicated to innovation and collaboration. Recognized as one of the Top Ten Best Workplaces for Innovators by Fast Company in 2022 and certified as a Great Place to Work, we value our people and groundbreaking ideas.

AES is ranked #1 globally in renewable energy sales to corporations, with $12.7B in revenues in 2023. We serve 25 million customers worldwide and are committed to achieving the Paris Agreement's goals by 2050, pioneering solutions like 24/7 carbon-free energy for data centers to accelerate decarbonization.

If you want to drive change and power a sustainable future, AES is the place for you. Apply now and energize your career with a leader in the global energy transformation.

plays a crucial role in ensuring the security, reliability, and compliance of the organization's critical infrastructure. This position involves implementing and maintaining security measures to protect computer systems, networks, and data, identifying vulnerabilities, ensuring policy compliance, and responding to security incidents.

This role supports the design, implementation, and maintenance of NERC CIP programs related to the Bulk Electric System and cyber systems. A background check will be conducted every seven years as part of NERC regulation compliance.

1. System Security: Design, implement, and maintain security measures to protect critical infrastructure from cyber threats.
2. System Administration: Manage cyber security products, tools, solutions, and applications.
3. Upgrade and Patch Systems: Execute system upgrades and security patches to ensure security and functionality.
4. Manage and Maintain: Oversee domains, networks, and environments supporting cyber assets across the AES NERC CIP footprint.
5. Troubleshooting: Diagnose and resolve OT system issues promptly.
6. Monitoring: Continuously monitor systems for performance and security anomalies.
7. Change Management: Follow NERC CIP change processes for all modifications.
8. Backup and Recovery: Ensure data integrity through backup and recovery procedures.
9. Documentation: Develop and maintain detailed operational procedures.
10. Training: Provide staff training on OT systems.
11. Innovation: Stay updated on industry standards and recommend improvements.
12. Risk Assessment: Conduct security risk and vulnerability assessments.
13. Access Control: Manage user privileges and security levels.
14. Continuous Monitoring: Implement real-time security event detection.
15. Incident Response: Develop and execute incident response plans.
16. Vendor Management: Collaborate with vendors on cybersecurity solutions.
17. Compliance Management: Ensure adherence to NERC CIP and regulatory standards.
18. Collaboration: Work with internal and external teams on asset and system issues.
19. Other duties as assigned.

• Education: Bachelor's degree in cybersecurity, IT, CS, engineering, or related field.
• Experience: At least 3 years in cybersecurity, OT systems, or related roles.
• Certifications: CISSP, CISM, CompTIA, Cisco, Microsoft, Linux, Unix, or similar preferred; may substitute for degree.
• Technical Skills: Proficiency with security applications, VMware, SCADA, DCS, PowerShell, SQL, firewalls, SIEM, endpoint protection, vulnerability management, etc.
• Analytical Skills: Strong problem-solving abilities for troubleshooting and risk management.
• Communication Skills: Effective in conveying policies and technical issues to diverse audiences.
• Team Collaboration: Ability to work with IT, operations, and compliance teams.
• Industry Experience: Preferably with energy/utilities, 24/7 operations, or regulatory compliance (FERC, NERC).

Remote work is permitted. Must be able to visit the office and data center environments as needed.

Up to 10% travel may be required.

None.

AES is an Equal Opportunity Employer committed to diversity and inclusion. We consider all qualified applicants regardless of background, and comply with applicable laws and regulations regarding employment practices.