SDG&E is an innovative San Diego-based energy company that provides clean, safe and reliable energy to better the lives of the people it serves in San Diego and southern Orange counties. The company is committed to creating a sustainable future by providing its electricity from renewable sources; modernizing natural gas pipelines; accelerating the adoption of electric vehicles; supporting numerous non-profit partners; and, investing in innovative technologies to ensure the reliable operation of the region’s infrastructure for generations to come. SDG&E is a subsidiary of Sempra Energy (NYSE: SRE).

Our highly trained and responsive employees with their diverse skills, talents and ideas are the reason we can deliver on our commitment and are building America’s best energy company. They are also the reason why we have been recognized with the industry’s most coveted awards. Our employees undertake challenging work, and receive highly competitive compensation and benefits. As one of the region’s largest employers, we’re always searching for talented and bright people to join our team. After all, it takes the best to build the best. Learn more about benefits HERE.

Diversity and inclusion are core values of SDG&E. Empowering our employees to be their whole selves at work is our competitive advantage. This is where new ideas come from and meaningful collaboration gets an authentic start. By bringing together people with different perspectives, diverse backgrounds and real commitment to their own individuality, we have built a stronger business. Learn more about our commitment to diversity and inclusion HERE.

For more information, visit SDGEnews.com or connect with SDG&E on Twitter (@SDGE), Instagram (@SDGE) and Facebook.

Primary Purpose
The Senior Domain Engineer – Cybersecurity Incident Response runs cybersecurity capabilities with emphasis on detecting, responding and preventing cybersecurity incidents within the organization. Assesses risk and identifies mitigations. As a specialist in security techniques, provides visibility across the enterprise technology landscape to identify, assess and recommend risk mitigation tasks. Handles complex long-term initiatives in area of expertise, collaborating with multiple teams and stakeholders to develop improved cybersecurity technology and processes with a focus on continuous improvement.

Duties and Responsibilities

• Identifies and prioritizes enterprise level cybersecurity threats and risks with leadership, monitoring operational tools in order to reduce risks and vulnerabilities to the enterprise. Designs and evaluates related cybersecurity technology and technology tools according to delivery framework for business critical functional areas, to remediate cybersecurity risk. Ensures cybersecurity presence throughout development life cycles, supporting product teams with operational oversight and cybersecurity engineering consulting. Leverages DevSecOps expertise to enhance continuous monitoring by integrating security practices with product teams. Creates processes and templates for cybersecurity related implementations, focused on risk mitigation. Creates and maintains appropriate documentation for cybersecurity initiatives.
• Evaluates current state processes and drives selection of cybersecurity technology (systems, platforms, or networks) with an emphasis on automation to enable strategic capabilities. Analyzes new technology to identify and mitigate risks, leading efforts to define recommendations for security optimization. Proactively develops new security engineering capabilities that align with business needs, enterprise controls, and overall risk strategy. Develops procedures, processes and guidelines for implementing security controls, and technical assessments while co-creating with engineering and architecture teams for greater alignment. Provides insights for delivery teams to support adherence to operating company standards and policies. Provides expertise for system, platform or network cybersecurity enhancements for delivery teams to support greater risk mitigation.
• Participates in analysis, diagnosis and assessment of cybersecurity related capabilities (systems, platforms, or networks), ensuring adequate performance, risk management, and capacity management. Conducts maintenance support for cybersecurity applications and related technology tools.
• Delivers work in accordance with an agile mindset. Agile is a methodology supporting new ways of working emphasizing incremental delivery, value prioritization, often using scrum process. Assists in incremental value creation and business agility, adopting scrum or kanban methodologies as appropriate to their team. Kanban and scrum are frameworks used for organizing work in an agile way, focused on managing the flow of knowledge and operational work and driving continuous improvement for a team. Mentors less experienced technology staff on cybersecurity knowledge best practices, procedures, and processes.
• Performs other duties as assigned (no more than 5% of duties).

Required Qualifications

• Bachelor’s Degree Information Systems, Software Engineering, Computer Science, related field or equivalent training and/or experience.
• 3 years – Experience working with cybersecurity and technology, with experience in endpoint security, network security, risk management, and/or application security. Significant experience performing vulnerability assessments and/or remediating security vulnerabilities, and developing security capabilities.
• 5 years – Progressive experience working within IT and/or enterprise cybersecurity with experience in cybersecurity process, risk assessments, and troubleshooting of systems.
• Cybersecurity Acumen – Knowledge of cybersecurity design and architecture (application, data, and technical) with understanding of how systems and processes work together as aligned to business and IT imperatives.
• Cybersecurity Engineering – Ability to deliver holistic support to secure systems, identifying threats and vulnerabilities in systems and applications, creating security applications and solutions, designing for resiliency and security to enhance security capabilities protecting data from theft, compromise or attack.
• Cybersecurity Risk Assessment – Ability to evaluate existing systems and solutions for security risk and vulnerabilities, designing solutions and systems that provide quality and traceability of risk data and analytics to inform security recommendations.
• Application Security – Ability to define and operate secure application programs, as well as perform security reviews and tests of applications to meet security and compliance requirements while minimizing the risks of losses through exploitable security defects in applications.
• Vulnerability Management – Ability to perform security reviews and tests to meet security and compliance requirements while effectively minimizing the risks of losses through exploitable security vulnerability.
• Network Security Skills – Ability to deliver network security services through preventing unauthorized access to network resources (data and voice systems), managing network security related incidents and providing on-going services to maintain network security operations functions (firewall, DNZ, corporate LANs, etc.).
• Identity and Access Management – Knowledge related to design and delivery of solutions for establishing user, applications and device credentials and processes for applying those credentials to access enterprise systems and applications.
• Development Languages – Knowledge and understanding of one or more IT programming languages and database architectures, and ability to write code and develop applications using those languages.

Preferred Qualifications

• 5 years – Experience with National Institute of Standards and Technology (NIIST) Cybersecurity Framework (CSF) or Risk Management Framework (RMF) such NIST 800-53.
• 3 years- Experience with hands-on development and programming of software and systems.
• CompTIA Security+, Global Information Assurance Certification (GIAC) or GSSEC.
• DevSecOps Practices – Strong understanding of automation and security concepts and processes (e.g., test automation, code coverage, DevSecOps, Continuous Integration / Continuous Delivery (CI/CD) pipelines, etc.), and ability to drive the integration of development, operations, and security into enterprise software development.
• Software Delivery Frameworks – Strong knowledge of delivery frameworks such as Agile Scrum, Kanban, and/or Software Development Lifecycle (SDLC); proven ability executing projects in a collaborative, fast paced environment.
• IT Service Management – Ability to manage IT services lifecycle (service strategy, design, transition, operation, continuous service improvement) and use DevOps methodology and tools to analyze results.

• May require 24/7 response availability.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, citizenship, disability or protected veteran status.