MCPNew: now works with Claude & AI assistants
constellationenergy

constellationenergy

Sr Mgr, Cyber Technical Compliance

Company

constellationenergy

Role

Sr Mgr, Cyber Technical Compliance

Location

Baltimore, Maryland, US

Job type

Full-time

Found on Mokaru

14 hours ago

Share this job

Salary

Not disclosed by employer

Job description

Who We Are

As the largest private-sector power producer in the world and the nation's largest producer of clean and reliable energy, Constellation is focused on our purpose: lighting the way to a brilliant tomorrow for all. We have been the leader in clean energy production for more than a decade, and we are cultivating a workplace where our employees can grow, thrive, and contribute. Now integrated with Calpine, our portfolio includes 55 gigawatts of capacity from nuclear, natural gas, geothermal, hydro, wind and solar facilities, with the generating capacity to power the equivalent of 27 million homes.

Our culture and employee experience make it clear: We are powered by passion and purpose. Together, we're creating healthier communities and a cleaner planet, and our people are the driving force behind our success. At Constellation, you can build a fulfilling career with opportunities to learn, grow and make an impact. By doing our best work and meeting new challenges, we can accomplish great things. Join us in meeting the country's energy needs today and tomorrow.

Total Rewards

Constellation offers an extensive selection of benefits and rewards to help our employees thrive professionally and personally. We provide competitive compensation and a wide-range of benefits that support both employees and their families, helping them prepare for the future. In addition to highly competitive salaries, eligible employees are offered a bonus program, 401(k) with company match, employee stock purchase program; comprehensive medical, dental and vision benefits, including robust wellbeing programs; disability and life insurance benefits; paid time off for vacation, holidays, and sick days; and much more.

Expected salary range of $177,300 to $197,000, varies based on experience, along with comprehensive benefits package that includes bonus and 401(k).

Primary Purpose of Position

Senior Manager responsible for daily management and operational oversight of Cyber Technical Compliance, to include core functions associated with the protection of the company's regulated cyber assets, information, and operations. This includes the Cyber Regulatory Compliance Support team and the Cyber Technical Regulatory Tool Support team, with personnel based across multiple locations. Responsible for working closely with IT and Business leadership to achieve objectives. The Senior Manager is accountable for execution of the corporate and departmental strategies against established goals for all teams. This role will lead total staff 8-15 FTEs, plus contract labor and 3rd party provided professional services. Assist with managing overall budget of up to $10 Million annual O&M, plus annual capital investment. This role will have a high impact on Constellation's capability to secure information; demonstrate compliance to multiple regulatory requirements; maintain company reputation and company performance. Performance results can adversely or positively impact earnings per share by a combination of company reputation and investor confidence, compliance penalties and intellectual property protection. Participate as part of the overall leadership team for the Corporate Cyber Security organization. Reports to the Director, Cyber Governance and Compliance.

Primary Duties and Accountabilities

  • Develop, recruit and retain a diverse, capable, high performance Cyber Security work force.
  • Evaluate performance and provide coaching for IT personnel. Promote diversity and foster teamwork, collaboration, and a learning organization.
  • Promote diversity and foster teamwork, collaboration, and a learning organization.
  • Provide input on development and retention processes.
  • Develop and participate in external liaison relationships to share, learn and influence 3rd party Cyber Security Operations viewpoints and best practices.
  • Serve as Functional Area Manager (FAM) for assigned Management Model governing documents.
  • Lead teams delivering Cyber Regulatory Compliance support and Cyber Technical Regulatory Tool support across Constellation, and establish, measure, and achieve annual strategy, goals, and objectives.
  • Provide technical and security leadership to IT, business leadership, and technical teams to identify cost effective secure technology solutions and develop security reference architectures and strategies that support business outcomes.
  • Establish, maintain, and enhance service relationships with Business and IT/OT leadership and technical teams, and communicate status to key stakeholders on a regular basis.
  • Develop, maintain, and promote a Cyber Regulatory Control Implementation framework and support model across IT, Business, and corporate support organizations to deliver timely, cost effective, and consistently high quality regulatory support.
  • Leverage Constellation Management Model, Standards, and Industry best practices to establish and sustain high quality Cyber Security capabilities and service levels, with specific emphasis on Cyber Regulatory Compliance support and Cyber Technical Regulatory Tool support.
  • Assist in managing a budget totaling up to $10 Million O&M annually, plus Capital Investment Budget

Minimum Qualifications

  • Demonstrated operational planning, consulting, execution and improvement, combined with customer engagement skills and experience leading teams and people through organizational and operational change
  • Knowledge of IT infrastructure technologies including network, server, storage, telecom data center support and monitoring tools
  • Superior written and verbal skills communications skills and experience creating high quality presentations for executive audiences
  • Demonstrated ability to discuss and present complex technical information in a way that establishes rapport, persuades others, and gains understanding and approval
  • Excellent consultative skills, including teamwork, facilitation, prioritization, and negotiation
  • Availability for occasional travel to various work locations, external liaison activities and vendor locations.
  • Available for 24x7 on-call response to operational events and incident response
  • Track record of successfully developing, implementing and optimizing Cyber Security operational Centers and Teams.
  • Bachelor's degree in IT, Computer Science or related discipline and 10+ years of relevant experience in Cyber Security or field, or equivalent combination of education and experience
  • Extensive experience with management/oversight of complex technical regulated control environments - NERC CIP, TSA Gas, MTSA, etc
  • Deep technical knowledge of effective cyber security control design/architecture and frameworks, NIST, etc.
  • Strategic and polished leader with experience guiding and influencing many stakeholders through complex decisions and changes
  • Knowledge and experience with regulatory security Standards such as NERC CIP, TSA Gas, Maritime Transportation System, FCI/CUI, etc.

Preferred Qualifications

  • Extensive professional network across the Executive Branch of the Federal Government, DOE, DHS, DoD, FBI public and private sector cyber security companies, consortiums and associations
  • General Info Security: Security Principles, Threat Lifecycle Management, Incident Management & Lifecycle, Familiarity with Industry Standards (NIST 800-53, ISO 27001, etc.) and Security operations best practices.
  • Knowledge of network protocols (e.g., Transmission Control Protocol/Internet Protocol [TCP/IP], Dynamic Host Configuration Protocol [ DHCP] and directory services (e.g., Domain Name System [DNS], Active Directory)
  • Knowledge of incident categories, incident responses, and timelines for responses
  • Knowledge of incident response and handling methodologies
  • Knowledge of digital forensics and eDiscovery methodologies and processes
  • Masters degree in a technology discipline or MBA with one or more certifications relevant to Information Security Body of Knowledge (i.e. CISM, CISSP, CISA)
  • Track record of successfully implementing and optimizing the use of the NIST Cyber Security Framework and Cybersecurity Capability Maturity Models (C2M2) focused on the energy sector
  • Knowledge of Network Security monitoring and Cyber Security Systems Engineering best practices and operational processes

Primary Purpose of Position

Senior Manager responsible for daily management and operational oversight of Cyber Technical Compliance, to include core functions associated with the protection of the company's regulated cyber assets, information, and operations. This includes the Cyber Regulatory Compliance Support team and the Cyber Technical Regulatory Tool Support team, with personnel based across multiple locations. Responsible for working closely with IT and Business leadership to achieve objectives. The Senior Manager is accountable for execution of the corporate and departmental strategies against established goals for all teams. This role will lead total staff 8-15 FTEs, plus contract labor and 3rd party provided professional services. Assist with managing overall budget of up to $10 Million annual O&M, plus annual capital investment. This role will have a high impact on Constellation's capability to secure information; demonstrate compliance to multiple regulatory requirements; maintain company reputation and company performance. Performance results can adversely or positively impact earnings per share by a combination of company reputation and investor confidence, compliance penalties and intellectual property protection. Participate as part of the overall leadership team for the Corporate Cyber Security organization. Reports to the Director, Cyber Governance and Compliance.

Primary Duties and Accountabilities

  • Develop, recruit and retain a diverse, capable, high performance Cyber Security work force.
  • Evaluate performance and provide coaching for IT personnel. Promote diversity and foster teamwork, collaboration, and a learning organization.
  • Promote diversity and foster teamwork, collaboration, and a learning organization.
  • Provide input on development and retention processes.
  • Develop and participate in external liaison relationships to share, learn and influence 3rd party Cyber Security Operations viewpoints and best practices.
  • Serve as Functional Area Manager (FAM) for assigned Management Model governing documents.
  • Lead teams delivering Cyber Regulatory Compliance support and Cyber Technical Regulatory Tool support across Constellation, and establish, measure, and achieve annual strategy, goals, and objectives.
  • Provide technical and security leadership to IT, business leadership, and technical teams to identify cost effective secure technology solutions and develop security reference architectures and strategies that support business outcomes.
  • Establish, maintain, and enhance service relationships with Business and IT/OT leadership and technical teams, and communicate status to key stakeholders on a regular basis.
  • Develop, maintain, and promote a Cyber Regulatory Control Implementation framework and support model across IT, Business, and corporate support organizations to deliver timely, cost effective, and consistently high quality regulatory support.
  • Leverage Constellation Management Model, Standards, and Industry best practices to establish and sustain high quality Cyber Security capabilities and service levels, with specific emphasis on Cyber Regulatory Compliance support and Cyber Technical Regulatory Tool support.
  • Assist in managing a budget totaling up to $10 Million O&M annually, plus Capital Investment Budget

Minimum Qualifications

  • Demonstrated operational planning, consulting, execution and improvement, combined with customer engagement skills and experience leading teams and people through organizational and operational change
  • Knowledge of IT infrastructure technologies including network, server, storage, telecom data center support and monitoring tools
  • Superior written and verbal skills communications skills and experience creating high quality presentations for executive audiences
  • Demonstrated ability to discuss and present complex technical information in a way that establishes rapport, persuades others, and gains understanding and approval
  • Excellent consultative skills, including teamwork, facilitation, prioritization, and negotiation
  • Availability for occasional travel to various work locations, external liaison activities and vendor locations.
  • Available for 24x7 on-call response to operational events and incident response
  • Track record of successfully developing, implementing and optimizing Cyber Security operational Centers and Teams.
  • Bachelor's degree in IT, Computer Science or related discipline and 10+ years of relevant experience in Cyber Security or field, or equivalent combination of education and experience
  • Extensive experience with management/oversight of complex technical regulated control environments - NERC CIP, TSA Gas, MTSA, etc
  • Deep technical knowledge of effective cyber security control design/architecture and frameworks, NIST, etc.
  • Strategic and polished leader with experience guiding and influencing many stakeholders through complex decisions and changes
  • Knowledge and experience with regulatory security Standards such as NERC CIP, TSA Gas, Maritime Transportation System, FCI/CUI, etc.

Preferred Qualifications

  • Extensive professional network across the Executive Branch of the Federal Government, DOE, DHS, DoD, FBI public and private sector cyber security companies, consortiums and associations
  • General Info Security: Security Principles, Threat Lifecycle Management, Incident Management & Lifecycle, Familiarity with Industry Standards (NIST 800-53, ISO 27001, etc.) and Security operations best practices.
  • Knowledge of network protocols (e.g., Transmission Control Protocol/Internet Protocol [TCP/IP], Dynamic Host Configuration Protocol [ DHCP] and directory services (e.g., Domain Name System [DNS], Active Directory)
  • Knowledge of incident categories, incident responses, and timelines for responses
  • Knowledge of incident response and handling methodologies
  • Knowledge of digital forensics and eDiscovery methodologies and processes
  • Masters degree in a technology discipline or MBA with one or more certifications relevant to Information Security Body of Knowledge (i.e. CISM, CISSP, CISA)
  • Track record of successfully implementing and optimizing the use of the NIST Cyber Security Framework and Cybersecurity Capability Maturity Models (C2M2) focused on the energy sector
  • Knowledge of Network Security monitoring and Cyber Security Systems Engineering best practices and operational processes
Resume ExampleCover Letter Example