ISACA Los Angeles Chapter
Identity & Access Management, Sr. Advisor
ISACA Los Angeles Chapter, Rosemead, California, United States, 91770
Join the Clean Energy Revolution
At Southern California Edison, IT goes beyond the traditional “service provider” function. Working for us, you’ll have the chance to drive innovation and develop technology solutions that are transforming the power industry and enabling a new generation of clean energy.
As an Identity & Access Management, Senior Advisor, you are a key member of our team looking to make a difference, using your excellent problem-solving abilities and tech savvy to provide IAM and reporting solutions to our customers. You’re a professional and trusted advisor who can quickly learn the intricacies of our business and how to enhance it with your expertise in information security, identity access management, and compliance, particularly NERC/CIP. At SCE, you’re not just a problem solver; you’re an innovator, constantly seeking new ways to improve IT operations and processes. As a collaborator and coach, you have the unique ability to mentor and develop a diverse team.
We’re looking for someone who can apply their leadership skills, security expertise and direct experience with NERC CIP-004-7, focusing on access management and revocation standards, to take their career to the next level.
Become an Identity & Access Management, Senior Advisor at SCE and build a better tomorrow. Your work will help power our planet, reduce carbon emissions, and create cleaner air for everyone. Join us and be part of a team that values you!
A day in the life – Get ready to think big, work smart and shine bright!
Support the Identity & Access Management Program within the Enterprise Transformation Services organization by reviewing organizational security protocols, systems, and procedures to ensure they meet compliance and cybersecurity standards.
Service Management of NERC CIP Identity Access Management Operations Team to ensure incident and problem resolution is prompt, minimizes client disruptions, and helps avoid recurring issues.
Provide critical support for various aspects of access management, including digital certificate, security group, and entitlement management. Support the adoption of Authentication and Authorization reference architectures for existing, new, and emerging IAM technologies, including solutions to address changes in security frameworks and regulations.
Support organization-wide strategy and implementation plans including Privileged Access Management, Single Sign On, and IAM governance. Identify and resolve gaps in operational/business processes which may include security/authorization set-up, user documentation, data interface design, data migration, and reconciliation.
Improve performance management of the managed service provider, SCE IT, or 3rd party service delivery processes and procedures by setting and analyzing performance metrics, gathering feedback from clients and team members, and implementing changes to enhance efficiency, effectiveness, and customer satisfaction.
Partner with Operating Unit clients to ensure acceptable satisfaction in the timely delivery of IT services to the business, adherence to compliance standards, and overall governance of the NERC CIP program.
Use Active Directory knowledge to manage access rights across diverse platforms.
Create and maintain PowerBI reports and dashboards.
Communicate and coordinate with other IT teams, business leadership, and project managers to ensure appropriate integration of processes and modules across the enterprise, including application stability and data integrity.
Manage the NERC CIP Access Management & Revocation (AMR) Program operational activities for compliance and governance across the organization.
Manage overall operational activities compliance for NERC CIP-004-7 standards and on-going regulatory audits and compliance remediation activities.
Assess IAM and NERC CIP projects scope, offer recommendations, and make decisions regarding design and readiness for large or company-wide transformation initiatives that impact project schedule, scope, and budget.
The Essentials
Ten (10) or more years of experience in Information Technology, Operations, Governance, Risk, Compliance, IT Audit or related technical fields.
Two (2) or more years of experience in Identity & Access Management and/or NERC CIP Compliance, including onboarding, offboarding, user de/provisioning, SSO, federated identities, multi-factor authentication, and access revocation.
Two (2) or more years of experience working with IAM technologies like: SailPoint IdentityIQ / Identity Security Cloud, Onapsis, OKTA, Active Directory, Logiplex, CyberArk.
Experience supporting large highly regulated or publicly traded companies’ application portfolios.
Quick learner of new systems and technologies.
Experience independently coordinating projects, managing multiple tasks and priorities.
Self-motivated, with excellent organizational, communication, and documentation skills.
Experience and proficiency in collaborating with multi-cultural teams across various time zones, dedicated to exceptional customer service.
The Preferred
Bachelor’s degree or higher in Information Technology, Engineering, Computer Science, Information Systems, Business Administration, or related field.
One or more certifications in Cybersecurity, Information Security, or Compliance/Audit, such as: CIA, CISSP, CISA, CRISC, CISM, CIAM, or other related certifications.
Experience and understanding of various Access Control Models, including discretionary, mandatory, and role-based access control (RBAC), as well as knowledge of Authentication and Authorization Methods, such as multi-factor authentication, single sign-on, and authorization concepts.
Experience leading Information Security and/or IAM projects, working directly with key business partners, executives, and project teams.
Experience and proficiency in DevOps/ Agile/ Scrum/ Kanban.
Experience with any or all the following:
SAP: SAP Security, BTP/IAS/IPS, SuccessFactors, FieldGlass, ECC / GRC / Master Data Governance (MDG) / Industry Solutions for Utilities (ISU) / ONAPSIS
Cloud: Microsoft Azure, Google Cloud Platform, AWS in both an infrastructure and application context
Data /Integration Technologies or Platforms: Snowflake, Power BI, Python, SQL, SAP BW on HANA or BW4/HANA, Talend, SAP PO, Datapower, Microsoft Excel (Advanced proficiency)
Security and Compliance Frameworks: NIST, COBIT, ISO 27001, NERC CIP, CIS Foundations Benchmarks
#J-18808-Ljbffr
At Southern California Edison, IT goes beyond the traditional “service provider” function. Working for us, you’ll have the chance to drive innovation and develop technology solutions that are transforming the power industry and enabling a new generation of clean energy.
As an Identity & Access Management, Senior Advisor, you are a key member of our team looking to make a difference, using your excellent problem-solving abilities and tech savvy to provide IAM and reporting solutions to our customers. You’re a professional and trusted advisor who can quickly learn the intricacies of our business and how to enhance it with your expertise in information security, identity access management, and compliance, particularly NERC/CIP. At SCE, you’re not just a problem solver; you’re an innovator, constantly seeking new ways to improve IT operations and processes. As a collaborator and coach, you have the unique ability to mentor and develop a diverse team.
We’re looking for someone who can apply their leadership skills, security expertise and direct experience with NERC CIP-004-7, focusing on access management and revocation standards, to take their career to the next level.
Become an Identity & Access Management, Senior Advisor at SCE and build a better tomorrow. Your work will help power our planet, reduce carbon emissions, and create cleaner air for everyone. Join us and be part of a team that values you!
A day in the life – Get ready to think big, work smart and shine bright!
Support the Identity & Access Management Program within the Enterprise Transformation Services organization by reviewing organizational security protocols, systems, and procedures to ensure they meet compliance and cybersecurity standards.
Service Management of NERC CIP Identity Access Management Operations Team to ensure incident and problem resolution is prompt, minimizes client disruptions, and helps avoid recurring issues.
Provide critical support for various aspects of access management, including digital certificate, security group, and entitlement management. Support the adoption of Authentication and Authorization reference architectures for existing, new, and emerging IAM technologies, including solutions to address changes in security frameworks and regulations.
Support organization-wide strategy and implementation plans including Privileged Access Management, Single Sign On, and IAM governance. Identify and resolve gaps in operational/business processes which may include security/authorization set-up, user documentation, data interface design, data migration, and reconciliation.
Improve performance management of the managed service provider, SCE IT, or 3rd party service delivery processes and procedures by setting and analyzing performance metrics, gathering feedback from clients and team members, and implementing changes to enhance efficiency, effectiveness, and customer satisfaction.
Partner with Operating Unit clients to ensure acceptable satisfaction in the timely delivery of IT services to the business, adherence to compliance standards, and overall governance of the NERC CIP program.
Use Active Directory knowledge to manage access rights across diverse platforms.
Create and maintain PowerBI reports and dashboards.
Communicate and coordinate with other IT teams, business leadership, and project managers to ensure appropriate integration of processes and modules across the enterprise, including application stability and data integrity.
Manage the NERC CIP Access Management & Revocation (AMR) Program operational activities for compliance and governance across the organization.
Manage overall operational activities compliance for NERC CIP-004-7 standards and on-going regulatory audits and compliance remediation activities.
Assess IAM and NERC CIP projects scope, offer recommendations, and make decisions regarding design and readiness for large or company-wide transformation initiatives that impact project schedule, scope, and budget.
The Essentials
Ten (10) or more years of experience in Information Technology, Operations, Governance, Risk, Compliance, IT Audit or related technical fields.
Two (2) or more years of experience in Identity & Access Management and/or NERC CIP Compliance, including onboarding, offboarding, user de/provisioning, SSO, federated identities, multi-factor authentication, and access revocation.
Two (2) or more years of experience working with IAM technologies like: SailPoint IdentityIQ / Identity Security Cloud, Onapsis, OKTA, Active Directory, Logiplex, CyberArk.
Experience supporting large highly regulated or publicly traded companies’ application portfolios.
Quick learner of new systems and technologies.
Experience independently coordinating projects, managing multiple tasks and priorities.
Self-motivated, with excellent organizational, communication, and documentation skills.
Experience and proficiency in collaborating with multi-cultural teams across various time zones, dedicated to exceptional customer service.
The Preferred
Bachelor’s degree or higher in Information Technology, Engineering, Computer Science, Information Systems, Business Administration, or related field.
One or more certifications in Cybersecurity, Information Security, or Compliance/Audit, such as: CIA, CISSP, CISA, CRISC, CISM, CIAM, or other related certifications.
Experience and understanding of various Access Control Models, including discretionary, mandatory, and role-based access control (RBAC), as well as knowledge of Authentication and Authorization Methods, such as multi-factor authentication, single sign-on, and authorization concepts.
Experience leading Information Security and/or IAM projects, working directly with key business partners, executives, and project teams.
Experience and proficiency in DevOps/ Agile/ Scrum/ Kanban.
Experience with any or all the following:
SAP: SAP Security, BTP/IAS/IPS, SuccessFactors, FieldGlass, ECC / GRC / Master Data Governance (MDG) / Industry Solutions for Utilities (ISU) / ONAPSIS
Cloud: Microsoft Azure, Google Cloud Platform, AWS in both an infrastructure and application context
Data /Integration Technologies or Platforms: Snowflake, Power BI, Python, SQL, SAP BW on HANA or BW4/HANA, Talend, SAP PO, Datapower, Microsoft Excel (Advanced proficiency)
Security and Compliance Frameworks: NIST, COBIT, ISO 27001, NERC CIP, CIS Foundations Benchmarks
#J-18808-Ljbffr