Cybersecurity Strategy Program Leader

At AES, we raise the quality of life around the world by changing the way energy works. Everyone makes an impact every day in our small, global teams. Apply here to start an extraordinary career today.
The Cybersecurity Strategy Program Leader supports the CISO by leading programmatic elements of the AES' Global Cybersecurity program. The individual in this role will proactively identify strategic/systemic risks and actively communicate with executive level corporate and global leaders to address potential threats. The individual is responsible for developing, maintaining, publishing, and socializing corporate information security standards to include talent development, procedures and guidelines. The role requires the ability to lead and achieve objectives in a global matrixed organization. The role will be focused on securing AES enterprise IT and Industrial Control System (ICS) assets from cyber-related threats utilizing industry, risk-based, best practices. The individual will be a deep subject matter expert who consults with industry peers/experts and AES business leaders to ensure direct leadership visibility to cybersecurity risk, trends, and best practices which are closely linked to the strategy and objectives of AES' core business.
Responsibilities:
Develop and maintain the corporate cybersecurity strategy
Develop, maintain and publish all corporate-level information security standards and guidelines based on best practices and the corporate strategy
Provide leadership and implement best practices and standards for securing AES assets from cyber-related threats.
Actively develop and maintain strong relationships with internal stakeholders and external partners.
Define and implement cybersecurity risk frameworks.
Develop and maintain cybersecurity talent development framework.
Work closely with legal and sourcing functions to develop and review third party contract language related to cybersecurity.
Maintain strong relationship with global insurance group regarding cybersecurity insurance coverage.
Qualifications:
Bachelors degree required. Master's degree in related field preferred.
15+ years of progressive IT solutions, compliance, regulatory experience
Direct experience in cybersecurity at a leadership level which includes proven track record leading matrixed teams and managing resources
Expert-level knowledge of risk assessment frameworks and procedures, role-based authorization methodologies, NIST Framework and SANS Critical 20 Controls
Knowledge of Industrial and or Plant Control systems architecture and security desired
Executive presence and confidence to engage directly, constructively, and with credibility with the executive leadership team and other senior leaders
Strong relationship building, stakeholder management and influencing skills required, in-person & remotely.
Must be detail oriented and have analytical problem-solving capabilities and critical thinking skills
Strong communication and public-speaking abilities
Ability to work at a fast pace and shift focus quickly
Self-starter who deals well with ambiguity
CISSP or CISM credentials required
Global experience a plus
The AES Corporation is a Fortune 200 global power company. We provide affordable, sustainable energy to 17 countries through our diverse portfolio of distribution businesses as well as thermal and renewable generation facilities. Our workforce of 21,000 people is committed to operational excellence and meeting the world's changing power needs. AES is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, genetic information, disability or protected veteran status. E-Verify Notice: AES will provide the Social Security Administration (SSA) and, if necessary, the Department of Homeland Security (DHS), with information from each new employee's I-9 to confirm work authorization.

Don't Be Fooled

The fraudster will send a check to the victim who has accepted a job. The check can be for multiple reasons such as signing bonus, supplies, etc. The victim will be instructed to deposit the check and use the money for any of these reasons and then instructed to send the remaining funds to the fraudster. The check will bounce and the victim is left responsible.

More Jobs

Cybersecurity Fusion Center Leader, Senior
McLean, VA Booz Allen Hamilton Inc.
Oil and Gas Cybersecurity Leader, Senior
McLean, VA Booz Allen Hamilton Inc.
Cybersecurity Intelligence & Stakeholder Progr...
Arlington, VA AES Corporation
Program Office Support (Customer Service Portf...
Springfield, VA Strategic ACI
Principal HCM Cloud Technical Solutions Progra...
Richmond, VA Oracle