Senior Manager Cyber Security

Job Specifications

Black Hills Energy is people powered and purpose driven. Our team uses the power of energy to improve life for over one million customers in 800+ communities across the West and Midwest. We seek talented, caring people who embody our core values and contribute to a culture of inclusion and growth. As an organization, we believe the best part of working on our team is our commitment to making tomorrow better than today-for our customers, communities and each other.

Position summary:

As the Security Operations Senior Manager, you will be working with key stakeholders, including various Business, IT and Enterprise Security teams, you will lead and strengthen the Cyber Security Operations Team to fulfill the mission to protect against cyber threats and monitor, detect and respond to cyber security threats to Black Hills Energy. Your team will work alongside the established Enterprise Security Management Team and IT Operations to strengthen an already robust cyber security program. You will lead the daily operations of the Cyber Security Operations Team which includes Vulnerability Management, Endpoint protection, Incident Monitoring and Response, Web filtering, Firewall, Threat Intelligence gathering, Threat hunting and Internal Red Team / Blue Team efforts. Also included are various IT related aspects of SOX, TSA and NERC CIP compliance. In addition, this includes reviewing and recommending various security vendors and technologies and managing the financial/budget aspects of the security team.

Pay Range: $124,900 - $206,300 (This posting includes the full pay range for this position. Pay is based on a number of factors and may vary depending on job-related knowledge, skills, experience, and internal equity.)

Reporting Relationship: Chief Security Officer

Location: Rapid City, South Dakota

Relocation Assistance: Relocation assistance is available based on individual circumstances! Details to be shared during the offer process.

Essential Functions:
* Lead 24/7, enterprise-wide cyber / information security personnel and teams, including vendors and professional services contractors, protecting BHE's critical products, services, data, assets, employees, and customers across all Cloud, Information Technology (IT) and Operational Technology (OT) mission areas by conducting various cyber security key functions/activities, including: Risk Mitigation, Vulnerability Management, Data Protection, Web Filtering, Insider Threat, Malware Analysis and Forensics, Incident Response, Threat Intelligence and Hunting, Red/Blue/Purple Teaming, Regulatory and Compliance Functions, etc.
* Manage and mentor recruiting, professional development, training, retention and career progression functions for low-availability, high-skill, hyper-competitive cyber security workforce.
* Guide development and application of relevant operational management frameworks, processes and activities to maximize ROI and value prop while driving down risk, mitigating threats, building resilience and maximizing security efficiencies and effectiveness.
* Advise BHE board, senior decision makers and other stakeholders to raise awareness of and create solutions relating to cyber security equities, risk, requirements, capabilities and operational benefits.
* Provide critical input to business data, technology, risk and security planning efforts, providing cyber security input and vision to maximize information technology investments and use.
* Lead engagement with business unit partners, regulators and other stakeholders to ensure the consistent application of operational cyber security policies, compliance / regulatory standards and technical security controls across all projects, assets, systems and services.
* Develop and continuously refine processes and procedures that enhance business operations while maturing our cyber security personnel, capabilities and ecosystem.
* Partner with and author input to State and Federal policy, legislation and regulation initiatives pertaining to cyber security; liaison to Federal, State, local and industry cyber security stakeholders, security standard setting and regulatory oversight groups (DHS, TSA, DOJ, FBI, NERC, FERC, WECC, E-ISAC, DNG-ISAC, AGA, etc.); represent Black Hills Energy at various conferences, working groups and other venues with aforementioned partners/stakeholders/regulators/etc.
* Accomplish financial objectives by forecasting financial requirements, participate in the preparation of an annual budget including forward looking O&M and Capital budgets for all cyber security investments.

Additional Responsibilities:
* Cyber security POC for engagement with Federal Government agencies (DOE, DHS, TSA, FBI) in the event of intelligence sharing, coordination related to industry cyber-attacks, and or mandatory reporting.
* NERC/CIP/TSA cyber security coordinator for meeting/maintaining all operational regulatory and compliance requirements.
* Black Hills Energy Board and Executive Leadership advisor on cybersecurity incidents, topics and equities.
* Collaborate with business and information technology partners to craft, communicate, bolster our cyber security culture and operational capabilities.

What Is Required:
* Bachelors degre in a closely related technical field; or an equivalent combination of education and experience is required.
* Minimum of 5 years of experience leading people is required.
* Minimum of 7 years of experience working in information technology and/or cyber security is required.

What Is Desired:
* Successful experience leading, organizing and directing multiple teams.
* A demonstrated ability to use positive influencing skills effectively to modify their organizational opinions, plans, or behaviors.
* Comprehensive understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business.
* Advanced understanding of cyber security and information technology operations, organizational design, and results.
* Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate course of actions.
* Strong organization, prioritization, and rationalization skills.
* Experience in planning and leading strategic initiatives.
* Excellent written and verbal communication skills.
* Professional cyber security certifications, ability to obtain certification or equivalent experience (CISM, CISSP, DOD, DOE, DHS/CISA, etc).

This description is not intended to be an all-inclusive list of responsibilities, duties, and requirements for employees in this position. Job descriptions may and do change periodically. Where positions are covered by a collective bargaining unit agreement, the terms and conditions of the agreement will apply.

About our Company: We are a customer, growth and safety focused utility company that is dedicated to our communities. We improve life with energy as an energy partner of choice. Our diverse culture fuels unique perspectives, opening doors to new insights and possibilities. Based in Rapid City, South Dakota, we have over 3000 employees and serve 1.3 million natural gas and electric utility customers across eight states (South Dakota, Montana, Wyoming, Colorado, Nebraska, Iowa, Kansas, and Arkansas).

Enjoy our Comprehensive Benefits Package! Annual discretionary bonuses, 401(k) (6% company match and up to 9% company retirement contribution), tuition reimbursement, generous paid time off benefits, including paid holidays and parental leave, company paid life insurance and disability benefits (short and long term), an employee assistance program and well-being benefits, and competitive medical, dental and vision insurance.

Candidates must successfully pass a pre-employment drug screen and background check.

Black Hills Energy does not sponsor applicants for work visas. All applicants must be legally authorized to work in the US.

We are an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, or status as a protected veteran. If you require reasonable accommodation, please visit careers.blackhillsenergy.com for more information.