Job Description

Join the Clean Energy Revolution

At Southern California Edison, IT goes beyond the traditional “service provider” function. Working for us, you’ll have the chance to drive innovation and develop technology solutions that are transforming the power industry and enabling a new generation of clean energy.

As an Identity & Access Management, Senior Advisor, you are a key member of our team looking to make a difference, using your excellent problem-solving abilities and tech savvy to provide IAM and reporting solutions to our customers. You're a professional and trusted advisor who can quickly learn the intricacies of our business and how to enhance it with your expertise in information security, identity access management, and compliance, particularly NERC/CIP. At SCE, you're not just a problem solver; you're an innovator, constantly seeking new ways to improve IT operations and processes. As a collaborator and coach, you have the unique ability to mentor and develop a diverse team.

We're looking for someone who can apply their leadership skills, security expertise and direct experience with NERC CIP-004-7, focusing on access management and revocation standards, to take their career to the next level.

Become an Identity & Access Management, Senior Advisor at SCE and build a better tomorrow. Your work will help power our planet, reduce carbon emissions, and create cleaner air for everyone. Join us and be part of a team that values you!

A day in the life - Get ready to think big, work smart and shine bright!

• Support the Identity & Access Management Program within the Enterprise Transformation Services organization by reviewing organizational security protocols, systems, and procedures to ensure they meet compliance and cybersecurity standards.

• Service Management of NERC CIP Identity Access Management Operations Team to ensure incident and problem resolution is prompt, minimizes client disruptions, and helps avoid recurring issues.

• Provide critical support for various aspects of access management, including digital certificate, security group, and entitlement management. Support the adoption of Authentication and Authorization reference architectures for existing, new, and emerging IAM technologies, including solutions to address changes in security frameworks and regulations.

• Support organization-wide strategy and implementation plans including Privileged Access Management, Single Sign On, and IAM governance. Identify and resolve gaps in operational/business processes which may include security/authorization set-up, user documentation, data interface design, data migration, and reconciliation.

• Improve performance management of the managed service provider, SCE IT, or 3rd party service delivery processes and procedures by setting and analyzing performance metrics, gathering feedback from clients and team members, and implementing changes to enhance efficiency, effectiveness, and customer satisfaction.

• Partner with Operating Unit clients to ensure acceptable satisfaction in the timely delivery of IT services to the business, adherence to compliance standards, and overall governance of the NERC CIP program.

• Use Active Directory knowledge to manage access rights across diverse platforms.

• Create and maintain PowerBI reports and dashboards.

• Communicate and coordinate with other IT teams, business leadership, and project managers to ensure appropriate integration of processes and modules across the enterprise, including application stability and data integrity.

• Manage the NERC CIP Access Management & Revocation (AMR) Program operational activities for compliance and governance across the organization.

• Manage overall operational activities compliance for NERC CIP-004-7 standards and on-going regulatory audits and compliance remediation activities.

• Assess IAM and NERC CIP projects scope, offer recommendations, and make decisions regarding design and readiness for large or company-wide transformation initiatives that impact project schedule, scope, and budget. 

The Essentials

• Ten (10) or more years of experience in Information Technology, Operations, Governance, Risk, Compliance, IT Audit or related technical fields.

• Two (2) or more years of experience in Identity & Access Management and/or NERC CIP Compliance, including onboarding, offboarding, user de/provisioning, SSO, federated identities, multi-factor authentication, and access revocation.

• Two (2) or more years of experience working with IAM technologies like\: SailPoint IdentityIQ / Identity Security Cloud, Onapsis, OKTA, Active Directory, Logiplex, CyberArk.

• Experience supporting large highly regulated or publicly traded companies' application portfolios.

• Quick learner of new systems and technologies.

• Experience independently coordinating projects, managing multiple tasks and priorities.

• Self-motivated, with excellent organizational, communication, and documentation skills.

• Experience and proficiency in collaborating with multi-cultural teams across various time zones, dedicated to exceptional customer service.

The Preferred

• Bachelor’s degree or higher in Information Technology, Engineering, Computer Science, Information Systems, Business Administration, or related field.

• One or more certifications in Cybersecurity, Information Security, or Compliance/Audit, such as\: CIA, CISSP, CISA, CRISC, CISM, CIAM, or other related certifications.

• Experience and understanding of various Access Control Models, including discretionary, mandatory, and role-based access control (RBAC), as well as knowledge of Authentication and Authorization Methods, such as multi-factor authentication, single sign-on, and authorization concepts.

• Experience leading Information Security and/or IAM projects, working directly with key business partners, executives, and project teams.

• Experience and proficiency in DevOps/ Agile/ Scrum/ Kanban.

• Experience with any or all the following\:

• SAP\: SAP Security, BTP/IAS/IPS, SuccessFactors, FieldGlass, ECC / GRC / Master Data Governance (MDG) / Industry Solutions for Utilities (ISU) / ONAPSIS

• Cloud\: Microsoft Azure, Google Cloud Platform, AWS in both an infrastructure and application context

• Data /Integration Technologies or Platforms\: Snowflake, Power BI, Python, SQL, SAP BW on HANA or BW4/HANA, Talend, SAP PO, Datapower, Microsoft Excel (Advanced proficiency)

• Security and Compliance Frameworks\: NIST, COBIT, ISO 27001, NERC CIP, CIS Foundations Benchmarks

You should know

This position’s work mode is hybrid.  The employee will report to an SCE facility for a set number of days with the option to work remotely on the remaining days.  Unless otherwise noted, employees are required to reside in the state of California.  Further details of this work mode will be discussed at the interview stage.

Visit our Candidate Resource (https\://sce.taleo.net//www.edisoncareers.com/page/show/candidate-resources)  page to get meaningful information related to benefits, perks, resources, testing information, hiring process, and more!

The primary work location for this position is Rosemead, CA however, the successful candidate may also be asked to work for a period out in the field throughout the SCE service territory.

This position has been identified as a NERC/CIP impacted position - Prior to being hired, the successful candidate must pass a Personnel Risk Assessment (PRA) or Background Investigation. Once hired, the candidate must complete specified training prior to gaining un-escorted access to assigned work location and performing necessary job duties.

Relocation does not apply to this position.

About Southern California Edison

The people at SCE don't just keep the lights on. Our mission is so much bigger. We’re fueling the kind of innovation that’s changing an entire industry, and quite possibly the planet. Join us and create a future with cleaner energy, while providing our customers with the safety and reliability they demand. At SCE, you’ll have a chance to grow personally and professionally, making a real impact in Southern California and around the world.

At SCE, we celebrate our differences. We are a proud Equal Opportunity Employer and will not discriminate based on race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status or any other protected status.

We are committed to ensuring that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodations at (833) 343-0727.