General Electric Sr Staff Cyber Security Architect in Bengaluru, India
Job Description Summary
As part of GE Renewable’s IT Security & Risk organization, this individual will lead the assessment and remediation of technology vulnerabilities in the Renewables enterprise. These vulnerabilities include OT/shop floor environments, Cloud systems & applications, and traditional on-premise infrastructure. Utilizing a risk-based approach, this analyst will work to prioritize remediation activities and engage appropriate functional/asset owners for resolution.
Essential Responsibilities :
This individual will work to drive process enhancement, stakeholder education, and increased risk prioritization to ultimately improve Renewable Energy's global security posture.
In addition, you will: Engage asset owners owners to identify high risk configurations (vulnerabilities) as determined by the Renewable's security policies and frameworks Educate asset owners on defect remediation steps and preventive measures to avoid high risk configurations
Establish reporting rhythms to engage asset owners and update senior stakeholders on status & required remediation actions
Collaborate with internal & external peers to ensure a best in class approach is taken to identify and remediate high risk vulnerabilities
Identify and execute opportunities to improve vulnerability management practices and prioritization
Build automated metrics to monitor compliance and adherence to standards/policies
Partner with Digital leadership (E.g. CIO, CDO) to bolster security posture and ensure IT policy adherence
Communicate and present implementation and progress updates to executive leadership
Operationalize and deploy new IT Risk solutions across Renewables in collaboration with other GE Digital & other industrial organizations
Ensure architecture solutions adhere to cloud and application sec Ops KPIs and SLAs
Bachelor’s Degree in Information Technology or in a STEM major (Science, Technology, Engineering, or Math)
Proven hands-on IT security experience in database, web technologies, networking, or a combination thereof in a large Enterprise setting
Desired Characteristics :
Strong technical background in IT, demonstrated appetite for new technology, willingness to be very hands-on in a deeply technical and fast-evolving technology area
Experience with Linux and Windows server operating systems
Experience with NIST, ISO, CIS security frameworks
Experience with OT security or network security technologies and practices
Demonstrated problem solving and critical thinking skills
GE Information Technology Leadership Program (ITLP) Graduate (GE employees only)
CISSP/CSSLP or equivalent security certification or training
Six Sigma Green Belt Certification or equivalent quality certification
Expertise in one or more: vulnerability/patch management, OT/IT security, enterprise architecture
GE is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law.
*Disclosure of your Gender or Sexual orientation is completely Voluntary and not mandatory.
Relocation Assistance Provided: Yes