AMEREN SERVICES COMPANY Cybersecurity Analyst II Governance in Saint Louis, Missouri
About The PositionThe Cybersecurity Analyst II - Governance is responsible for overseeing and carrying out the corporate cybersecurity program and strategy, governance, risk management, cyber incident response, policy, and cyber training, awareness, and outreach. Key responsibilities include:* Works with and supports the overall process for defining, implementing, and enforcing cybersecurity policies, standards, procedures and guidelines.* Works with and supports the reporting process for cybersecurity, which includes risk modeling and Key Performance Indicators KPI.* Manages the SOX, PCI, and HIPAA compliance programs.* Assists management with the overall cybersecurity strategy development and socialization.* Ensures that enterprise-wide security, privacy, and compliance standards are enforced throughout the entire organization.* Evaluates new and emerging products and technologies based on security, compliance, and regulatory needs.* Defines, establishes, and maintains a cybersecurity training and awareness program to include content development, delivery, and knowledge assessment.* Maintains a cybersecurity department program for internal security, compliance, and regulatory training.* Supports Legal by providing direct litigation and legal hold support services.* Works with and supports the IT and cybersecurity incident management program to include incident identification, analysis, remediation, and reporting.* Assists management with cybersecurity risk management activities to include risk modeling, analysis, and assessment.* Participates in and supports applicable security and industry cybersecurity working groups.* Assists management with cybersecurity initiatives including security, compliance, and regulatory consulting and subject matter expertise support to Company business segments.* Influences and supports the culture, values, and standards of the IT organization.* May be required to provide on-call support for a 7x24x365 operation. QualificationsBachelor's degree in Business, Computer Science, Management Information Systems, Mathematics, Engineering other computer-related degree from an accredited college or university preferred. Professional certification, e.g. CISSP, GIAC, CISA, preferred. Four or more years of experience in an enterprise Information Technology department required. Three or more years of experience in cybersecurity required. Experience with SCADA and/or plant control systems preferred. In addition to the above qualifications, the successful candidate will demonstrate: Proven analytical skills, able to make sound decisions with ambiguous information and possess a high level of organizational skills. Creative self-starter with strong interpersonal skills - able to work effectively as a team and with various stakeholders at all levels of the organization. Excellent communication skills, including presentation, written and verbal.Intermediate knowledge of managing and securing the following technologies is preferred: Enterprise Windows and Linux clients, servers, and networkin, TCP/IP networking routing, switching, firewalling, Wireless security, Storage, database, and virtualization security, Anti-virus, HIPS, Disk encryption, and Data Loss Prevention, Network and endpoint security prevention and detection, Vulnerability scanning and verification, and Log collection and correlationEmployer's Job# 18856Please visit job URL for more information about this opening and to view EOE statement..