Southern California Edison

Cybersecurity Incident Response Advisor

Rosemead, CA

$146,700-$220,100

About This Job

Join the Clean Energy Revolution

Become a Cybersecurity Incident Response Advisor at Southern California Edison (SCE) and help strengthen our security posture to build a better tomorrow. In this role, you’ll be responsible for developing, curating, and tuning detection capabilities within Microsoft Sentinel, Splunk, and other security toolsets to support cybersecurity operations. You will create and manage advanced security use cases, refine detection logic, and provide expert technical guidance to incident response teams. Additionally, you will play a critical role in CSOC triage and investigation efforts ensuring timely threat detection and response. You will collaborate with key stakeholders to enhance security monitoring, improve incident detection efforts, and maintain a high level of cybersecurity expertise.

In this role, you will:

•

Develop, curate, and tune detection rules, use cases, and alerts in Microsoft Sentinel, Splunk, and other security toolsets. This includes analyzing log data, creating custom queries, and refining alert thresholds to reduce false positives and improve detection accuracy.

•

Support CSOC triage and investigations, correlating security logs, analyzing alerts, and escalating incidents as necessary.

•

Provide deep technical guidance during security events, identifying root causes, refining detections based on emerging threats, and supporting post-incident analysis.

•

Monitor and stay up to date with the latest cybersecurity threats, vulnerabilities, and detection technologies, incorporating this knowledge into improved detection strategies.

•

Develop, document, and maintain SOPs and runbooks for detection use cases and security alert responses to ensure best practices and continuous improvement.

As a Cybersecurity Incident Response Advisor, your work will help power our planet, reduce carbon emissions and create cleaner air for everyone. Are you ready to take on the challenge to help us build the future?

Responsibilities

•

Manages cybersecurity project delivery by ensuring the cybersecurity team meets success criteria.

•

Delivers project reporting for assigned projects, conducts critical analysis of project status, potential risks, and continual process improvement.

•

Coordinates and performs appropriate maintenance to ensure reliable and secure performance of the security systems, including applying security patches, implementing version upgrades, modifying and improving services, and performing ongoing operational management tasks.

•

Contributes to an overall cybersecurity governance strategy, standards, and operational procedures.

•

Ensures technology risks impacting the business are effectively identified, quantified, communicated, and managed, including recommendations for resolution and identifying root causes/key themes.

•

Prepares and updates Plan of Actions & Milestones (POA&M) that identify security weaknesses, establish milestones, and implements compensating controls for remediating these weaknesses, while tracking the progress and effectiveness of the remediation.

•

Oversees the production of evidence to support internal and external audits.

•

Provides cybersecurity and risk assessments for new networks, services, and devices as needed.

•

Drives periodic monitoring of audit logs in accordance with requirements, and reports findings and concerns for further analysis and action, including breach notification and initiation of incident response, in accordance with protocols and procedures.

•

Delivers programs and processes to reduce information security risk and strengthen SCE's security posture.

•

A material job duty of all positions within the Company is ensuring the protection of all its physical, financial and cybersecurity assets, and properly accessing and managing private customer data, proprietary information, confidential medical records, and other types of highly sensitive information and data with the highest standards of conduct and integrity.

Minimum Qualifications

•

Seven or more years of experience in information technology, information security and/or cybersecurity.

•

US Citizenship Required.

Preferred Qualifications

•

Bachelor’s degree or higher, in a technical discipline.

•

Certifications: CISSP, GISF, GSEC.

•

Experience working in a Security Operation Center or Incident Response team.

•

Comfortable working in multiple, diverse IT environments and eco-systems.

•

Strong written and verbal communications skills.

•

Experience leading and collaborating with cross-functional teams.

•

Ability to think critically and maintain thorough and comprehensive documentation.

Additional Information

•

This position’s work mode is hybrid. The employee will report to an SCE facility for a set number of days with the option to work remotely on the remaining days. Unless otherwise noted, employees are required to work and reside in the state of California. Further details of this work mode will be discussed at the interview stage. The work mode can be changed based on business needs.

•

Visit our Candidate Resource page to get meaningful information related to benefits, perks, resources, testing information, hiring process, and more!

•

Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.

•

Position may require periodic travel to ohter physical locations throughout the SCE service territory.

•

This position has been identified as a NERC/CIP impacted position - Prior to being hired, the successful candidate must pass a Personnel Risk Assessment (PRA) or Background Investigation. Once hired, the candidate must complete specified training prior to gaining un-escorted access to assigned work location and performing necessary job duties.

•

Relocation may apply to this position.

About Southern California Edison

The people at SCE don't just keep the lights on. Our mission is so much bigger. We’re fueling the kind of innovation that’s changing an entire industry, and quite possibly the planet. Join us and create a future with cleaner energy, while providing our customers with the safety and reliability they demand. At SCE, you’ll have a chance to grow personally and professionally, making a real impact in Southern California and around the world.

Southern California Edison is a proud Equal Opportunity Employer, including disability and protected veteran status.

We are committed to ensuring that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodations at (833) 343-0727.

Cybersecurity Incident Response Advisor

About This Job

Join the Clean Energy Revolution

In this role, you will:

Responsibilities

Additional Information

About Southern California Edison

Similar Jobs

Cybersecurity Incident Response Advisor

Cybersecurity Incident Response Advisor

Cybersecurity Risk, Advisor

Cybersecurity Risk, Advisor

Senior Advisor, Cybersecurity

Senior Advisor, Cybersecurity

Cybersecurity Cloud Security Advisor

Cybersecurity Engineering Senior Advisor

Cybersecurity Engineering Senior Advisor

IT/OT Cybersecurity Advisor

Senior IT Advisor (Cybersecurity Planning Advisor)

Senior IT Advisor (Cybersecurity Planning Advisor

Cybersecurity Compliance Analyst

Cybersecurity Compliance Analyst

Cybersecurity Analyst

Cybersecurity Analyst

Supervisor, Corporate Cybersecurity

Cyber Security Specialist 4

Emergency Response Advisor

Cyber Security Specialist

Trending Jobs

Assistant General Manager, Navy Yard Electric Utility

Electrical Engineer

Accounts Payable Clerk

Apprentice Lineman

Division Order Analyst

contract landman

Attorney

Oil and Gas Land and Title Analyst - SAM Associate II

Apprentice Lineman I

Lineworker Apprentice I

Associate Attorney

Senior Landman

Foundry Professionals

Apprentice Lineman

Electrical Designer

Contracts Administrator

Residential Helper

Deckhand

Floorhand 2

Operator Assistant Trainee - Frac Acid