Primary Purpose
Contributes to the effective operation of Cybersecurity team to achieve milestones and objectives in the assessment, implementation and operation of technical and procedural controls of the Company's cybersecurity infrastructure for the purposes of ensuring the confidentiality, integrity and availability of information and resources.

Duties and Responsibilities

• Maintain and operate cybersecurity technology and provide expertise in area of focus (e.g. Risk Assessments, Controls Engineering or Incident Response).
• Collaborates with the business to understand their needs in order to tailor security offerings unique to their environment.
• Uses working knowledge of IT system functionality, architecture and capabilities to effectively diagnose and troubleshoot issues with some assistance.
• Conducts competitive analyses on (in-use and alternative) cyber technologies and documents recommendations for our environment.
• Provides awareness and guidance within Sempra Infrastructure community on secure business processes, architecture design, and technical controls.
• Maintains awareness of evolving cybersecurity threats and best practices for mitigation.
• Develops procedures and guidelines for implementing information security systems and practices.
• Develops and aggregates metrics to measure, monitor and report on the effectiveness of information security controls and compliance with information security policies.
• Performs other duties as assigned (no more than 5% of duties).

Required Qualifications

• Bachelor's degree in Computer Science or other science or technology major and/or equivalent relevant experiences.
• 2+ years of direct experience within the information security field.
• In-depth experience in at least one cybersecurity discipline.
• Experience with projects of moderately-sized security related initiatives to successful completion.
• Demonstrated experience in vendor selection, testing, implementation, and operations of a broad array of security technologies.
• Familiarization with Endpoint protection software such as Trellix and Microsoft Defender.
• Familiarization in deploying vulnerability management agents.
• Experience deploying logging agents and configurations.
• Knowledge of firewalls and security zone.
• Experience working in an Operation Technology (OT), ICS / SCADA environment.
• Experience with SCADA network protocols.
• Experience with OT network monitoring tools (such as but not limited to: Dragos, Cybervision, CyberX).
• Ability to take initiative and work independently when needed.
• Ability to maintain, upgrade and recommend operational cybersecurity tools.
• Ability to work with Cybersecurity OT Engineering to make recommendations for new tools and capabilities.
• Ability to work effectively on multiple projects within a team structure and excellent written and oral communication skills.

Preferred Qualifications

• Certified Information Systems Security Professional (CISSP) certification, Global Information Security Professional (GISP) certification, Global Information Assurance Certification (GIAC), Certified Information Systems Auditor (CISA), or Certified Internal Auditor (CIA) certificate.
• Targeted professional cybersecurity certifications (i.e. forensics and incident response).
• Bilingual in English/Spanish.

Note: The Company strives to ensure that employees are paid equitably and competitively. Starting salaries may vary based on factors such as relevant experience, qualifications, and education.

Sempra Infrastructure offers a competitive total rewards package that goes beyond base salary. This position is eligible for an annual performance-based incentive (bonus) as well as merit-based recognition. Company benefits include health and welfare (medical, dental, vision), employer contributions to retirement benefits, life insurance, paid time off, as well as other company offerings such as tuition reimbursement, paid parental leave, and employee assistance programs.