QUALIFICATIONS

• BS/BA in Computer Science or a related field
• 10+ years - Progressive experience in IT/Cybersecurity
• 5 years – Related supervisory and/or lead experience
• Proven ability to engage with Senior Management and regulators
• Experience with Endpoint Detection & Response (EDR/XDR), automation (SOAR) and SIEM tools
• Knowledge of technical infrastructure, networks, databases and systems
• In-depth knowledge of modern security concepts such as common attack vectors, malware, security analytics and threat intelligence
• Communication for Technical Leadership - Ability to communicate technical ideas and strategies effectively to non-technical audiences, including executive leadership, via multiple mediums (e.g., written communications, verbal communications, presentations, etc.)
• Strong analytical skills and attention to detail
• Project Delivery - Proven ability executing projects in a collaborative, fast paced environment
• Vendor / Contract Management - Ability to build effective relationships with third party providers, suppliers, and partners.
• Advanced technical degree and/or Cybersecurity Certifications preferred
  Unitil is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law.
  Last Updated: 07/30/202

POSITION PURPOSE

Works closely with the Director of Information Security to develop and implement strategies that will help protect company assets. Assists in determining the best protocol to ensure cybersecurity best practices are being followed. Manages the hiring and training process for cyber security personnel. Oversees daily security operations, to include assessments of IT security/risk posture within the IT network, systems and software applications, as well as assessments within the Vendor Management Program. Identifies opportunities to reduce risk and documents remediation options regarding acceptance or mitigation of risk scenarios. Evaluates IT management solutions, to facilitate continuous process improvement and ensure the solution(s) still meet business needs. Assists in the monitoring of IT compliance with SOX, CIS, NERC/CIP, Mass. Privacy and other legal and regulatory authorities. Maintains oversight of IT and vendors regarding the security maintenance of their systems and applications. Provides back up for cyber team members, as needed.

Key responsibilities including but not limited to:

• Management of IT security and IT risk (e.g., data systems, network and/or web, cloud) across the enterprise.
• Address questions from internal and external audits and examinations.
• Assessment of security posture for Unitil vendors.