We’re Building the Future! Ever want to do hard work that will make a REAL difference in the world? Do you want to solve some of the most difficult problems with a team of exceptional players at a company that does not believe in impossible?
About Powin:
Powin Energy is a leading producer of utility scale modular battery energy storage system (complete with a patented, advanced, cloud-based monitoring/control system). That means we build power plants out of batteries that put coal and gas generators out of business and enable sustainable viability for renewable energy sources like solar and wind.
Powin is, and will continue to be, one of a handful of companies that will provide the equipment necessary to make this happen. Powin has distinct competitive advantages: cost-effectiveness; reliability; scalability; deploy-ability; and operational sophistication. Every day we work to ensure that we maintain these competitive advantages and our position as a global leader in providing turnkey, battery energy storage solutions for utility-scale, commercial and industrial, and microgrid applications.
Summary:
As an IT Security Analyst, you will champion our security and compliance initiatives by supporting the analysis, definition, and implementation of IT security processes and technology as a member of our IT Security team. This position will report to the IT Security Director, and will be based in Portland, Oregon or can be a remote/hybrid role with minimal travel. You will utilize your previously demonstrated technical expertise to fulfill the job responsibilities with limited managerial oversight, while collaborating cross-functionally with subject matter experts throughout Powin.
Responsibilities:
- Develop and deliver security training, documentation, and guidance to technical and non-technical audiences
- Develop programs to effectively promote security and privacy practices and awareness across the organization
- Participate in security incident response activities
- Assist IT staff in projects and support activities where security expertise is required
- Evaluate and manage security monitoring and management tools
- Participate in compliance initiatives with IT and Powin’s business units
- Conduct technical reviews and compliance evaluation of corporate IT products and applicable security standards
- Monitor reliability and security developments in the industry and recommend and/or incorporate into company security programs
- Participate in the evaluation and acquisition of security products and vendors for the enterprise
- Create and maintain document repositories necessary for Powin and its affiliates to demonstrate to regulatory compliance
- Provide regular reporting and metrics on security monitoring, project activities, MSSP and vendor interactions
- Assist in investigation of and external reporting associated with compliance violations and cyber incidents and lead the creation of incident risk mitigation, issue resolution and recovery processes for Powin
Qualifications:
- 5+ years of IT, Data and/or Cyber Security experience
- Demonstrated in-depth, technical understanding of popular security frameworks including NIST or CIS for cyber security, physical security, data security; security controls, incident response, and/or network/cloud architecture
- Experience securing cloud/SaaS environments required
- Experience with security monitoring tools and applications required
- Ability to provide hands-on troubleshooting when needed
- Ability to effectively multi-task and manage time in a dynamic environment
- Ability to demonstrate sound judgment and work independently
- Demonstrated ability to communicate professionally verbally and in writing, including technical documentation related to security artifacts
- Ability to maintain positive and productive working relationships with various individuals and groups
- BA/BS degree or equivalent experience required
- Certifications like CISA, CISM, CISSP or GIAC are a plus, but at least one certification is required (or in process)
- Experience with international security, NERC CIP, NIST SP800 series and ISO 27000 series standards are plusses
- Experience interfacing with Managed Services Providers and a range of SaaS applications
- Prior exposure to recovering from a threat or attack is preferred
- Prior experience participating in internal and external IT security audits is a plus
- Prior experience working with or at a Managed Security Service Provider (MSSP) is a preferred
- Fluency with M365 products, mainly Excel and PowerPoint
- Limited travel requirements – up to 10%
- Ability to work off hours in the event of a breach / threat that requires immediate response
Powin is not accepting resumes from unsolicited headhunters or agencies at this time.
EEO STATEMENT: The Company is an equal opportunity employer and complies with all applicable federal, state, and local fair employment practices and laws. The Company is committed to providing equal employment opportunities to all employees and job applicants without unlawful regard to race, color, age, gender, gender identification or expression, sexual orientation, familial status, religion or creed, national origin, ancestry, medical condition, marital status, protected veteran status, disability (mental or physical), or any other legally protected status under federal, state, or local law.
E-Verify: Powin participates in E-Verify and candidates will need to pass successfully upon completion of hire date.
#LI-remote
#LI-DB1