Join the diverse and dynamic team that powers Michigan's largest energy provider and one of the nation's largest gas and electric combination utilities. Consumers Energy services 6.8 million of Michigan's 10 million residents - caring for our friends and neighbors in all 68 Lower Peninsula counties. We embrace a cleaner and leaner utility vision focused on eliminating energy waste and adding renewable energy from sources such as wind and solar.
General Summary of Job Responsibilities The Senior Principal Vulnerability Management Engineer is responsible for the evaluation and selection of standards and frameworks within Vulnerability Management and providing recommendations for mitigation and process improvements. The incumbent is recognized as a master in each of the Vulnerability Management domains, Vulnerability Assessment, Secure Coding, and Penetration Testing. Develop strategies and roadmaps for senior leadership and provide applications of those for rate case review. Oversee the work of lower level engineers and mentor peers aiding in the development of their skills. Essential Duties and Responsibilities
• Other duties as assigned or may be necessary
• Establish Vulnerability Management processes and standards, evaluate Vulnerability Management (software and patching risks), Secure Coding evaluations, and Penetration Testing
• Develop and enhance reports of metrics, measures, and report to assess current state of risk to the organization. Train other engineers on utilization of reports and debrief leaders on the interpretation of results. Utilize report to achieve compliance requirements, metrics standards, and the reduction of technology cyber risk to the organization
• Serve as a subject matter expert in the three team disciplines, Vulnerability Management, Secure Coding, or Penetration Testing
• Develop roadmaps to support the objectives of this practice and apply those to rate case development. Provide direct input to rate case inquiries as the recognized master in the security vulnerability management
• Assess and select Vulnerability Management standards and frameworks with leadership, identify and recommend adjustments to standards and frameworks accordingly. Lead organization initiatives to ensure standards are adhered to and inline with industry standards
• Research, design, and advocate new technologies, architectures, and security products that will support security requirements for Vulnerability Management. Represent Consumers Energy externally on these technologies and processes
Knowledge/Skills/Abilities• Competency in Vulnerability Management standards and frameworks
• Problem solving skills to lead root cause analysis and process improvements
• Knowledge of network and systems architecture/operations
• Ability to assess and assist in the development of Vulnerability Management standards and frameworks
• Ability to determine when risk warrants attention and can apply the appropriate standard for resolution
• High degree of integrity and confidentiality, as well as ability to adhere to company policies and best practices
• Ability to work with minimal supervision
• Excellent communication skills both written and verbal
Experience / Education• Bachelor's Degree in Cyber Security, Computer Science, or Information Technology with 10 - 12 years in Implementation experience with Vulnerability Management tools, Network scanning and assessment, Static and Dynamic code scanning, and Penetrations tools and techniques (Required)
• In lieu of a Bachelor's Degree, candidate must have a High School Diploma or GED with 14 - 16 years of experience.
Why should you join our team?
At Consumers Energy, we offer more than just a place to work. We foster a culture that supports career development, growth, and stability, and we take pride in offering our co-workers excellent benefits and compensation packages. We are deliberately creating an inclusive culture that makes our diverse team of co-workers feel valued, supported, and empowered every day. We're a company made up of thousands of people, all with different stories to share and work to do, but we stand united in our company purpose: world class performance delivering hometown service.
What we offer:
Competitive compensation packages Medical, Dental and Vision 401k with company match Paid parental leave Up to 13 paid Holidays Paid time off Educational Assistance ProgramDiversity, Equity & Inclusion:
We, at CMS Energy, value Diversity, Equity, & Inclusion. It is part of our DNA. We treat our employees with respect, we treat each other fairly and we value the opinions of others. We are passionate about building and nurturing an environment where everyone feels included. We don’t discriminate. We seek to learn about each other and better understand our unique differences. Our uniqueness makes us authentic. We create safe spaces where everyone can be who they truly are. We invite difficult conversations and uncomfortable topics. We value diverse perspectives; this is what makes us great together. We harbor an inclusive environment where employees feel empowered to share their backgrounds, experiences, and ideas. Our Employee Resource Groups, Women’s Advisory Panel (WAP), Women’s in Energy (WE), Minority Advisory Panel (MAP), Pride Alliance of Consumers Energy (PACE), GENERGY, capable, Interfaith and Veterans Advisory Panel (VAP) are key enablers to living the values of our company culture: Caring, Empowered, Deliberate, Agility, and Ownership.
All qualified applicants will not be discriminated against and will receive consideration for employment without regard to protected veteran status, disability, race, color, religion, sex, age, sexual orientation, gender identity or national origin.