We are Generac, a leading energy technology company committed to powering a smarter world.
Over the 60 plus years of Generac’s history, we’ve been dedicated to energy innovation. From creating the home standby generator market category, to our current evolution into an energy technology solutions company, we continue to push new boundaries.
*The formal title for this position is Cyber Security Engineering Spe
A career at Generac means stepping into a company that leads technological advances. For more than five decades, Generac has designed and manufactured diesel, natural gas, and bi-fuel generators, but we’ve evolved into so much more. As we continue to grow in both size and technological advances, we consistently push past norms to pave a way towards the future. We are not simply satisfied with what is working now. Instead, we challenge ourselves to revolutionize and optimize the industry while bringing out the best in our people.
As a Cybersecurity Engineer for Generac, your primary responsibility is to safeguard the enterprise from potential threats, vulnerabilities, and cyberattacks, by assessing and mitigating security risks. This involves conducting risk assessments through process and tools to detect vulnerabilities and threats, respond to potential and/or confirmed incidents, identifying and assisting with the design and implementation of security controls, and coordinating with appropriate stakeholders. Additional key aspects to the role include taking part in other Cybersecurity initiatives around defining controls and driving compliance with established policies and standards driven by NIST Cyber Security Framework. This role will require continuous learning through research and training to stay up to date on process and technology, as tactics of threat actors continue to develop and evolve.
Essential Duties and Responsibilities:
Conduct thorough risk assessments across the global environment to identify potential security vulnerabilities and assess the overall risk posture of the organization. These assessments may be through process assessments or may include the analysis of data from a suite of security tools.
Play a driving role in the patch management process, leveraging tools to identify system vulnerabilities. Will own the process of prioritizing vulnerabilities based on risk and impact, collaborating with asset owners for timely mitigation / remediation, and maintaining an updated inventory of vulnerabilities for regular reporting.
Serve as a key contact in incident response measures in the event an incident is declared, to address and mitigate the impact of the incident.
Assist in the deployment and management of other security tools and processes, and support other cybersecurity initiatives as needed.
Minimum Requirements:
Bachelor’s Degree with Information Technology focus, or equivalent experience 4+ years working within Information Technology with experience in security tools and technology.Preferred Qualifications:
CISA/CISM/CISSP or equivalentExperience with Tenable a plusExperience with industry security best practices and control frameworks, including but not limited to NIST CSF, ISO 27001, PCI, etcKnowledge, Skills, and Abilities:
Excellent communication and collaboration skills, with the ability to work effectively with stakeholders at all levels of the organization.Strong understanding of IT and business processes, with the ability to evaluate and/or implement IT controls and processes to manage cyber risks within those business processes.Strong analytical and problem-solving skills, with the ability to identify potential risks and develop effective solutions.Ability to manage multiple concurrent workstreams across different teams and/or areas of focus.Physical Requirements: While performing the duties of this job, the employee is regularly required to talk and hear; and use hands to manipulate objects or controls. The employee is regularly required to stand and walk. On occasion, the incumbent may be required to stoop, bend, or reach above the shoulders. The employee must occasionally lift up to 25 pounds. Specific conditions of this job are typical of frequent and continuous computer-based work requiring periods of sitting, close vision, and the ability to adjust focus.
Great Reasons to work for Generac:
Physical Demands: While performing the duties of this job, the employee is regularly required to talk and hear; and use hands to manipulate objects or controls. The employee is regularly required to stand and walk. On occasion the incumbent may be required to stoop, bend or reach above the shoulders. The employee must occasionally lift up to 25 pounds. Specific conditions of this job are typical of frequent and continuous computer-based work requiring periods of sitting, close vision and ability to adjust focus. Occasional travel.
“We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law.”