**SCS Technology Security** **Enterprise Security Architecture** **Manager, Business Information Security Liaison-Enterprise and Telecom** **Job Description** **Schedule:** M-F **Location:** Hybrid: Primarily remote 40% in office – Atlanta or Birmingham **Position Summary:** The Technology Security Organization is seeking a highly motivated and driven individual to lead our Business Information Security Liaison (BISL) teams for the enterprise, as well as the cyber program over our telecommunications security team. This role will be focused on leading a group of highly technical security liaisons and engineers which will drive change in order to reduce risk to our internal business partners. This role will support two separate functions, the Business Information Security Liaisons over identified enterprise departments and the Telecommunications cyber program which support both our wired and wireless business. Within the Business Information Security Liaison (BISL) function, this individual will lead a team to drive down cyber risks in the enterprise. This will be accomplished by partnering with identified business units, understating the cyber risks that could impact their business, maintaining the individual business area’s cyber risks metrics and mitigation strategies, and communicating emerging threats. Responsibilities include leading security initiatives through influence and relationships within business processes, developing and implementing a marketing-based approach to security services, and the ability to monitor and prepare for new regulatory requirements and technology best practices. Leading the Cybersecurity program for Southern Communications (our telecommunications business) includes managing a team of highly skilled security architects and engineers to address various security gaps identified. This team will work with the business units to identify and implement solutions for wired and wireless telecommunications and critical infrastructure. Responsibilities include representing the telecommunications cyber program with internal and external partners, designing and building security solutions, vulnerability remediation, assisting with incident response, performing configurations, providing metrics, conducting security awareness training, and reducing risk to the wired and wireless telecom platforms. The manager will work with the different business areas to align strategy and execution to increase cybersecurity maturity, drive initiatives to reduce cyber risk, and improve the organization's risk profile. This leader will be expected to understand and address risks impacting an electric, gas, and wired/wireless telecom utility company. **Job Responsibilities:** + Lead and manage a team by demonstrating a leadership approach focused on building, inspiring, and developing outstanding teams. + Serve as a trusted advisor to our stakeholders, by designing security solutions, for better security and business enablement. + Align forward thinking strategy with business goals to integrate and raise the bar on security practices and solutions using key performance indicators. + Develop a marketing-based approach to providing security services to improve technology, security awareness, and compliance across the supported areas. + Monitor, forecast, and prepare for new regulatory requirements and technology best practices driven by continued Southern Company growth. + Enhance processes to facilitate improved operational efficiencies, risk mitigation, and customer interactions. + Lead and deliver projects in scope, on time, and within budget. + Provide expertise to assist in the development of Southern Company’s security architecture – identify areas of opportunity, research alternatives, and recommend solutions. + Mentor others to strengthen cybersecurity principles and best practices. + Apply strong leadership and strategic thinking to a diverse set of opportunities and challenges. + Establish and maintain excellent working relationships and partnerships across the Technology Organization functions, business partners, and external vendors and suppliers. + Create an environment that fosters accountability, innovation, and engagement at all levels. + Appreciate and leverage the valuable inputs that come from diverse backgrounds and individual differences. **Requirements and qualifications:** Minimum + Proven experience leading a team of security professionals. + Experience promoting security as a business enablement function using influence, metrics, documentation, strong verbal communication, and presentation skills. + Deep knowledge of telecommunications (wired and wireless networks) and cybersecurity. + Ability to mentor and develop team members. + Strong relationship management skills to collaborate with decision-makers across the company. + At least 5 years of work experience playing a key role in building technical programs. + Experience prioritizing and executing with minimal direction or oversight. + Must pass NERC CIP & Insider Threat Protection background checks. Preferred Qualifications + Experience with information security frameworks such as: NIST, OWASP, etc. + Industry certifications such as: CISSP, CCSP, CISA, GIAC, OSCP, CRISC, CCNP, etc. + Familiarity with nation state, sophisticated criminal, and supply chain threats. + Up-to-date knowledge of current hacking techniques, vulnerability disclosures, and data breach incidents. + Working knowledge of cloud and traditional security network architectures. + Experience with cybersecurity analysis and analytic tradecraft. Southern Company (NYSE: SO) is a leading energy provider serving 9 million residential and commercial customers across the Southeast and beyond through its family of companies. Providing clean, safe, reliable and affordable energy with excellent service is our mission. The company has electric operating companies in three states, natural gas distribution companies in four states, a competitive generation company, a leading distributed energy infrastructure company with national capabilities, a fiber optics network, and telecommunications services. Through an industry-leading commitment to innovation, resilience, and sustainability, we are taking action to meet our customers’ and communities’ needs while advancing our commitment to net zero emissions by 2050. Our uncompromising values ensure we put the needs of those we serve at the center of everything we do and are the key to our sustained success. We are transforming energy into economic, environmental and social progress for tomorrow. Our corporate culture and hiring practices have earned the company national awards and recognition from numerous organizations, including Forbes, Military Times, DiversityInc, Black Enterprise, J.D. Power, Fortune, Human Rights Campaign and more. To learn more, visit www.southerncompany.com . Southern Company invests in the well-being of its employees and their families through a comprehensive total rewards strategy that includes competitive base salary, annual incentive awards for eligible employees and health, welfare and retirement benefits designed to support physical, financial, and emotional/social well-being. This position may also be eligible for additional compensation, such as an incentive program, with the amount of any bonus/awards subject to the terms and conditions of the applicable incentive plan(s). A summary of the benefits offered for this position can be found here https://seo.nlx.org/southernco/pdf/SOCO-Benefits.pdf . Additional and specific details about total compensation and benefits will also be provided during the hiring process. Southern Company is an equal opportunity employer where an applicant's qualifications are considered without regard to race, color, religion, sex, national origin, age, disability, veteran status, genetic information, sexual orientation, gender identity or expression, or any other basis prohibited by law. Job Identification: 10356 Job Category: Cybersecurity Job Schedule: Full time Company: Southern Company Services