Enel Spa

Who We Are

Enel North America is a proven renewables leader delivering clean, flexible and sustainable energy solutions. 

As part of the Enel Group, we develop, build, own and operate renewable power plants and demand response solutions, with over 11 gigawatts (GW) of installed wind and solar capacity, over 1 GW of energy storage and nearly 5 GW of demand response in the US and Canada. 

For nearly 25 years, we've reliably powered modern life and driven climate action with our people, partners and communities by putting sustainability at the center of everything we do. Enel is a top-five industry leader for clean power capacity in the US, demand response in North America and utility-scale battery storage in Texas.

We are a smart and passionate team working together to build the Enel North America that we want for the long-term – one that is founded on strong financial, social and environmental values. Being on our team means being part of lasting progress to create a thriving and more sustainable world for our climate and communities. It means valuing safety, trust, innovation, proactivity, flexibility and respect in all we do. Our vision is ambitious, and we'll get there together.   

The Opportunity:

The position is responsible for maintaining a robust cybersecurity presence across ICS environments. This position will work closely with the Plant Automation and OT/IT organization as well as the extended Global Information Technology Infrastructure and ICS teams across the globe. This challenging position requires in-depth experience and knowledge of both Operational Technology and Cybersecurity Technology..

What You'll Do at Enel North America:

• Serve as a technical liaison between the IT Security and OT organizational units to ensure production facilities, operations and systems are following security best practices
• Lead cyber threat and security incident identification, protection, detection, response, and remediation activities impacting the manufacturing operations environment and escalating to management.
• Define and ensure compliance with security policies, processes, and standards to build a comprehensive OT security program.
• Serve as subject matter expert in Industrial Control Systems (ICS) and Supervisory Control and Data Acquisition (SCADA) security.
• Provide OT Security guidance on OT Projects.
• Provide recommendations on how best to mitigate OT risks.
• Responsible for the development & implementation of OT-specific Security policies & procedures.
• Works with cross-organizational teams to address alert deficiencies.
• Configure, test, document, and implement changes or upgrades to security processes, controls, or products as directed.
• Work closely with the 24x7x365 Security Operations Center (SOC) performing incident response activities when an incident has been discovered, participating in investigations to determine root cause of security incidents, and ensuring that proper protection or corrective measures have been taken.
• Provide operational support, troubleshooting, and maintenance of Security-related processes, controls, or products.
• Responsible for assessing systems, processes, and projects against compliance requirements, control objectives, and security best practices.
• Report status on activities, issues, projects, etc. to senior staff/management, including the effectiveness and efficiency of security activities.
• Propose new standards, tools, policies, and procedures to improve security, compliance and risk management activities based on security operations findings, or security events or incidents
• Present changes at the Change Advisory Board (CAB) as needed.
• Collaborate with IT teams and security colleagues to ensure audit readiness, and to prepare for internal and external audits. Making BIA/RA also Pen Testing Procedures.

Who You Are:

• Understanding of cyber-security principles such as encryption, ports, protocols & services, policies, procedures, physical security, risk management, configuration management, ethics, access control, security architecture, continuity of operations, contingency planning, application security, etc.
• Understanding of network security architecture, such as zones, firewall rules, detection/inspection technologies, and east-west security controls.
• Understanding of attack vectors, vulnerabilities, and how they are leveraged by malicious actors preferred; should be up to date on current attacker tools, techniques, and procedures.
• Experience with systems and log analysis using tools such as SIEM, Event viewer, process monitoring, etc. for the purposes of troubleshooting, root cause analysis, and incident investigations.
• Experienced working with OT technologies / providers (e.g., PLCs, Rockwell)
• Hands on-management of security tools (e.g., Fortinet, Carbon Black, Cisco, Nozomi, BitLocker, MFA).
• Extensive experience with Linux and Windows administration.

What You've Accomplished:

• Minimum of five to seven (5 to 7) years of IT/OT experience.
• Minimum of three (3) years in cybersecurity (with focus on Operational Technology environments).

Diversity, Equity & Inclusion:  

Enel North America is dedicated to providing equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, gender, national origin, citizenship, age, disability, sexual orientation, genetic information. We will not discriminate, in any employment decision, against any individual or group on the basis of race, color, religion, sex, gender, national origin, citizenship, age, disability, sexual orientation, genetic information, or veterans/national guard/military reserve status. This shall be done in compliance with all applicable federal, state, and local laws in every location in which Enel North America has facilities. Enel North America maintains a drug-free workplace and performs pre-employment substance abuse testing and background checks, where permitted by law. Accessibility – If you require accessibility assistance applying for open positions please contact EnelApplication@enel.com.  

What Enel North America Offers You:  

Enel North America offers its regular full-time employees affordable, quality healthcare for you and your family, life insurance and disability benefits to provide security, and retirement benefits to help you plan for your financial future. In addition, we offer an array of other benefits such as flexible spending accounts, tuition reimbursement and professional development allowance.  

Benefits are effective as of day one!  

Some additional perks to working with Enel North America include:  

• 401k with match fully vested as of day one. Enel-NA matches 100% of the first 4% that you contribute up to set IRS limits.  

• Generous PTO that supports work/life balance including: 4 weeks annually of vacation as well as personal days, volunteer days, your birthday off, paid holidays, and sick time. Proration may apply during first year of employment.  

• Paid leave programs  

• The opportunity to grow and develop your career with the support and mentorship of senior leaders.  

• The opportunity to work for one of the world’s most recognizable and respected brands in the energy industry that believes by working together we can create a new energy era in which the world can become more sustainable.  

An employee’s eligibility for these benefits shall be subject to the governing documents for such plans and programs and/or company policy.  The benefits described above may be modified or eliminated with or without notice in accordance with the governing documents and applicable law.  

#LI-HP1