We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
New
Consolidated Edison Company of New York jobs

Technical Specialist-Information Security Governance, Risk & Compliance

Consolidated Edison Company of New York
$140,000.00 - $190,000.00 / yr
United States, New York, New York
4 Irving Place (Show on map)
Feb 18, 2026

Overview

Come join us as a Technical Specialist where you will play a key role in strengthening our Information Security (InfoSec) Governance, Risk & Compliance (GRC) capabilities across the enterprise. In this experienced individual contributor role, you will develop, maintain, and execute the frameworks, policies, standards, and processes used to identify, assess, manage, and report information security risk. You will ensure our security practices align with regulatory requirements, industry standards, and business objectives through hands-on analysis, thorough documentation, and disciplined execution. Success in this role requires a highly self-directed professional who can operate with minimal supervision, demonstrates exceptional organizational skills and attention to detail, and consistently delivers high-quality, actionable outcomes. If you are passionate about driving strong security governance and making a measurable impact on enterprise risk, we strongly encourage you to apply and help shape the future of our security program.

Responsibilities

Core Responsibilities
  • Contribute to information security policies and governance frameworks aligned with national energy security priorities in compliance with regulatory requirements and industry standards.
  • Collaborate with internal stakeholders (IT, OT, Legal, Risk, Operations) and external partners (regulators, government agencies, industry groups).
  • Facilitate incident response planning, exercises, and post-incident reviews to strengthen organizational readiness.
  • Support incident response planning and champions a culture of cyber accountability and resilience across the organization.
  • Support internal and external audits while driving continuous improvement of GRC maturity.
  • Provide executive-level reporting on cybersecurity posture, compliance status, and resilience metrics.
  • Serve as a key liaison between InfoSec, IT, Audit, Legal, peers in InfoSec Compliance, and business stakeholders to ensure security risks are clearly communicated and appropriately governed.
  • Support internal and regulatory compliance efforts, including NERC CIP, TSA, Coast Guard, and other applicable federal and state mandates.
  • Facilitate and maintain cyber resilience strategies to ensure continuity of operations during and after cyber incidents.

Qualifications

Required Education/Experience
  • Master's Degree and 6 years of work experience in IT or Utility environments with at least four (4) years in GRC or similar or
  • Bachelor's Degree and 8 years of work experience in IT or Utility environments with at least four (4) years in GRC or similar
Preferred Education/Experience
  • Master's Degree preferably in Information Technology, Computer Science, Information Security, Math, Engineering or business-related discipline.
  • Bachelor's Degree preferably in Information Technology, Computer Science, Information Security, Math, Engineering or business-related discipline.
Relevant Work Experience
  • Must demonstrate knowledge of project management concepts and ability to support project monitoring, tracking, and facilitation to ensure project deliverance/completion, required.
  • Proven experience of process and policy creation and documentation, required.
  • Must demonstrate strong analytical skills, required.
  • Must demonstrate strong oral and written communication, presentation and interpersonal skills, required.
  • Must have used, and have working knowledge of MS Excel, Word and PowerPoint, required.
  • Experience and working knowledge of GRC concepts, required.
  • Experience developing and delivering well organized analytical presentations, preferred.
Skills and Abilities
  • Demonstrates a high commitment to quality
  • Assumes personal responsibility for actions
  • Strong verbal communication and listening skills
  • Possesses flexibility to work in a fast paced, dynamic environment
  • Effective interpersonal skills
  • Demonstrated analytical skills
  • Ability to simultaneously handle multiple priorities
  • Must be proficient in Microsoft Office including Word, Excel, Outlook and PowerPoint, etc.
  • Effective interpersonal skills
Licenses and Certifications
  • Driver's License Required
Physical Demands
  • Ability to push, pull, and lift up to 25 pounds
  • Sit or stand to use a keyboard, mouse, and computer for the duration of the workday
Additional Physical Demands
  • The selected candidate will be assigned a System Emergency Assignment (i.e., an emergency response role) and will be expected to work non-business hours during emergencies, which may include nights, weekends, and holidays.
Applied = 0
MORE JOBS LIKE THIS

(web-54bd5f4dd9-lsfmg)