FirstEnergy at a Glance

We are a forward-thinking electric utility powered by a diverse team of employees committed to making customers' lives brighter, the environment better and our communities stronger.

FirstEnergy (NYSE: FE) is dedicated to integrity, safety, reliability and operational excellence. Headquartered in Akron, Ohio, FirstEnergy includes one of the nation's largest investor-owned electric systems, more than 24,000 miles of transmission lines that connect the Midwest and Mid-Atlantic regions, and a regulated generating fleet with a total capacity of more than 3,500 megawatts.

About the Opportunity

This position is within FirstEnergy Service Co., a subsidiary of FirstEnergy Corp. [SC00].

This position's base reporting location is in Wadsworth Township, Ohio, and reports to the Manager of Cyber Security Policy. This position is eligible for FirstEnergy's Flexible Workplace program and may be performed 100% remote with infrequent multi-day trips to the Akron, Ohio area as needed (a few times per year). This role provides subject matter expert level thought leadership and support to all facets of IT operations. This Enterprise Security Architect is responsible for translating security policies, security requirements, and business requirements into technical designs and procedures in collaboration with other segments of IT and other business units. This role provides thought leadership and support across all security teams to improve the security posture of FirstEnergy overall. The Enterprise Security Architect also assists with testing effectiveness and developing security metrics to report up to all levels of leadership, as well as maintain open communications with peers in Cyber Security, Security Technologies, Security Engineering, and TSOC (Transmission Security Operations Center) teams.

• Providing overall security guidance and leadership in projects involving a variety of infrastructure technologies (e.g., cloud, storage, compute, network, etc.) to the IT department
• Guiding and assisting IT and technical professionals in the design, implementation, and operation of systems and services to meet security requirements and ongoing secure operations
• Educating and influencing IT and business stakeholders to better understand existing security risks, best practices, and infrastructure designs/changes required to support business and IT strategies securely
• Drive technology strategy and enterprise architecture for core IT security technologies
• Developing, documenting, and recommending plans for investing in IT security, including cost trade-offs and cost reduction opportunities. Identify gaps in controls or visibility to assist in driving future strategy.
• Developing and presenting business cases and security architecture plans to management
• Identify process improvements to further advance security operations
• Make recommendations for use of new technologies to support cyber security activities
• Assist to provide investigation services and coordinate mitigation efforts during an incident
• Build and maintain relationships with key business unit areas within IT, Transmission, and Corporate Security

• Bachelor's Degree in Computer Science, Information Security, or similar discipline with seven years of significant experience in the one or more of the key technical domains is required. A bachelor's degree in another field with nine years of industry experience in cyber/information security will be considered.
• Significant technical experience in one or more core domains comprising IT operations such as operating systems/systems administration, network engineering, or cloud infrastructure services
• Demonstrated understanding of best practices in cybersecurity encompassing strategies, policies, principles, procedures, and standards; and how they relate and apply to IT operations
• Experience making strategic design decisions derived from risk-based, threat analysis
• Ability to identify and assess the severity and potential impact of risks. Communicate risk assessment findings to risk owners outside the cyber security program in a way that consistently drives objective, fact-based decisions about risk to optimize the trade-off between risk mitigation and business performance.
• Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate option
• An ability to work on several tasks simultaneously and pay attention to sources of information from inside and outside one's organizational network.
• An ability to effectively influence others by informing their opinions, plans or behaviors.
• Ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood, authoritative and actionable manner
• Infrequent business travel to Akron, OH may be required

Benefits, Compensation & Workforce Diversity

At FirstEnergy, employees are key to our success. We depend on their talents to meet the challenges of our changing business environment. We are committed to rewarding individual and team efforts through our total rewards philosophy which includes competitive pay plus incentive compensation, a company-sponsored pension plan, 401(k) savings plan with matching employer contribution, a choice of medical, prescription drug, dental, vision, and life insurance programs, as well as skills development training with tuition reimbursement. Please visit our website at to learn more about all of our employee rewards programs. FirstEnergy proudly supports workforce diversity. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, gender identity, age, status as a protected veteran, or status as a qualified individual with a disability. No recruiters or agencies without a previously signed contract. Unable to sponsor or transfer H-1B visas at this time.

Safety

Safety is a core value for FirstEnergy and is essential to all of our business activities. We ensure employees have the tools, information, and processes to perform their duties in a manner that assures safety for themselves, their co-workers, our customers and the public. Our goals are to provide a safe work environment, to maintain an accident-free, injury-free workplace, and to promote and maintain public safety. To meet these goals, we dedicate ourselves to achieving world-class safety standards.