FirstEnergy at a Glance We are a forward-thinking electric utility powered by a diverse team of employees committed to making customers lives brighter, the environment better and our communities stronger. FirstEnergy (NYSE: FE) is dedicated to integrity, safety, reliability and operational excellence. Headquartered in Akron, Ohio, FirstEnergy includes one of the nation's largest investor-owned electric systems, more than 24,000 miles of transmission lines that connect the Midwest and Mid-Atlantic regions, and a regulated generating fleet with a total capacity of more than 3,500 megawatts. About the Opportunity This is an open position with FirstEnergy Service Co., a subsidiary of FirstEnergy Corp. [SC00] This positions base reporting location is in Wadsworth Township, Ohio, and reports to the Manager of Cyber Security Policy. This position is eligible for FirstEnergys Flexible Workplace program and may be performed 100% remote with infrequent multi-day trips to the Akron, Ohio area as needed (a few times per year). This role provides subject matter expert level thought leadership and support to all web and cloud related systems and projects across the portfolio. This Enterprise Security Architect is responsible for translating security policies, security requirements, and business requirements into technical designs and procedures in collaboration with other segments of IT and other business units, most notably in collaboration with the IT Innovation and Digital Factory. This role will ensure strong cyber security is delivered with web and cloud services developed and deployed in an agile environment. Responsibilities include - Providing overall security guidance and leadership in projects involving a variety of infrastructure technologies (e.g., cloud, storage, compute, network, etc.) to the IT department and other business units as needed - Guide, consult, and assist software development and other web/cloud-related technical disciplines in developing, deploying, and supporting strong cyber security capabilities, controls, and processes through the complete lifecycle of applications, systems, and services. - Educating and influencing IT and business stakeholders to better understand existing security risks, best practices, and infrastructure designs/changes required to support business, IT, and security strategies securely. - Assist in driving technology strategy and enterprise architecture for core IT security technologies. - Developing, documenting, and recommending plans for investing in IT security, including cost trade-offs and cost reduction opportunities. Identify gaps in controls or visibility to assist in driving future strategy. - Developing and presenting business cases and security architecture plans to management - Identify process improvements to further advance security operations - Make recommendations for use of new technologies to support cyber security activities - Assist to provide investigation services and coordinate mitigation efforts during an incident - Build and maintain relationships with key business unit areas within IT, Transmission, and Corporate Security Qualifications - Bachelor's Degree in Computer Science, Information Security, or similar discipline with seven years of significant experience in the one or more of the key technical domains is required. A bachelors degree in another field with nine years of industry experience in cyber/information security will be considered. - Significant technical experience in one or more core domains comprising IT operations such as operating systems/systems administration, network engineering, or cloud infrastructure services with emphasis on web technologies and cloud-enabled workloads. - Demonstrated understanding of best practices in cybersecurity encompassing strategies, policies, principles, procedures, and standards; and how they relate and apply to IT operations - Experience making strategic design decisions derived from risk-based, threat analysis - Ability to identify and assess the severity and potential impact of risks. Communicate risk assessment findings to risk owners outside the cyber security program in a way that consistently drives objective, fact-based decisions about risk to optimize the trade-off between risk mitigation and business performance. - Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate option - An ability to work on several tasks simultaneously and pay attention to sources of information from inside and outside ones organizational network. - An ability to effectively influence others by informing their opinions, plans or behaviors. - Ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood, authoritative and actionable manner - Infrequent business travel to Akron, OH may be required Benefits, Compensation & Workforce Diversity At FirstEnergy, employees are key to our success. We depend on their talents to meet the challenges of our changing business environment. We are committed to rewarding individual and team efforts through our total rewards philosophy which includes competitive pay plus incentive compensation, a company-sponsored pension plan, 401(k) savings plan with matching employer contribution, a choice of medical, prescription drug, dental, vision, and life insurance programs, as well as skills development training with tuition reimbursement. Please visit our website at www.firstenergycorp.com to learn more about all of our employee rewards programs. FirstEnergy proudly supports workforce diversity. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, gender identity, age, status as a protected veteran, or status as a qualified individual with a disability. No recruiters or agencies without a previously signed contract. Unable to sponsor or transfer H-1B visas at this time. Safety Safety is a core value for FirstEnergy and is essential to all of our business activities. We ensure employees have the tools, information, and processes to perform their duties in a manner that assures safety for themselves, their co-workers, our customers and the public. Our goals are to provide a safe work environment, to maintain an accident-free, injury-free workplace, and to promote and maintain public safety. To meet these goals, we dedicate ourselves to achieving world-class safety standards.