FirstEnergy FirstEnergy at a Glance We are a forward-thinking electric utility powered by a diverse team of employees committed to making customers' lives brighter, the environment better and our communities stronger. FirstEnergy (NYSE: FE) is dedicated to integrity, safety, reliability and operational excellence. Headquartered in Akron, Ohio, FirstEnergy includes one of the nation's largest investor-owned electric systems, more than 24,000 miles of transmission lines that connect the Midwest and Mid-Atlantic regions, and a regulated generating fleet with a total capacity of more than 3,500 megawatts. About the Opportunity This is an open position with FirstEnergy Service Co., a subsidiary of FirstEnergy Corp. [SC00] The position is within the Cyber Security group and reports to the VP, Cyber Security. It is located in OH, with travel as needed. The Cyber Security Governance Director is responsible for providing strategic direction and operational oversight for the Cyber Security Policy, Cyber Security Compliance, and Cyber Incident Response Teams. These groups include approximately 24 people, reporting to 3 Managers. The 3 Managers will report directly to this Director position. The Cyber Security Policy Team is responsible for creating and maintaining corporate cyber security policy, processes, and procedures. This includes publishing documentation, communicating new or updated policies to the organization, creating, and delivering cyber security training materials, aiding all business units, and generating metrics and reports for executive management. The Cyber Security Compliance Team assists all business units with interpretation of and complying with FirstEnergy cyber security policies, cyber-related NERC regulations, and state regulatory rules. They are also responsible for creating and maintaining a corporate cyber security compliance outreach program, compliance testing, assisting business units with control design, and generating reports for executive management. The Cyber Incident Response team directs and co-ordinates the cyber security Incident Response program for all business units at the company. This includes serving as the champions for preparation, practice exercises, responses to actual cyber security incidents, and coordinating required legal and regulatory reporting. Responsibilities Include: Managing a team of approximately 24 employees through 3 managers Oversees a corporate-wide cyber security program of corporate policies to identify business risks and cyber security threats, protect company systems and data, detect malicious activity, respond to potential and actual cyber security incidents, and recover from incidents Oversees a corporate-wide cyber security compliance program, including all applicable legal and regulatory requirements Oversees a corporate-wide cyber incident response program, making certain it is current, effective, well documented, rehearsed and communicated, and followed during actual incidents Maintains a high-level of technical knowledge of cyber security supported by attending webinars, conferences, and workshops; reviewing professional publications and research Creates cyber security development strategies, policies, and procedures by identifying problems/needs; evaluating trends and anticipating requirements Develops key relationships with vendors providing products in the cyber security space Liaison to upper management, other functional areas, and internal business organizations Liaison to external peer organizations for knowledge exchange Maintains quality service by responding to both planned and unplanned customer needs Effectively manage required staffing, software, hardware, and support budgets Mentor and motivate a diverse team that scales and evolves with business and policy needs Responsible for managing staff performance by setting objectiv