Role Description As a Lead Cybersecurity Engineer, you will be responsible for the planning, execution, and departmental operations of product cybersecurity compliance and vulnerability management for GE Vernova’s Operational Technology (OT) portfolio. This role requires a high degree of technical domain expertise to ensure products meet rigorous industry standards and regulations. You will have the autonomy to modify procedures and practices to ensure end results meet standards of quality, volume, and timeliness while maintaining a robust security posture across the product. Qualifications - Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field. - Minimum of 5 years’ experience in cybersecurity compliance, vulnerability management, or a related technical field. - Minimum of 3 years’ experience with OT-specific frameworks (e.g., IEC 62443, NERC CIP). Requirements - Lead the development, implementation, and monitoring of cybersecurity policies and procedures aligned with industry standards such as IEC 62443, NERC CIP, ISO 27001, and NIST. - Develop and execute comprehensive product and system certification plans, serving as the primary technical lead for IEC 62443 certification processes. - Perform high-level product and system gap assessments, identifying misalignments between current state and regulatory requirements. - Coordinate with external auditors and regulatory bodies, ensuring all documentation related to compliance and audit activities is accurate and up-to-date. - Take ownership of the vulnerability management program, conducting moderate-to-complex system-level analysis to identify and remediate security weaknesses. - Solve complex technical problems with limited guidance, leveraging cross-product linkages and expertise to develop peer-reviewed remediation solutions. - Conduct deep-dive risk assessments to identify potential threats. Develop and implement proactive strategies to mitigate risks and improve the overall security posture of the product portfolio. - Develop and execute program plans, including defining work tasks, project scope, and schedules. - Lead and support technical design reviews, ensuring cybersecurity "secure by design" principles are integrated from inception. - Identify potential improvements in tools and technologies. Proactively solicit feedback from horizontal teams to implement faster, simpler, and more impactful cybersecurity processes. - Actively participate in the technical mentoring program, supporting the growth of junior engineers and sharing domain expertise. - Anticipate internal and external client needs, resolving complex security or compliance issues quickly and effectively. - Foster a positive team spirit by sharing ideas and information, and acknowledging the success of others. Benefits - Medical, dental, vision, and prescription drug coverage. - Access to Health Coach from GE Vernova, a 24/7 nurse-based resource. - Access to the Employee Assistance Program, providing 24/7 confidential assessment, counseling, and referral services. - Retirement benefits including the GE Vernova Retirement Savings Plan, a tax-advantaged 401(k) savings opportunity with company matching contributions and company retirement contributions. - Access to Fidelity resources and financial planning consultants. - Tuition assistance. - Adoption assistance. - Paid parental leave. - Disability benefits. - Life insurance. - 12 paid holidays. - Permissive time off.

• Develop and maintain strong relationships with key stakeholders in the business and IT • Act as the key liaison and esteemed business partner for functional stakeholders • Provide insights for development of IT strategies, policies, and governance frameworks • Collaborate with leadership and cross-functional teams • Lead the function/project specific IT budgeting & resource planning • Proactively engage with business leaders to identify opportunities • Ensure compliance with regulations, industry standards, and security policies • Facilitate the adoption of tools and processes across the organization • Manage risks, issues, and dependencies for strategic IT initiatives

• Manage and harden security baselines across on-prem, hybrid, and cloud systems, ensuring strong protection while maintaining speed and usability. • Integrate telemetry, logging, tracing, and management of structured, semi-structured, and unstructured data across the entire environment to provide unified and comprehensive observability into infrastructure and application activity. • Lead vulnerability management, patching, and configuration assurance programs to reduce exposure and maintain a consistent security posture. • Partner with infrastructure, IT, and application teams to strengthen identity, access, and network security through Okta, Google Workspace, and FreeIPA. • Implement and maintain zero-trust network architectures, SASE controls, CASB solutions, and conditional access policies that protect both users and data across environments to ensure full access and full control of our data and IP regardless of location or device. • Operate and enhance security operations tooling, including SIEM, SOAR, and EDR/XDR platforms, to ensure comprehensive monitoring and rapid detection of threats. • Develop and tune detection logic, automation, and playbooks for identifying and responding to threats such as insider activity, lateral movement, and anomalous behavior. • Investigate and respond to security incidents, performing root-cause analysis, containment, and remediation while coordinating with engineering and IT. • Build automation, scripts, AI agents, and integrations that streamline monitoring, alerting, and remediation workflows to improve efficiency and reliability. • Establish metrics, dashboards, and feedback mechanisms to measure detection coverage, response time, and overall security health. • Promote a culture of security awareness and ownership across engineering teams, ensuring that protection and productivity advance together.

Role Description The Director, Information Security Engineering will report to the Deputy Chief Information Security Officer. You will lead the university's security architecture and engineering strategy, modernizing platforms, practices, and operating models to deliver scalable, resilient, and effective security capabilities. You will improve adoption of modern security architectures, cloud-native approaches, and AI-enabled security capabilities that strengthen the institution's ability to manage evolving threats. You will bring deep technical credibility to lead senior architects and engineers, a demonstrated track record of leading transformation in complex organizations, and the vision to align security architecture and engineering investments with institutional priorities, modern technology environments, and emerging risk. You will work 100% remotely from any of our approved states. What You'll Do: - Drive organizational and cultural change within the team, promoting a growth mindset, accountability, and engineering excellence while building alignment and demonstrating measurable progress. - Establish and promote modern security engineering practices, including: - infrastructure-as-code - security-as-code - zero trust architecture - DevSecOps integration across the university's technology ecosystem - Be an internal change agent, advocating for security modernization across ITS and with university leadership. - Provide authoritative technical direction across security architecture and engineering disciplines, including: - network and cloud security - endpoint and data protection - application security - security tooling platforms - Lead the security architecture practice including defining clear service parameters, setting high technical standards, reviewing architecture decisions, and ensuring solutions are forward-looking, practical, and aligned to risk posture. - Own the university's enterprise security reference architecture, ensuring it reflects current threat landscapes, regulatory requirements (NIST 800-171, GLBA, FERPA, etc.), and modern delivery models including cloud-native and hybrid environments. - Evaluate, select, and oversee implementation of security technologies with disciplined focus on reducing complexity, improving efficacy, and enabling automation. - Establish and lead the ISMO's strategy for applying AI and machine learning to advance security engineering capabilities and tooling. - Partner with governance, risk, privacy, and AI stakeholders to assess and address security risks introduced by AI adoption including shadow AI, generative AI data exposure, and risks introduced by autonomous AI agents operating within enterprise environments. - Stay current with the rapidly evolving AI security landscape and serve as a subject matter authority to the D-CISO, senior IT leadership, and AI leadership on both AI-enabled security and AI-security related risk. - Identify opportunities to leverage automation and AI to increase the team's capacity and capability without proportional headcount growth. - Partner with the Deputy CISO to define a multi-year Security Architecture and Engineering strategy, translating vision into actionable roadmaps, funded initiatives, and measurable outcomes. - Develop and present compelling business cases to the Deputy CISO and CISO to secure funding, headcount, and organizational support for strategic initiatives. - Build and manage a portfolio of security initiatives, ensuring alignment to institutional risk priorities, compliance obligations, and technology strategy. - Collaborate with the AVP of Governance, Risk, Compliance and Privacy to ensure architecture and engineering decisions are grounded in risk and that controls are implemented effectively and measurably. - Lead, develop, and retain a team of security architects, engineers, and managers — creating clear career paths, fostering technical excellence, and building a high-performing culture. - Design and evolve the team structure, capabilities, and leadership depth required to deliver the future-state vision, aligning talent and resources to strategic priorities while developing both managers and individual contributors. - Recruit and onboard talent capable of delivering the future-state vision, including individuals who bring skills the current team does not possess. - Set clear expectations for performance, accountability, and continuous improvement across the team. - Serve as a mentor and technical escalation point for architects and engineers navigating complex problems. - Advise the Deputy CISO, CISO, and ISMO leadership team on security architecture, engineering trends, and emerging risks. - Engage effectively with university stakeholders across business units, translating technical concepts into business and mission impact. - Represent the security architecture and engineering function in governance forums, project review boards, and vendor negotiations. Qualifications - 10+ years of progressive cybersecurity experience - 5+ years in a senior technical leadership role overseeing architecture or engineering functions - High School Diploma or equivalent (i.e. GED) - Professional Certification(s): CISSP, ISC2 Certifications, GIAC - Experience as a security engineer or architect across at least two core disciplines (Platform Security, Application Security, AI Security, Cloud/Infrastructure Security, Data Security, DSPM) - Experience securing Azure PaaS/IaaS, Microsoft 365, Microsoft Fabric, or similar - Experience as an engineer or architect across multiple security domains: zero trust architecture, application security, cloud security (Azure), identity and access management, network security, endpoint protection, data security, and security automation - Experience with AI and machine learning applications in cybersecurity, including familiarity with AI-enabled security tools, LLM-related risks, and emerging threats associated with enterprise AI adoption Benefits - High-quality, low-deductible medical insurance - Low to no-cost dental and vision plans - 5 weeks of paid time off (plus almost a dozen paid holidays) - Employer-funded retirement - Free tuition program - Parental leave - Mental health and wellbeing resources Compensation The annual pay range for this position is $125,298.00 - $200,516.00. Actual offer will be based on skills, qualifications, experience and internal equity, in addition to relevant business considerations. We expect this position to be hired in the following target hiring range $138,456.00 - $187,323.00.