Join the nation's leading competitive energy provider, with one of the largest electricity generation portfolios and retail customer bases in the country. You will be part of a family of companies that strives for the highest standards of power generation, competitive energy sales, and energy delivery. Our team of outstanding professionals is focused on performance, thought leadership, innovation, and the power of ideas that come from a diverse and inclusive workforce. Exelon will provide you the tools and resources you need to design, build and enhance a successful career. We are also dedicated to motivating the success of our employees through competitive base salary, incentives, and health and retirement benefits. Join Exelon and share your passion at a forward-thinking Fortune 100 company. Establish yourself in a place where you can truly shine and create a brighter, more sustainable tomorrow. Energize your career at Exelon!, At Exelon, we've got a place for you! Join the nation's leading competitive energy provider, with one of the largest electricity generation portfolios and retail customer bases in the country. You will be part of a family of companies that strives for the highest standards of power generation, competitive energy sales, and energy delivery. Our team of outstanding professionals is focused on performance, thought leadership, innovation, and the power of ideas that come from a diverse and inclusive workforce. Exelon will provide you the tools and resources you need to design, build and enhance a successful career. We are also dedicated to motivating the success of our employees through competitive base salary, incentives, and health and retirement benefits. Join Exelon and share your passion at a forward-thinking Fortune 100 company. Establish yourself in a place where you can truly shine and create a brighter, more sustainable tomorrow. Energize your career at Exelon! Job Description - Director IT - Cyber Strategy and Engagement (222140) At Exelon, we've got a place for you! Join the nation's leading competitive energy provider, with one of the largest electricity generation portfolios and retail customer bases in the country. You will be part of a family of companies that strives for the highest standards of power generation, competitive energy sales, and energy delivery. Our team of outstanding professionals is focused on performance, thought leadership, innovation, and the power of ideas that come from a diverse and inclusive workforce. Exelon will provide you the tools and resources you need to design, build and enhance a successful career. We are also dedicated to motivating the success of our employees through competitive base salary, incentives, and health and retirement benefits. Join Exelon and share your passion at a forward-thinking Fortune 100 company. Establish yourself in a place where you can truly shine and create a brighter, more sustainable tomorrow. Energize your career at Exelon! PRIMARY PURPOSE OF POSITION The Director of IT Security is responsible for leadership and oversight of the performance of cybersecurity tasks and activities across Exelon IT, Corporate and Information Security Services (CISS), and the larger Exelon Organization. The position is the primary point of engagement between CISS, IT, business leadership, and teams that own or support Exelon technology assets. The Director leads two Senior Manager positions and one Manager position, which are responsible for: - Oversight of Exelon Security Control (ESC) performance, - Development and implementation of cybersecurity strategy and guidance in conjunction with CISS and other key stakeholders: - Development and execution of robust Organizational Change Management related to Exelon Security Controls and Enterprise/IT initiatives These functions provide constant connectivity to CISS, IT, and the business to continuously improve Exelon's security posture, Security Programs, and related processes and procedures, and ensure that security policy is translated and executed on a continuous basis. The Director interacts with senior management across a diverse range of operating companies. A close working relationship is maintained with internal business partners to ensure efficient delivery of IT Security services. The Director executes Exelon IT's strategy, with direction from the Vice President, Chief Technology Officer, of Exelon IT. The IT Security Director is the Core Function Area Manager (CFAM) for cybersecurity within IT and leads the IT Security Peer Group which includes key management representation from all areas of Exelon IT and the Exelon Operating Companies. The CFAM is the functional lead for cross-team best practices and consistent processes across the organization. PRIMARY DUTIES AND ACCOUNTABILITIES IT Business Plan Development and Execution: 25% - Lead, oversee, and continuously improve the IT Security function across Exelon operating companies. - In partnership with IT Security Peer Group and the Business, identify gaps in the IT Security Core Function and propose initiatives to close identified gaps. - Lead and oversee cross-functional teams to effectively scope, estimate, plan, design, and implement initiatives to support the IT Business Plan. - Execute a comprehensive approach to prioritize, monitor, and manage IT Security initiatives. Financial and Resource Management: 25% - Lead and facilitate project business case development and obtaining project approvals. - Develop thorough cost estimates in alignment with accounting capitalization and expense policies, reflecting one-time and recurring baseline funding requirements. - Manage and oversee program/project expenditures, ensuring efficient use of resources and funding in alignment with Finance and IT processes and deliver within approved program/project budgets. - Establish and maintain transparency to IT costs related to cybersecurity amongst the organization's executives, stakeholders, department heads, and end users regarding pertinent project performance activities (eg cost, scope and schedule). - Complete and/or oversee quality and timely project financial forecasts, and manage to forecast to allowable variance - In partnership with Corporate Supply function: develop RFP's and/or statements of work, evaluate bid proposals, contracts and contract negotiations, and other deliverables as required to adequately secure resources in support of project planning and execution. - Define project tasks and resulting resource requirements as key initial and ongoing inputs into IT budgeting and forecasting processes. - Coordinate and ensure efficient utilization of internal and external resources. IT Security Oversight Execution 20% - Lead and provide oversight to all aspects of the cybersecurity requirements defined in the Exelon Security Control Programs in alignment with NIST CSF. - Develop and deliver data-driven business intelligence reports to senior leadership and key stakeholders accountable for the performance of Exelon Security Controls. Leadership 30% - Lead, develop, coach, and mentor direct reports and matrixed project, engineering, and operations team members to achieve quality results and deliver on commitments. - Establish and facilitate effective program governance and oversight mechanisms to ensure consistency of IT cybersecurity oversight and decision-making. - Establish and facilitate working level and leadership forums as necessary to provide frequent communication, engagement and awareness of Exelon Security Controls and cybersecurity within IT and the Business. - Establish and maintain effective working relationships within/across IT, CISS, Business Unit Partners, and strategic/technical partners. - Develop and educate resources, and assess on core competencies and performance against established goals; ensure resources acquire and maintain requisite training and certification on applicable processes and technology. At Exelon, we've got a place for you! Join the nation's leading competitive energy provider, with one of the largest electricity generation portfolios and retail customer bases in the country. You will be part of a family of companies that strives for the highest standards of power generation, competitive energy sales, and energy delivery. Our team of outstanding professionals is focused on performance, thought leadership, innovation, and the power of ideas that come from a diverse and inclusive workforce. Exelon will provide you the tools and resources you need to design, build and enhance a successful career. We are also dedicated to motivating the success of our employees through competitive base salary, incentives, and health and retirement benefits. Join Exelon and share your passion at a forward-thinking Fortune 100 company. Establish yourself in a place where you can truly shine and create a brighter, more sustainable tomorrow. Energize your career at Exelon! PRIMARY PURPOSE OF POSITION The Director of IT Security is responsible for leadership and oversight of the performance of cybersecurity tasks and activities across Exelon IT, Corporate and Information Security Services (CISS), and the larger Exelon Organization. The position is the primary point of engagement between CISS, IT, business leadership, and teams that own or support Exelon technology assets. The Director leads two Senior Manager positions and one Manager position, which are responsible for: - Oversight of Exelon Security Control (ESC) performance, - Development and implementation of cybersecurity strategy and guidance in conjunction with CISS and other key stakeholders: - Development and execution of robust Organizational Change Management related to Exelon Security Controls and Enterprise/IT initiatives These functions provide constant connectivity to CISS, IT, and the business to continuously improve Exelon's security posture, Security Programs, and related processes and procedures, and ensure that security policy is translated and executed on a continuous basis. The Director interacts with senior management across a diverse range of operating companies. A close working relationship is maintained with internal business partners to ensure efficient delivery of IT Security services. The Director executes Exelon IT's strategy, with direction from the Vice President, Chief Technology Officer, of Exelon IT. The IT Security Director is the Core Function Area Manager (CFAM) for cybersecurity within IT and leads the IT Security Peer Group which includes key management representation from all areas of Exelon IT and the Exelon Operating Companies. The CFAM is the functional lead for cross-team best practices and consistent processes across the organization. PRIMARY DUTIES AND ACCOUNTABILITIES IT Business Plan Development and Execution: 25% - Lead, oversee, and continuously improve the IT Security function across Exelon operating companies. - In partnership with IT Security Peer Group and the Business, identify gaps in the IT Security Core Function and propose initiatives to close identified gaps. - Lead and oversee cross-functional teams to effectively scope, estimate, plan, design, and implement initiatives to support the IT Business Plan. - Execute a comprehensive approach to prioritize, monitor, and manage IT Security initiatives. Financial and Resource Management: 25% - Lead and facilitate project business case development and obtaining project approvals. - Develop thorough cost estimates in alignment with accounting capitalization and expense policies, reflecting one-time and recurring baseline funding requirements. - Manage and oversee program/project expenditures, ensuring efficient use of resources and funding in alignment with Finance and IT processes and deliver within approved program/project budgets. - Establish and maintain transparency to IT costs related to cybersecurity amongst the organization's executives, stakeholders, department heads, and end users regarding pertinent project performance activities (eg cost, scope and schedule). - Complete and/or oversee quality and timely project financial forecasts, and manage to forecast to allowable variance - In partnership with Corporate Supply function: develop RFP's and/or statements of work, evaluate bid proposals, contracts and contract negotiations, and other deliverables as required to adequately secure resources in support of project planning and execution. - Define project tasks and resulting resource requirements as key initial and ongoing inputs into IT budgeting and forecasting processes. - Coordinate and ensure efficient utilization of internal and external resources. IT Security Oversight Execution 20% - Lead and provide oversight to all aspects of the cybersecurity requirements defined in the Exelon Security Control Programs in alignment with NIST CSF. - Develop and deliver data-driven business intelligence reports to senior leadership and key stakeholders accountable for the performance of Exelon Security Controls. Leadership 30% - Lead, develop, coach, and mentor direct reports and matrixed project, engineering, and operations team members to achieve quality results and deliver on commitments. - Establish and facilitate effective program governance and oversight mechanisms to ensure consistency of IT cybersecurity oversight and decision-making. - Establish and facilitate working level and leadership forums as necessary to provide frequent communication, engagement and awareness of Exelon Security Controls and cybersecurity within IT and the Business. - Establish and maintain effective working relationships within/across IT, CISS, Business Unit Partners, and strategic/technical partners. - Develop and educate resources, and assess on core competencies and performance against established goals; ensure resources acquire and maintain requisite training and certification on applicable processes and technology. POSITION SPECIFICATIONS Minimum: - Bachelor's degree or equivalent experience in a technical discipline (eg Information Systems, Computer Science, Mathematics, or Engineering). - Advanced knowledge, demonstrated experience and capabilities in IT Security-related topics, including: o 12 years of experience in IT, Security, or related fields. o 5 years of management/leadership experience. o Practical application of cybersecurity concepts. o Demonstrated knowledge of the National Institute for Standards and Technology (NIST) Cybersecurity Framework (CSF). - Financial/Contract Management, Performance Reporting, Process Development, IT Strategy, and IT integration. - Proven success in building key business relationships focusing on increased trust and credibility between IT and the business. - Strong leadership skills with demonstrated ability to effectively build and manage high-performing teams, as well as develop and maintain effective working relationships across IT, CISS, and with multiple Business Unit partners. - Demonstrated excellent written, verbal and presentation skills. - Advanced influencing, facilitation and negotiation skills with demonstrated ability to manage conflict, drive collaboration, and facilitate cross-functional, matrixed groups. - Ability to independently operate in a culturally diverse business environment, manage through ambiguity, make sound decisions and demonstrate leadership courage. - Demonstrated ability to work within a complex business landscape, have sound business and technical acumen. - Excellent problem solving and critical thinking skills. - Strong financial acumen and management skills. - Strong contract and vendor management skills. - Ability to support travel between primary work locations - Baltimore, Philadelphia, Chicago, Washington DC Preferred: - CISSP Certification POSITION SCOPE - Total Staff Managed: 5 Internal employees including Senior Manager, Manager, and Analyst positions and external Consultant and Staff Augmentation resources Size varies depending on program or project assignment(s). - Budget Managed: Baseline and Project Budget varies depending on program or project assignment(s). - Position is a direct report to the IT Vice President, Chief Technology Officer, and may be called upon to represent the Vice President on matters having potential or real impact to the Company. - Position interfaces with all levels of employees, including executives. - Position has expertise in, and can speak confidently about, cybersecurity issues impacting Exelon. Exelon is proud to be an equal opportunity employer and employees or applicants will receive consideration for employment without regard to: age, color, disability, gender, national origin, race, religion, sexual orientation, gender identity, protected veteran status, or any other classification protected by federal, state, or local law. VEVRAA Federal Contractor EEO is the Law Poster POSITION SPECIFICATIONS Minimum: - Bachelor's degree or equivalent experience in a technical discipline (eg Information Systems, Computer Science, Mathematics, or Engineering). - Advanced knowledge, demonstrated experience and capabilities in IT Security-related topics, including: o 12 years of experience in IT, Security, or related fields. o 5 years of management/leadership experience. o Practical application of cybersecurity concepts. o Demonstrated knowledge of the National Institute for Standards and Technology (NIST) Cybersecurity Framework (CSF). - Financial/Contract Management, Performance Reporting, Process Development, IT Strategy, and IT integration. - Proven success in building key business relationships focusing on increased trust and credibility between IT and the business. - Strong leadership skills with demonstrated ability to effectively build and manage high-performing teams, as well as develop and maintain effective working relationships across IT, CISS, and with multiple Business Unit partners. - Demonstrated excellent written, verbal and presentation skills. - Advanced influencing, facilitation and negotiation skills with demonstrated ability to manage conflict, drive collaboration, and facilitate cross-functional, matrixed groups. - Ability to independently operate in a culturally diverse business environment, manage through ambiguity, make sound decisions and demonstrate leadership courage. - Demonstrated ability to work within a complex business landscape, have sound business and technical acumen. - Excellent problem solving and critical thinking skills. - Strong financial acumen and management skills. - Strong contract and vendor management skills. - Ability to support travel between primary work locations - Baltimore, Philadelphia, Chicago, Washington DC Preferred: - CISSP Certification POSITION SCOPE - Total Staff Managed: 5 Internal employees including Senior Manager, Manager, and Analyst positions and external Consultant and Staff Augmentation resources Size varies depending on program or project assignment(s). - Budget Managed: Baseline and Project Budget varies depending on program or project assignment(s). - Position is a direct report to the IT Vice President, Chief Technology Officer, and may be called upon to represent the Vice President on matters having potential or real impact to the Company. - Position interfaces with all levels of employees, including executives. - Position has expertise in, and can speak confidently about, cybersecurity issues impacting Exelon. Exelon is proud to be an equal opportunity employer and employees or applicants will receive consideration for employment without regard to: age, color, disability, gender, national origin, race, religion, sexual orientation, gender identity, protected veteran status, or any other classification protected by federal, state, or local law. VEVRAA Federal Contractor Bachelor's degree or equivalent experience in a technical discipline (eg Information Systems, Computer Science, Mathematics, or Engineering). - Advanced knowledge, demonstrated experience and capabilities in IT Security-related topics, including: o 12 years of experience in IT, Security, or related fields. o 5 years of management/leadership experience. o Practical application of cybersecurity concepts. o Demonstrated knowledge of the National Institute for Standards and Technology (NIST) Cybersecurity Framework (CSF). - Financial/Contract Management, Performance Reporting, Process Development, IT Strategy, and IT integration. - Proven success in building key business relationships focusing on increased trust and credibility between IT and the business. - Strong leadership skills with demonstrated ability to effectively build and manage high-performing teams, as well as develop and maintain effective working relationships across IT, CISS, and with multiple Business Unit partners. - Demonstrated excellent written, verbal and presentation skills. - Advanced influencing, facilitation and negotiation skills with demonstrated ability to manage conflict, drive collaboration, and facilitate cross-functional, matrixed groups. - Ability to independently operate in a culturally diverse business environment, manage through ambiguity, make sound decisions and demonstrate leadership courage. - Demonstrated ability to work within a complex business landscape, have sound business and technical acumen. - Excellent problem solving and critical thinking skills. - Strong financial acumen and management skills. - Strong contract and vendor management skills. - Ability to support travel between primary work locations - Baltimore, Philadelphia, Chicago, Washington DC