Requisition ID # 155929

Job Category: Real Estate / Facilities

Job Level: Senior Director

Business Unit: Information Technology

Work Type: Hybrid

Job Location: Oakland

Department Overview – Corporate Security, Cyber and Physical Security

PG&E operates infrastructure that has been deemed critical to our national and economic security. As such, we are firmly committed to working with other gas and electric providers, other essential industries, and government officials to develop and implement state-of-the-art security strategies and best practices.

PG&E’s Enterprise Protection organization demonstrates our commitment to addressing evolving threats and complex cyber and physical security risks. We seek to continually improve our services through strategic deployment of our resources, standardizing security practices and policies, and reinforcing and promoting security awareness across the enterprise.

Our Enterprise Protection organization leads our efforts to detect, monitor, and respond to physical and cybersecurity threats and attacks. To test and refine our ability to respond to threat scenarios, we hold an enterprise-wide training exercise each fall and participate in the national GridEx grid security cyber exercise every other year.

As PG&E’s technological footprint expands, the need to protect our people, assets, and information from attacks becomes even more essential. We have made investments in key areas to modernize the security infrastructure and to build service capability, providing the security team with the tools they need to manage challenges to our critical infrastructure. As part of this commitment, PG&E participates in the Cybersecurity Risk Information Sharing Program, which is a threat monitoring and intelligence sharing program sponsored by the U.S. Department of Energy.

Once risks are identified and prioritized, we develop mitigation plans to protect the enterprise and reduce risk. The approach includes continually evolving our capabilities to address tactics used by our adversaries amid a changing technology landscape. PG&E has around-the-clock centralized security monitoring operations for threat detection, situational awareness, incident management, and emergency response to proactively defend PG&E from both cyber and physical threats.

Position Summary

Corporate security is dedicated to shielding the business from both internal and external threats targeting personnel, facilities, and assets. The principal role of a corporate security team is to proactively identify, assess, and mitigate physical and cyber risks that an organization may face.

Corporate security teams carry out comprehensive risk assessments to uncover potential vulnerabilities and devise robust risk management strategies to counteract them. Measures for physical security encompass executive protection, safeguarding facilities, securing the supply chain, and devising crisis management plans.

PG&E has 2,000+ physical sites across 70,000 square miles of our service territory.

This position is hybrid, working from your remote office and your assigned work location based on business need. The assigned work location will be within the PG&E Service Territory.

Reporting Relationship

This Senior Director reports directly to the Senior Vice President, Chief Security Officer; and leads a team of 4-5 directors and managers, who lead Corporate Security Operations, Critical Infrastructure Protection, Corporate Security Risk & Strategy and Security Investigations & Executive Protection. This is a large team of approximately 90 full time professional employees and 700+ contractors.

Job Responsibilities

• Direct and oversee the development of security policies and procedures, monitoring practices, and mechanisms to mitigate enterprise security risks, while safeguarding the personal safety of employees and company assets.
• Direct and oversee the development of companywide security strategy and business plans, including the identification of protection goals, and managing company objectives and metrics for a complex strategic enterprise-based security organization.
• Establish department strategy / direction and roadmap to ensure the security department’s mission and goals are met. Provide mentorship for all security activities within PG&E.
• Lead and oversee the direction of the Investigative unit at PG&E responsible for overseeing the governance and management of internal and external investigations. Act as the liaison for law enforcement-based activities and engagement both on the State and Federal Level.
• Consult and partner with lines of business senior management to develop security and risk mitigation strategies aimed at reducing PG&E’s risk profile. Ensure adequate protection levels for the organization and government compliance.
• Direct and oversee the enterprise physical security program. Manage third party contracts for a variety of technology and physical security vendors who safeguard the company’s assets, as well as the physical safety of employees and visitors.
• Direct and oversee the department’s development and implementation of the human capital strategy. This includes recruitment, growth, and retention of qualified personnel able to support the enterprise-wide security mission.
• Direct and oversee business resumption planning for all corporate and business units and oversee development of policies and procedures to ensure compliance with physical security regulations required by DHS, DOE, FERC, NERC, WECC, and CPUC. Interface with all PG&E business units to ensure compliance with security regulations.
• Direct the development of organization-wide security awareness and training programs as appropriate for the business and the culture of the organization.
• Direct and oversee the monitoring and assessment of security threats that may impact company operations. Provide intelligence and investigation resources. Communicate this intelligence to appropriate business units in a timely manner. This includes taking a disciplined approach to identifying top risks from insider threat and workplace violence, developing solutions that are strategic & appropriate, and implementing tactics that are effective at bringing the strategy to life.
• Serves as an integral part of PG&E’s senior management team with regard to planning and capital expenditures and retain a security organization that is fully qualified to carry out all aspects of company- wide security efforts.
• Oversee and maintain the corporate security budget, including budget setting, forecasting, and expense and capital budget monitoring. Manage funds appropriately to best resource the corporate security department.
• Develop programs and key initiatives that enhance PG&E’s security profile. This includes asset management, risk-based initiatives, auditing and compliance programs, penetration testing, threat metrics management, and communications security initiatives.

Technical Competencies

• Must have expert knowledge of criminal law, rules of evidence, search and seizure, and criminal prosecution.
• Knowledge of government regulations / guidelines as they relate to the utility industry.
• Excellent verbal and written communication skills.
• The ability to develop consensus within an organizational climate of diverse operational activities and often conflicting regulations imposed by agencies with regulatory jurisdiction.
• Leadership courage to identify security-related risks and share them with senior management.
• Knowledge of civil law, and personnel/labor law sufficient to properly direct the activities of the Security Staff.
• Adept at building relationships, influencing others, forging alignment, and communicating effectively across the organization to achieve successful results.
• The proven ability to succeed in a shared services/matrix environment.
• Solid knowledge of security technologies - i.e., CCTV, Burglary, Card Access, and related enterprise software-based technologies.

Leadership Qualities

PG&E expects its leaders to conduct themselves with the highest ethics and integrity and to embody specific leadership qualities.

Strategic Mindset

• Seeing ahead to future possibilities and translating them into breakthrough strategies.
• Operating effectively, even when things are not certain or the way forward is not clear.

A Leader in the Community and Industry

• Effectively building formal and informal relationship networks inside and outside the organization.
• Anticipating and balancing the needs of multiple stakeholders.

Demonstrates Safety Leadership

• A safety champion in words and deeds with respect to both employee and public safety.
• Maintaining an environment of open dialog and free of retaliation.

Influences and Inspires

• Using various- communications that convey a clear understanding of the needs of different audiences.
• Maneuvering comfortably through complex policy, process, and people-related dynamics.

Optimizes Team Performance

• Building strong-identity teams that apply their diverse skills and perspectives to achieve common goals.
• Creating a climate where people are developed and motivated to do their best to help the organization.

Values Diversity and Creates Inclusion

• Recognizing the value that different perspectives and cultures bring to an organization.

Fiscally Responsible

• Interpreting and applying understanding of key financial indicators to make better business decisions.
• Planning and prioritizing work to meet commitments aligned with organizational goals.

Leads Ethically and in a Compliant Manner

• Sponsoring and sustaining a high integrity speak-up corporate culture which prioritizes ethics, safety and compliance.
• Building on necessary level of industry, company and subject-matter expertise, including laws and regulations.

Provides a High Level of Customer Service

• Building strong customer relationships and delivering customer-centric solutions.

Compensation

PG&E is providing the salary range that the company in good faith believes it might pay for this position at the time of the job posting. This compensation range is specific to the locality of the job. The actual salary paid to an individual will be based on multiple factors, including, but not limited to, specific skills, education, licenses or certifications, experience, market value, geographic location, and internal equity. Although we estimate the successful candidate hired into this role will be placed towards the middle or entry point of the range, the decision will be made on a case-by-case basis related to these factors.

A reasonable salary range is:

Bay Area Minimum: $212,000

Bay Area Maximum: $362,000

OR

California Minimum: $201,000

California Maximum: $344,000

Background Qualifications

Minimum

• Bachelor’s degree or equivalent years of experience
• 12 years of security experience
• 5 in corporate security at minimum
• 5 years of leadership experience managing people

Desired

• 5 years of law enforcement experience working for an agency such as the FBI, Secret Service, Department of State, Homeland Security, or State and/or local law enforcement.
• Regional or global security experience overseeing fortune 500 organizations.
• Experience working for a utility (highly desired) and/or other asset intensive organizations in a sector that has been identified as critical infrastructure by the Department of Homeland Security.
• Experience that includes strategic oversight and management of the following areas: corporate security, technology asset management, executive protection, investigations, governance, intelligence programs, forensics investigations, and security technology integration for enterprise-based solutions.
• Experience in overseeing and directing training programs on security topics, creating security compliance policies and procedures, and administering such regulations company-wide.

• Professional Certification – e.g., FBI National Academy Graduate, Certified Protection Professional.
• Valid California Driver’s license.

#featuredjob