Responsibilities

• Lead Company in obtaining and sustaining key certifications including IEC 62443, ISO 27001, NERC-CIP, NIST CSF, SOCI Act, and UL 2941, while proactively addressing emerging regulatory demands.
• Liaise with external certification bodies, auditors, and regulatory agencies to validate compliance across products and systems.
• Evaluate evolving international cybersecurity regulations and convert them into practical implementation guidelines for R&D and product development.
• Conduct risk assessments, audits, and vulnerability analyses to generate and maintain compliance-related documentation.

Internal R&D Support

• Interpret cybersecurity standards and define precise technical requirements for engineering and product development teams.
• Partner with software, controls, and hardware units to embed cybersecurity principles throughout the product design lifecycle.
• Evaluate technical outputs to verify adherence to certification and compliance objectives.

Implementation & Monitoring

• Drive the adoption of cybersecurity controls for critical infrastructure telemetry, remote access, and secure communication channels.
• Create and implement monitoring solutions and dashboards to improve security oversight and operational effectiveness in utility-scale BESS deployments.
• Assist in vulnerability management efforts, including patch detection, validation, and mitigation strategy development.
• Collaborate with internal groups and third-party specialists to assess existing practices and implement enhancements.

Project & Customer Support

• Offer cybersecurity guidance during project contracting and negotiation, clarifying distinctions between regulatory mandates and customer-specific criteria.
• Deliver technical assistance to internal and customer teams throughout the sales, installation, and operational phases of BESS solutions.
• Develop technical documents, whitepapers, and presentations outlining Envision’s cybersecurity approach and compliance posture.

Qualifications

• Bachelor’s or Master’s degree in Cybersecurity, Computer Science, Electrical/Systems Engineering, or a related discipline.
• At least 5 years of cybersecurity experience, preferably within energy, utilities, or industrial control systems (ICS/OT).
• Demonstrated success in managing cybersecurity certification and regulatory compliance initiatives.
• Experience serving as a bridge among R&D teams, certification entities, and external partners.
• Solid understanding of major cybersecurity frameworks and standards (e.g., IEC 62443, ISO 27001, NERC CIP, NIST).
• Knowledge of industrial network protocols such as Modbus, DNP3, and IEC 61850.
• Hands-on experience designing and implementing network security architectures (e.g., firewalls, DMZs, jump servers, IDS, secure remote access).
• Strong analytical, writing, and verbal communication skills; able to articulate technical concepts to varied audiences.
• Proactive, meticulous, and capable of working autonomously or within internationally distributed teams.

Seniority level

• Director

Employment type

• Full-time

Job function

• Information Technology

Industries

• Services for Renewable Energy