We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
CenterPoint Energy jobs

Manager Cloud and Application Security

CenterPoint Energy
paid time off, paid holidays, tuition reimbursement, 401(k)
United States, Texas, Houston
Mar 24, 2025

CenterPoint Energy and its predecessor companies have been in business for more than 150 years.

Our Vision: Our vision is to become the most admired utility in the United States through the execution of our long-term growth strategy. We have an unwavering commitment to safely and reliably deliver electricity and natural gas to millions of people.

Our Commitment: CenterPoint Energy is committed to creating an inclusive work environment where business results are achieved through the skills, abilities and talents of our diverse workforce.

At CenterPoint Energy, individuals are respected for their contributions toward our company objectives. We strive for an inclusive work environment across all levels that is reflective of the available workforce in the communities we serve.

Summary:

The Mid-Level Manager, Cloud and Application Security, will lead the development and execution of a comprehensive cloud and application security program. This role will work to ensure the security of cloud environments (GCP, Azure, IBM, SaaS) and foster a shift-left culture by embedding application security practices throughout the software development lifecycle (SDLC). The successful candidate will have a strong technical background of cloud security and application security best practices, hands-on experience with modern security tools and frameworks, and the ability to collaborate across teams to drive the adoption of polices, remediation of findings, and build our cloud and application security awareness. .

Essential Duties/Responsibilities:

Cloud Security Posture & Program Management

* Design and manage a robust cloud security strategy across multi-cloud environments, including GCP, Azure, IBM Cloud, and SaaS platforms.

* Develop and enforce policies, standards, and guidelines for securing cloud infrastructure and services.

* Implement and maintain security controls and policies across all aspects of cloud environments (such as: identity and access management (IAM), data protection, threat detection, and incident response in the cloud)

* Monitor cloud environments for vulnerabilities and misconfigurations ensuring timely remediation

Application Security Program Development

* Build and lead an application security program encompassing SAST, DAST, secrets scanning, API security, infrastructure-as-code (IaC) scanning, container protectin, runtime protection and CICD pipeline protection.

* Collaborate with development teams to integrate security testing tools and automation into the SDLC/DevSecOps pipelines driving a shift-left culture.

* Provide guidance on secure coding practices and conduct regular application security reviews.

* Define and implement strategies to secure APIs and web applications against modern attack vectors.

Security Awareness and Collaboration

* Partner with DevOps, development, and cloud infrastructure teams to ensure security is embedded into workflows.

* Conduct training and awareness sessions to promote cloud and application security best practices across the organization.

* Act as a security champion, advocating for proactive measures and continuous improvement.

Compliance and Governance

* Ensure alignment with regulatory requirements, industry standards, and internal policies for cloud and application security.

* Participate in audits and assessments, providing evidence and ensuring compliance.

* Develop and report metrics to senior leadership to demonstrate program effectiveness and maturity.

Develop Processes, Methods, Metrics, and Tools that drive Continuous Improvement

* Develop robust metrics and reporting methods to ensure real-time triage of findings

* Stay current on emerging threats, technologies, and best practices to evolve the security program proactively.

Education:

Bachelor's degree in computer science, Information Security or related field

Experience:



  • 5+ years of experience in application development, cloud & infrastructure, cloud and app security, information security, or related roles, with at least 2 years in a management or leadership position.
  • Strong knowledge of cloud security frameworks, tools, and best practices across Azure, GCP, and IBM Cloud
  • Strong knowledge of DevSecOps principles and experience integrating security into CICD pipelines.
  • Certifications such as CCSK, CCSP, AWS Certified Security Specialty, Azure Security Engineer, or equivalent are preferred.
  • Familiarity with regulatory frameworks like NERC-CIP, GDPR, CCPA, or similar.
  • Familiarity with CSPM, CNAPP, CWPP, CASB, SSPM and App Security Platforms



Preferred Attributes:



  • Experience in the utilities, industrial manufacturing or critical infrastructure sector.
  • Familiarity with on-prem and cloud-based security practices and tools.
  • Strong interpersonal skills with the ability to work collaboratively across departments.



We want you to know

Being a part of the CenterPoint Energy team is more than a career alone. It's an opportunity to make a positive impact. You will be an integral part of enabling everyday life and the pursuit of possibilities for the customers we serve and the communities we share. The vital services we provide are at the core of making our world work, and by sharing your energy with us, we'll create a better tomorrow together.

What we bring to you



  • Competitive pay
  • Paid training
  • Benefits eligibility begins on your first day
  • Transit subsidies
  • Flexible work schedule, paid holidays and paid time off
  • Access to discounts at fitness clubs and an on-site wellness center at our headquarters in Houston
  • Professional growth and development programs including tuition reimbursement
  • 401(k) Savings Plan featuring a company match dollar-for-dollar up to 6% and a company contribution of 3% regardless of your contribution




Job Type:Full Time

Posting Start Date: 03/23/2025

Posting End Date: 04/11/2025

This contractor and subcontractor shall abide by the requirements of 41 CFR * 60-1.4(a), 60-300.5(a), and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, or national origin. Moreover, these regulations require that covered prime contractors and subcontractors take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status or disability.

#LI-CNP
Applied = 0
MORE JOBS LIKE THIS

(web-56554b8dcd-pmmtk)