About NovaSource
NovaSource Power Services is the world’s #1-ranked solar operations and maintenance (O&M) provider and insight-driven total asset optimization partner for renewables asset owners ready to fuel smart growth. With over 20 years of operating experience and a presence on 5 continents, NovaSource has the global reach and strategic capabilities to achieve our clients’ renewables goals around the world.Â
NovaSource’s comprehensive approach to total asset optimization in addition to O&M services includes value engineering, performance analysis, strategic supply chain management, and advanced monitoring systems. The company operates in key global markets managing over 30GW of solar power plants. NovaSource’s expertise extends beyond solar and includes battery energy storage systems (BESS), offering a complete suite of services for the evolving renewable energy landscape.
Job SummaryÂ
The Manager, Information Security is responsible for managing the day-to-day operations of the Information Security function, supporting the implementation of cybersecurity programs, maintaining security controls, and ensuring compliance with applicable regulatory and company security requirements. This role partners closely with Information Technology, Engineering, and Operations to protect corporate and operational technology environments while supporting the organization's overall cybersecurity strategy.
ExperienceÂ
• 5+ years of experience in Information Security, Infrastructure Services, OT Security, or related fields.Â
•   2+ years leading technical teams.Â
•   Experience implementing cybersecurity policies, procedures, and controls.Â
•   Experience supporting regulatory compliance programs, preferably NERC CIP.Â
•   Experience conducting security and risk assessments.Â
•   Experience with incident response, threat monitoring, IAM, and vulnerability management.Â
Education and CertificationsÂ
• Bachelor’s degree in Cybersecurity, Computer Science, Engineering, Information Systems, or related discipline.Â
•   Relevant certifications preferred (CISSP, CISM, GIAC, Security+, PMP).Â
•   Advanced degree preferred but not required.Â
Technical QualificationsÂ
• Experience managing cybersecurity vendors and security technologies.
•   Experience implementing and administering information security policies, technologies, controls, and management processes.
•   Knowledge of NERC CIP standards and data privacy requirements.Â
•   Experience with ITIL processes.Â
•   Strong analytical, problem-solving, and project management skills.
•   Experience with SIEM, endpoint security, vulnerability management, and identity governance platforms.Â
•   Knowledge of NIST CSF, CIS Controls, and ISO 27001 preferred.Â
Essential Functions & ResponsibilitiesÂ
•   Manage the day-to-day activities of the Information Security team, providing coaching, guidance, and performance management.
•   Build, develop, and retain a high-performing information security organization.Â
•   Establish clear performance expectations, career-development plans, and succession strategies.Â
•   Foster a culture of accountability, continuous improvement, and cybersecurity awareness.Â
•   Promote business partnership and consultative engagement across the enterprise.
•   Support the execution of cybersecurity programs and initiatives that align with business objectives and regulatory requirements.
•   Manage security operations across corporate, cloud, and operational technology (OT) environments, including monitoring, incident response, identity and access management, and vulnerability management.Â
•   Implement and maintain security controls, standards, and procedures to protect company information systems and assets.Â
•   Coordinate cybersecurity activities supporting NERC CIP compliance, regulatory audits, and security assessments.Â
•   Conduct security risk assessments, identify vulnerabilities, and partner with stakeholders to implement remediation plans.Â
•   Support security architecture reviews, technology implementations, and system changes to ensure compliance with established security standards.Â
•   Partner with IT, Engineering, Operations, and business teams to address cybersecurity risks and support secure business operations.
•   Review and approve security requirements for infrastructure, cloud, application, and enterprise architecture initiatives.Â
•   Provide cybersecurity oversight for major technology projects and system changes.Â
•   Evaluate security technologies and recommend investments supporting risk reduction.Â
•   Lead the implementation and lifecycle management of enterprise security tools.
•   Manage cybersecurity vendors and technologies to ensure effective service delivery and continuous improvement of security operations.
•   Prepare operational security metrics, reports, and documentation to support leadership decision-making.Â
•   Promote cybersecurity awareness by supporting employee training and security awareness initiatives.Â
•   Maintain knowledge of emerging cybersecurity threats, technologies, and industry best practices to support continuous improvement.
•   Partner with Legal, HR, Compliance, and IT leadership on cybersecurity investigations and evidence preservation activities.Â
•   Coordinate litigation hold requirements involving cybersecurity incidents, employee investigations, electronic discovery, and regulatory inquiries.Â
•   Support forensic collection, chain-of-custody processes, and evidence management activities.Â
•   Ensure appropriate preservation and protection of security-related records and audit evidence.
•   Promote a culture of cybersecurity awareness, accountability, and continuous improvement.
Work EnvironmentÂ
• Excellent communication and presentation skills.Â
• Strong analytical and problem-solving abilities.Â
• Experience managing distributed teams and collaborating with global stakeholders.Â
Office Physical Requirements:
All positions in our office require interaction with people and technology while either standing or sitting. In order to best serve our customers, internal and external, all associates must be able to communicate face-to-face and on the phone with or without reasonable accommodation. NovaSource is committed to compliance with its obligations under all applicable state and federal laws prohibiting employment discrimination. In keeping with this commitment, it attempts to reasonably accommodate applicants and employees in accordance with the requirements of the disability discrimination laws. It also invites individuals with disabilities to participate in a good faith, interactive process to identify reasonable accommodations that can be made without imposing an undue hardship.
 Potential candidates will meet the education and experience requirements provided on the above job description and excel in completing the listed responsibilities for this role.     Â
US: Diversity Statement – Equal Employment Opportunity
It is NovaSource’s policy to provide equal employment opportunities to all applicants and employees. NovaSource disapproves of, and will not tolerate, unlawful discrimination against any applicant or employee because of race, color, national origin or ancestry, gender (including pregnancy, childbirth, or related medical conditions), gender identity, age, religion, disability, family care status, veteran status, marital status, sexual orientation, or any other basis protected by local, state or federal laws.
Learn more about this Employer on their Career Site
