ENTSO-E is the European Network of Transmission System Operators for Electricity. ENTSO-E coordinates the cross-border system operations, system development and electricity market activities of the 43 electricity transmission system operators (TSOs) which cover 36 countries. ENTSO-E is assigned important tasks in EU legislation, including the development of Europe-wide electricity network development plans, and of more than 10 network codes which themselves become binding European laws.
The ENTSO-E Secretariat in Brussels is the focal point for technical, market and policy questions for all European TSOs in their cooperation with each other, in their joint fulfillment of their legal mandates, and in the intensive interactions with European Commission, regulatory agencies, associations representing network users and other stakeholders. The role of the TSOs and their cooperation in ENTSO-E is crucial to ensuring security of supply; completing the largest and most competitive electricity market in the world; and successfully integrating large volumes of renewable energy into the system.
ENTSO-E applies a project-aligned method of working. This covers the business case, well-defined scope and deliverables, clear roles for decision making and controlling responsibilities and plans for resources, quality and risk management. The scope and diversity of ENTSO-E’s work has grown rapidly and is expected to grow further with implementation of network codes and the current challenging energy policy discussions.
General position description
The Common Grid Model Program of ENTSO-E
**CGM Program summary **
Grid operators use mathematical simulation models of their network to simulate the grid behavior under various, including extreme, circumstances. Results of these simulations are notably used to decide on the list of actions transmission system operators (TSOs) need to take to maintain the reliability of the grid at the least cost and impact possible for customers and stakeholders (distribution grids, generators, traders, etc.).
Up to now, each TSO has been using its own grid model. As electrical networks become more interconnected and as European electricity markets are getting more and more integrated, there is a need to develop a common grid model of pan-European dimension. It will ease the cooperation between TSOs and will result in an even more secure and cost-efficient pan- European grid. The EU has recognized the benefits that this common grid model will bring and has thus made it a legal requirement in various network codes (CACM, FCA and SO GL) that methodologies for the common grid model and generation and data provision are developed by all TSOs and submitted for approval to all regulatory authorities.
The common Grid Model Business process requires a significant data exchange amongst all ENTSO-E members. The IT data exchange system which is under construction is called the Operational Planning Data Exchange Platform [OPDE] and is fully in scope of the common grid model program.
The Operational Planning Data environment is built up out of 3 interacting IT layers:
ATOM: the underlying IT communication network. ATOM will be a Pan-European service provider level network based on MPLS technology supporting data exchanges between TSOs.
Connectivity Platform: a distributed software platform that allows secure and traceable data-exchange .
Multiple central IT business applications: these apps are plugged into the Connectivity platform and process the data according to the agreed common grid model processes .
The successful candidate will be the main contact provider for cybersecurity requirements and guidance on all IT software applications within the CGM Program : ENTSO-E Connectivity Platform Applications and the Business Applications.
This position is based in our premises at ENTSO-E Secretariat in Brussels.
Specific responsibilities and tasks
- Acting as a central point of reference and core competency for Information Security within the Common Grid Model Program.
Planning and managing the implementation of all security requirements in the centrally operated ENTSO-E Connectivity Platform Applications and the Business Applications .
Coordinating the auditing of the common security controls for all centrally operated ENTSO-E Connectivity Platform Applications and the Business Applications .
Coordinating the auditing and compliance check of the common security controls at TSOs .
Organize, conduct and document security plan workshops with TSOs.
Work closely with the ICT Delivery manager to define the security strategic risk and compliance, Configuration Management plan and Change Management process.
Ensure development roadmap is in line with security requirements.
Support the Test Manager to define Security test cases (Penetration testing and Intrusion detection..)
Provide Guidelines for the information security management system auditing.
- Support the OPDE architecture design activities with security related knowledge .
Skills / knowledge (preferred)
Strong Knowledge of the Information Security Standards (ISO27001,ISO27002).
Knowledge of the Information Security technologies (Crypto, Network Security, Intrusion Detection, Access Control Models, GPOs, Authentication/Identification…) .
Experience in security audit and compliance review .
Experience on implementing and monitoring Information Security Management Systems (ISMS) .
Experience in vulnerability management .
Good project management skills.
Good Communication Skills with capability to drive challenging workshops and shareholders meetings.
Experience in the in the energy industry.
Familiar with Issue tracking systems as Zendesk and/or JIRA and Content Management Systems like SharePoint .
Fluent in English near native speaker quality in writing and speaking .
CISSP/ISC certified or equivalent experience.
At least 15 years of experience in IT and Cybersecurity domains.
Preferably graduate or diploma in IT (information technology)/OT(operational technology) related field .
Attention to detail is indispensable, yet business attitude and results driven .
Supporting the team as a self-organized and independently working member .
Broad technical interest .
Ability to quickly familiarize with new products/technologies/concepts .
Committed, able to work against tight deadlines.
An interest in European energy policy and European institutions is necessary .
International travel within Europe will be required.