Share this Job

Principal Technology Risk Advisor

San Francisco, CA, US, 94105

Requisition ID # 35284 

Job Category : Information Technology 

Job Level : Manager/Principal

Business Unit: Customer Care

Job Location : San Francisco

Department Overview

The Security organization has enterprise wide responsibility to identify and manage physical security and cyber risks to protect PG&E's people, critical infrastructure, information assets, and business operations. The team works collaboratively with the Lines of Business (LOB) (e.g., Gas Operations, Electric Transmission and Distribution, etc.) to develop a roadmap, implement security strategy, execute on projects to improve the company’s risk posture through threat and vulnerability management, incident response and to drive overall maturity of the cybersecurity program.


Position Summary

The Senior Technology Risk Advisor Principal leads activities of the Security and IT risk management program and ensures it is aligned with the Enterprise and Operational Risk Management framework and the Company’s integrated planning process. This position is directly accountable for communicating security vision, and strategy, and for planning and leading the design, development, implementation and support of the technology risk management framework.  The candidate is responsible for building relationships with various risk owners within the IT & Security organizations to understand business requirements, risk drivers, ongoing and planned projects to promote risk reduction. The candidate is also responsible for establishing relationships across LOBs to understand how they may impact or be impacted by risks owned by the IT & Security Organizations. This role participates in enterprise integrated planning, bringing a current knowledge and future vision of technology and industry as it relates to the IT and Security departments.  This position will report to the Senior Manager of IT Risk & Compliance.


Job Responsibilities


  • Leads enterprise risk management efforts within the IT and Security organizations
  • Performs risk assessments within the IT and Security organizations and identifies opportunities to make IT and Security risk management processes more effective and efficient
  • Coordinates with risk owners in the development and implementation of risk mitigations; measures and reports on the progress and effectiveness of risk mitigation efforts (metric reporting)
  • Supports integrated planning efforts for risks (risk identification, risk mitigation strategy definition, risk mitigation plan development) in concert with the Security and IT functional leaders
  • Prepares executive level materials for the IT and Security lines of business (LOB) Risk and Compliance Committee meeting to inform senior management review of the risk and compliance programs
  • Liaises across the IT and Security LOB and corporate functions such as Enterprise and Operational Risk Management, Integrated Planning, Internal Audit and Compliance and Ethics, to complete time-sensitive deliverables
  • Leads, working with SMEs and Risk Owners, the preparation of filing to regulators describing risk reduction initiatives and progress.
  • Timely escalation of concerns to the IT Risk & Compliance Senior Manager
  • Facilitate the completion of periodic enterprise risk and compliance reporting deliverables (Executive summaries, Board/Committee updates, annual risk and compliance reporting)






  • Bachelors Degree in Computer Science or job-related discipline or equivalent experience
  • 8 years of experience in risk management, IT operations, business management, utility/industry work experience, and/or related field
  • 4 years of supervisory and leadership experience over an IT or Security function.
  • Excellent planning, organizational and project management skills; detail and process-oriented and able to juggle multiple priorities in a fast-paced environment
  • Highly collaborative, able to work cross-functionally; possessing the ability to forge relationships and partner effectively
  • Demonstrated knowledge of risk management and utility operations
  • Experience in the qualitative and quantitative assessment of risks
  • Excellent written and verbal communication skills, able to explain complex issues in clear and concise terms
  • Resourceful and self-motivated, able to work independently as required
  • Credible and persuasive; able to present complex information in an accessible fashion to a non-technical audience
  • Has demonstrated a continuous improvement mindset and a customer focus
  • Experience with regulatory requirements




  • M.B.A./M.S. degree in a relevant field (or equivalent experience with emphasis in risk management)
  • CISSP-Certified Information Systems Security Professional certification
  • IT-Information Technology Security certification
  • Ability to use data to quantify financial and operational impacts of risk management decisions
  • Demonstrated effectiveness in influencing stakeholders without the benefit of positional authority
  • Strong knowledge of the Utility industry and Security and IT operations

Our Mission

To safely and reliably deliver affordable and clean energy to our customers and communities every single day, while building the energy network of tomorrow.

Our Vision

With a sustainable energy future as our North Star, we will meet the challenge of climage change while providing affordable energy for all customers.

Our Culture

We put safety first.
We are accountable. We act with integrity, transparency and humility.
We are here to serve our customers.
We embrace change, innovation and continuous improvement.
We value diversity and inclusion. We speak up, listen up and follow up.
We succeed through collaboration and partnership. We are one team.

Pacific Gas and Electric Company (PG&E), a subsidiary of PG&E Corporation (NYSE:PCG), is one of the largest combined natural gas and electric companies in the United States. Based in San Francisco, our 24,000 employees deliver safe, reliable, affordable and clean energy to nearly 16 million people throughout our Northern and Central California service area, stretching from Eureka to Bakersfield and from the Pacific Ocean to the Sierra Nevada.

More About Our Company

Pacific Gas and Electric Company is an Affirmative Action and Equal Employment Opportunity employer that actively pursues and hires a diverse workforce. All qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, sex, age, religion, physical or mental disability status, medical condition, protected veteran status, marital status, pregnancy, sexual orientation, gender, gender identity, gender expression, genetic information or any other factor that is not related to the job.

Employee Privacy Notice                                                                                                                                                                                                                                      The California Consumer Privacy Act (CCPA) goes into effect on January 1, 2020. CCPA grants new and far-reaching privacy rights to all California residents. The law also entitles  job applicants, employees and non-employee workers to be notified of what personal information PG&E collects and for what purpose. The Employee Privacy Notice can be accessed through the following link: Employee Privacy Notice

PG&E will consider qualified applicants with arrest and conviction records for employment in a manner consistent with all state and local laws.

Nearest Major Market: San Francisco
Nearest Secondary Market: Oakland