CSTA Security Specialist Lead
Description:
Job Posting End Date07-14-2025
Please note the job posting will close on the day before the posting end date
Job Summary
Responsible for large-scale security assignments providing direction to other team members. Responsible for gathering, investigating, and analyzing very complex security requirements, processes, and incidents. Leads analysis of security controls assessments (internal and third party) through application security testing, penetration testing or other means to ensure controls effectiveness. Leads the identification and documentation of potential mitigations /remediations and ensures report creation of findings with identified risk response. Responsible for the conceptual design of implementation strategies on assigned security projects/activities. Leads advanced level implementation, support, and/or usage of technical solutions. Leads others in advanced problem solving, decision-making, and functional area knowledge. Mentors and provides functional/technical work direction to team.
Job Description
What You'll Do:
Lead moderate to highly complex technical security assessments across diverse technology, business systems, and critical infrastructure.
Document complex technical findings and communicate them effectively in both written and verbal forms to key stakeholders, including Senior and Executive Leadership.
Provide actionable, technically sound recommendations to facilitate effective risk treatment of identified findings.
Advise Security Leadership and offer deep technical subject matter expertise for large-scale security and technology initiatives.
Fulfill technical functions in this role, including:
Application Security Lead
Penetration Tester / "Red Team" Lead
Security Tool Administrator Lead
What We're Looking For:
Security Specialist Lead (SG9):
Education: Bachelor's degree in computer science, information systems, business or related field of study; Or Associate's degree in computer science or related field of study with 2 years of relevant work experience; Or High school diploma/GED with 4 years of relevant work experience.
Experience: In addition to any experience required above, 10 years of relevant work experience is required.
Nice-to-have:
Three or more years of technical Penetration Testing / Application Security specific experience, or commensurate related experience.
Demonstrated expertise in penetration testing methodologies and the ability to apply these methodologies in varied technology environments, both independently and as a team leader.
Demonstrable technical experience in one or more of the following disciplines:
Network / Critical Infrastructure Penetration Testing
Web Application / Web Service Penetration Testing
Mobile / IoT Penetration Testing
Software / Malware Reverse Engineering
Hardware / Firmware Reverse Engineering
Application Development and Testing
Cloud / Container Security
Red Teaming / Threat Emulation
Technical security certifications are beneficial (e.g., OSCP, OSWE, OSCE, LPT, GPEN, GWAPT, GMOB, GXPN, GAWN, GCPN, GCE, CISSP).
Some travel or overtime may be required.
Location: Prefer candidate to live within 50 miles of Columbus, OH
What you’ll get:
Security Specialist Lead (SG9): $112,869.00-$146,730.50
In addition to a competitive compensation, AEP offers a unique comprehensive benefits package that aims to support and enhance the overall well-being of our employees.
Where Putting the Customer First Powers Everything We Do
At AEP, we’re more than just an energy company — we’re a team of dedicated professionals committed to delivering safe, reliable, and innovative energy solutions. Guided by our mission to put the customer first, we strive to exceed expectations by listening, responding, and continuously improving the way we serve our communities. If you're passionate about making a meaningful impact and being part of a forward-thinking organization, this is the company for you!
#AEPCareers
Compensation Data
Compensation Grade:
SP20-009
Compensation Range:
$112,869.00-146,730.50 USD
The Physical Demand Level for this job is: S – Sedentary Work: Exerting up to 10 pounds of force occasionally (Occasionally: activity or condition exists up to 1/3 of the time) and/or a negligible amount of force frequently. (Frequently: activity or condition exists from 1/3 to 2/3 of the time) to lift, carry, push, pull or otherwise move objects, including the human body. Sedentary work involves sitting most of the time but may involve walking or standing for brief periods of time. Jobs are sedentary if walking and standing are required only occasionally, and all other sedentary criteria are met.
Hear about it first! Get job alerts by email. Log in to your Candidate Home Account today! If you don't have an account, you can create one.
It is hereby reaffirmed that it is the policy of American Electric Power (AEP) to provide Equal Employment Opportunity in all respects of the employer-employee relationship including recruiting, hiring, upgrading and promotion, conditions and privileges of employment, company sponsored training programs, educational assistance, social and recreational programs, compensation, benefits, transfers, discipline, layoffs and termination of employment to all employees and applicants without discrimination because of race, color, religion, sex (including pregnancy, gender identity, and sexual orientation), national origin, age, veteran or military status, disability, genetic information, or any other basis prohibited by applicable law. When required by law, we might record certain information or applicants for employment may be invited to voluntarily disclose protected characteristics.
R9753