Lead cybersecurity diligence and integration for M&A transactions, establish control readiness, communicate cyber risk, and ensure compliance with regulations.
Job Description SummaryLead GE Vernova’s cybersecurity due diligence and integration/separation for a global M&A portfolio (acquisitions, divestitures/carve-outs, JVs, minority investments) across IT and OT/ICS. Own a NIST-aligned workstream from pre-LOI red-flags through close and 30/60/100-day execution. Quantify and communicate cyber risk to inform valuation, terms, and closing conditions; ensure Day 1 control readiness; standardize reusable playbooks (IAM, network/zero trust, cloud, endpoint, data, logging/monitoring, vulnerability management, third-party risk, incident response, BCP/DR); drive safe OT/ICS integration (incl. NERC CIP where applicable); operate in a matrix with DT M&A/PMO, Legal, Privacy, Finance, Insurance, and BU security; manage external providers; track KPIs and reduce TSA duration.Job DescriptionAdditional Information#LI-Remote - This is a remote positionApplication Deadline: March 13, 2026
For candidates applying to a U.S. based position, the pay range for this position is between $156,100.00 and $260,100.00. The Company pays a geographic differential of 110%, 120% or 130% of salary in certain areas. The specific pay offered may be influenced by a variety of factors, including the candidate’s experience, education, and skill set.
Bonus eligibility: discretionary annual bonus.
This posting is expected to remain open for at least seven days after it was posted on February 24, 2026.
Available benefits include medical, dental, vision, and prescription drug coverage; access to Health Coach from GE Vernova, a 24/7 nurse-based resource; and access to the Employee Assistance Program, providing 24/7 confidential assessment, counseling and referral services. Retirement benefits include the GE Vernova Retirement Savings Plan, a tax-advantaged 401(k) savings opportunity with company matching contributions and company retirement contributions, as well as access to Fidelity resources and financial planning consultants. Other benefits include tuition assistance, adoption assistance, paid parental leave, disability benefits, life insurance, 12 paid holidays, and permissive time off.
GE Vernova Inc. or its affiliates (collectively or individually, “GE Vernova”) sponsor certain employee benefit plans or programs GE Vernova reserves the right to terminate, amend, suspend, replace, or modify its benefit plans and programs at any time and for any reason, in its sole discretion. No individual has a vested right to any benefit under a GE Vernova welfare benefit plan or program. This document does not create a contract of employment with any individual.
Essential Responsibilities
- Lead pre-sign red-flag and full due diligence for GE Vernova's Deal Processes in DT and OT/ICS targets aligned to NIST CSF, SP 800-53/800-171, and 800-82.
- Quantify risk and remediation (capex/opex, timeline) and translate into valuation, PPAs, holdbacks, R&Ws/indemnities, and closing conditions.
- Own Day 1 control readiness; build and execute 30/60/100-day plans and drive TSA exit milestones.
- Develop and run standard playbooks for IAM/PAM, network segmentation/zero trust, endpoint/EDR, cloud tenancy/landing zones, app security, data discovery/classification/transfer, logging/SIEM, vulnerability management, third-party risk, IR, and BCP/DR.
- Design/govern safe OT/ICS integration and segmentation strategies; assess NERC CIP applicability and compliance contours.
- Establish clean-room protocols and data handling standards; ensure privacy and cross-border compliance (e.g., DPIAs).
- Operate in a matrix with DT M&A/PMO, Business Development, Legal, Privacy, Finance, Insurance, Sourcing, and BU security; lead cross-functional squads.
- Manage third-party providers for surge capacity/testing/regulatory advisory; integrate and QA outputs.
- Track and report KPIs (flow efficiency, diligence cycle time, Day 1 control coverage, TSA months saved, post-close findings); drive continuous improvement.
- Provide executive-ready risk narratives, options/trade-offs, and recommendations under tight timelines.
Key Deliverables
- Red-flag memo; preliminary NIST scorecard; diligence plan and data room list; clean-room SOPs.
- Control gap assessment with target state; quantified remediation estimates; executive risk register and heatmap.
- OT/ICS Purdue mapping; zone/conduit strategy; NERC CIP relevance assessment (as applicable).
- Day 1 control checklist and exceptions log; 30/60/100-day plan with critical path and TSA exit criteria.
- Integration/separation runbooks/playbooks; cutover command-center and stabilization plans.
- SPA/TSA cyber clause recommendations; insurance underwriting package.
- Deal dashboard, weekly executive updates, risk/issue logs; post-close lessons learned; BU handover package.
Required Qualifications
- 10+ years in cybersecurity with significant M&A diligence and integration/separation leadership.
- Experience across IT and OT/ICS security, including segmentation and operational resilience.
- Deep knowledge of NIST CSF, SP 800-53/800-171, and 800-82; familiarity with NERC CIP.
- Proven ability to quantify risk/remediation and translate into deal economics and SPA/TSA language.
- Track record delivering Day 1 readiness and 30/60/100-day execution with TSA exits in global environments.
- Hands-on depth in IAM/PAM, network/cloud security, endpoint/EDR, data protection, logging/monitoring, vuln mgmt, third-party risk, IR, and BCP/DR.
- Executive communication and matrix leadership; ability to lead external advisors.
- Bachelor’s degree in cybersecurity, computer science, engineering, or related field (or equivalent experience).
- Location: Flexible US; hybrid/remote options based on candidate location.
- Travel: Some Domestic and international, as required.
Preferred Qualifications
- OT-heavy transaction experience (generation, grid, renewables); prior clean-room design/operations.
- Risk quantification (e.g., FAIR or equivalent); Lean/Agile/PMO experience with metrics focus.
- Experience improving cyber insurance submissions and influencing SPA/TSA controls.
- Relevant certifications: CISSP, CISM, CRISC, CISA, GICSP, CCSK/CCSP, cloud provider certs.
GE Vernova offers a great work environment, professional development, challenging careers, and competitive compensation. GE Vernova is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law.
GE Vernova will only employ those who are legally authorized to work in the United States for this opening. Any offer of employment is conditioned upon the successful completion of a drug screen (as applicable).
Relocation Assistance Provided: No
For candidates applying to a U.S. based position, the pay range for this position is between $156,100.00 and $260,100.00. The Company pays a geographic differential of 110%, 120% or 130% of salary in certain areas. The specific pay offered may be influenced by a variety of factors, including the candidate’s experience, education, and skill set.
Bonus eligibility: discretionary annual bonus.
This posting is expected to remain open for at least seven days after it was posted on February 24, 2026.
Available benefits include medical, dental, vision, and prescription drug coverage; access to Health Coach from GE Vernova, a 24/7 nurse-based resource; and access to the Employee Assistance Program, providing 24/7 confidential assessment, counseling and referral services. Retirement benefits include the GE Vernova Retirement Savings Plan, a tax-advantaged 401(k) savings opportunity with company matching contributions and company retirement contributions, as well as access to Fidelity resources and financial planning consultants. Other benefits include tuition assistance, adoption assistance, paid parental leave, disability benefits, life insurance, 12 paid holidays, and permissive time off.
GE Vernova Inc. or its affiliates (collectively or individually, “GE Vernova”) sponsor certain employee benefit plans or programs GE Vernova reserves the right to terminate, amend, suspend, replace, or modify its benefit plans and programs at any time and for any reason, in its sole discretion. No individual has a vested right to any benefit under a GE Vernova welfare benefit plan or program. This document does not create a contract of employment with any individual.
Top Skills
Bcp
Cloud Security
Data Protection
Dr
Edr
Endpoint Security
Iam
Incident Response
Logging
Nerc Cip
Nist Csf
Nist Sp 800-171
Nist Sp 800-53
Nist Sp 800-82
Pam
SIEM
Vulnerability Management
Zero Trust
Similar Jobs
.png)
Cloud • Insurance • Payments • Software • Business Intelligence • App development • Big Data Analytics
Lead and optimize full-funnel paid media programs (search, social, CTV/video, retargeting). Own GA4/pixel tracking, UTMs, landing page tests, measurement, reporting, and cross-functional execution to drive MQLs and improve conversion quality.
Top Skills:
Google Ads,Microsoft Advertising,Linkedin Ads,Meta Ads,Youtube,Mntn,Google Analytics 4 (Ga4),Excel,Utm Tracking,Pixel Tracking,Ctv,A/B Testing
Artificial Intelligence • Fintech • Machine Learning • Mobile • Payments • Retail • Software
Identify and remediate cloud infrastructure vulnerabilities, codify IaC compliance in Terraform/Python/OPA, run IaC security scans, advise and mentor engineers, ensure AWS/Lambda security and regulatory compliance, and engage stakeholders and the security community.
Top Skills:
Terraform,Python,Opa,Java,Aws Lambda,Dynamodb,S3,Sns,Sqs,Iam,Vpcs,Aws Control Tower,Github Advanced Security,Github Actions,Github Copilot,Chatgpt,Snowflake,Sql
Artificial Intelligence • Fintech • Machine Learning • Mobile • Payments • Retail • Software
Drive application security by running SAST/SCA, threat modeling, vulnerability management, and remediation. Advise on secure architecture, train engineers, support pentests/bug bounties, and administer AWS Control Tower and IAM. Innovate with AI to improve AppSec tooling and practices.
Top Skills:
Python,Github Advanced Security,Github Actions,Github Copilot,Terraform,Aws Lambda,Dynamodb,S3,Sns,Sqs,Iam,Vpc,Aws Control Tower,Chatgpt,Snowflake,Sql,Sast,Sca
What you need to know about the Los Angeles Tech Scene
Los Angeles is a global leader in entertainment, so it’s no surprise that many of the biggest players in streaming, digital media and game development call the city home. But the city boasts plenty of non-entertainment innovation as well, with tech companies spanning verticals like AI, fintech, e-commerce and biotech. With major universities like Caltech, UCLA, USC and the nearby UC Irvine, the city has a steady supply of top-flight tech and engineering talent — not counting the graduates flocking to Los Angeles from across the world to enjoy its beaches, culture and year-round temperate climate.
Key Facts About Los Angeles Tech
- Number of Tech Workers: 375,800; 5.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Snap, Netflix, SpaceX, Disney, Google
- Key Industries: Artificial intelligence, adtech, media, software, game development
- Funding Landscape: $11.6 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Strong Ventures, Fifth Wall, Upfront Ventures, Mucker Capital, Kittyhawk Ventures
- Research Centers and Universities: California Institute of Technology, UCLA, University of Southern California, UC Irvine, Pepperdine, California Institute for Immunology and Immunotherapy, Center for Quantum Science and Engineering
