Prin Security Technical Analyst

Consumers Energy is Michigan's largest energy provider, providing natural gas and/or electricity to 6.8 million of the state's 10 million residents in all 68 Lower Peninsula counties. Consumers Energy knows job number one is to keep the lights on for customers. We are committed to delivering reliable, clean, and affordable energy to our customers 24/7.

This position is not eligible for immigration sponsorship, e.g., H-1B, TN, etc. Please do not apply if you will need immigration sponsorship for a work visa now or in the future, including sponsorship for H-1B, TN, etc., now or in the future. We are unable to hire individuals with CPT, OPT, or STEM OPT for this position as the position is not eligible for participation in the H-1B lottery program and is not eligible for current or future immigration sponsorship for a work visa.

This is a hybrid (virtual/onsite) position with required onsite days on Monday, Tuesday and Thursday assigned to One Energy Plaza located in Jackson, MI. The selected candidate must be within a commutable distance or willing to relocate (relocation package is available for those that qualify).

The Principal Security Technical Analyst - Governance, Risk, and Compliance (GRC) role requires strong technical expertise, exceptional customer service, and excellent communication and writing skills. The Principal is recognized as a leader and subject matter expert within and beyond their immediate function and is highly proficient at gathering critical information, distinguishing key details, and making sound decisions. This role requires a solid understanding of technology, governance, risk, controls, compliance practices, modern cybersecurity challenges, asset management life cycles, and data management.

The position also supports the Manager and Senior Principal in developing roadmaps, standards, and strategic initiatives.

This role operates within the Security GRC Risk organization, focusing on evaluating and enhancing technology risk controls across critical platforms and services. The analyst supports effectiveness reviews in collaboration with engineering and operations teams to assess how documented approaches align with actual technical practices. Over time, this position will expand into broader technical risk and assurance functions, helping identify control gaps, validate remediation efforts, and strengthen overall risk transparency.

• Develops and maintains visual dashboards; produces high-quality reports and documentation; ensures accuracy, clarity, and succinctness; and reviews or approves work from less senior team members. Provides recommendations to Senior Principals and management.
• Assumes ownership in analyzing and implementing operational, regulatory, business, and legal requirements. Identifies and assesses complex, ambiguous, or conflicting business process and technology issues, advising department managers on development, enhancement, and maintenance activities.
• Researches and advocates for new or emerging technologies, architectures, and enterprise products; may collaborate with Supply Chain to provide subject matter expertise during contract evaluations.
• Ensures timely completion of deliverables; represents the team in meetings and review boards; and serves as a backup to the Manager and other team leaders. Supports daily operations by validating objectives and KPIs, taking corrective action as needed, and partnering with technical and business teams to meet goals.
• May directly oversee one or more areas— including controls, risk mitigation and management, compliance, audit support, and hardware/software/OT asset management operations— with guidance from the Manager or Senior Principal. May occasionally present high-impact exceptions to Company senior vice presidents.
• Translates technical standards into language understood by nontechnical stakeholders; clearly articulates gaps and recommended actions; ensures standards and policies are well-written, accurate, and accessible; and monitors adherence, addressing compliance issues when needed.
• Leads or participates in team initiatives such as annual planning, continuous improvement efforts, waste elimination activities, and operational reviews. Actively maintains internal processes, owning gap analysis and remediation. Adheres to the Company's quality systems and methodologies.
• Performs other duties as assigned or required.
• Contributes as a primary resource on the IT & Security Governance, Risk, and Compliance Team, working independently with Company stakeholders and keeping leadership appropriately informed. May interact with vendors, publishers, governmental agencies, and external organizations.
• Engages with, leads, and mentors other staff, ensuring backup coverage and contingency planning for critical work. Provides guidance to less senior staff through one-on-one mentoring, training sessions, and constructive feedback.
• Applies subject matter…