NERC CIP Compliance Analyst

Company: NovaSource Power
Location: Chandler
Posted on: May 13, 2022

Job Description:

About NovaSourceNovaSource Power Services is the new service partner for renewables asset owners ready to fuel smart growth. As a solar O&M-focused company with 20 years of operating experience, NovaSource has the global reach and strategic capabilities to achieve our clients' renewables goals around the world. Our turn-key services optimize each step of our clients' project lifecycles - from commissioning to decommissioning and everything in between. Our approach delivers success for our clients, stability for our teams, and enables us to build a world-class culture of excellence. And that's how we empower a renewable world.To serve our clients, we invest in our people. Upon hiring, we assess each employee's experience and expertise, then mentor them to grow engaging and satisfying careers. While NovaSource is headquartered in Phoenix, AZ and preference will be given to those in the area, this position can be based anywhere in the United States for experienced candidates. Summary of RoleNovaSource is hiring a NERC CIP Compliance Analyst who will be responsible for providing leadership, independent compliance oversight, guidance, and direction necessary to maintain ongoing compliance with the NERC Critical Infrastructure Protection (CIP) physical and cyber security framework for the protection of assets to support reliable operation of the Bulk Electric System. This position is a key member of the Legal and Compliance team within NovaSource.Key Responsibilities

• Technical Understanding
• Demonstrate in-depth understanding of applicable NERC CIP standards.
• Maintain a sound technical understanding of cybersecurity, network operations, and other related IT skillsets.
• Program Management
• Provide strategic direction and compliance oversight in developing, implementing, and evaluating project plans, goals, and timelines for the implementation of internal controls, physical security controls, and cyber security controls.
• Coordinate proactive development and updates to policies, plans, procedures, and recordkeeping of evidence with internal organizations to ensure compliance with NERC CIP requirements.
• Communicate applicable NERC CIP compliance information, standards, and requirements in a clear, concise manner.
• Monitor and report on NERC CIP compliance status to various stakeholders. This includes both summary compliance/risk reporting for the Executive Leadership Team as well as targeted, actionable reporting to other stakeholder groups.
• Internal Subject Matter Expert
• Assist the business development teams in defining scopes of service and reviewing proposed contract changes as they relate to NERC CIP.
• Develop and deliver NERC CIP compliance training for various audiences.
• Partner with the IT team to identify and implement technologies to automate and streamline compliance monitoring and reporting processes.
• Actively participate in the cyber security incident management process as a compliance SME.
• Apply understanding of NERC CIP along with other IT disciplines to provide recommendations and/or solutions to business/compliance issues.
• Participate in the evaluation of potential compliance concerns as the NERC CIP SME.
• Facilitate periodic, spot checks on applicable.
• External Subject Matter Expert
• Act as a liaison between NovaSource and our customers on topics related to NERC CIP.
• Participate in industry focus groups and conferences to share information and stay abreast of the ever-changing NERC CIP compliance landscape.
• Serve as the liaison between NovaSource and the regulatory bodies for NERC CIP compliance. This includes participating in the development of new standards, changes to existing standards, and the communication of changes to the impacted NovaSource teams.
• Lead response to regulatory compliance requests, enforcement actions, and data-reporting from a NERC CIP perspective.Skills
  • Agility in managing, prioritizing, and executing on multiple priorities depending on the needs of the business
  • Experience with physical security, network infrastructure, and security-related tools such as whitelisting, IDS/IPS, anti-malware, patch management, baselining, SIEM, access control, and firewalls
  • Understanding of grid operations
  • Self-motivated
  • Strong organizational skills
  • Ability to work independently with minimal day-to-day supervision and ability to collaborate with cross-functional leads and teams
  • Working knowledge of Microsoft Word, Excel, PowerPoint, and SharePoint
  • The ability to apply one or more risk management frameworks is a plusEducation
    • Bachelors' degree or higherExperience
      • Minimum of 5 years of related work experience
      • Minimum of 3 years of managing projects and/or people
      • Cyber security and/or networking background preferredPI177206666

Keywords: NovaSource Power, Chandler , NERC CIP Compliance Analyst, Professions , Chandler, Arizona