Cyber Assessment Analyst

About The Position

Requirements

• Bachelor's Degree or equivalent work experience that provides knowledge and exposure to fundamental theories, principles, and concepts.
• 1-2 years of Compliance / IT experience in varying support functions
• Knowledge of trends, and best practices.
• Solid skills with computers, operating systems, and software (MS Office 365 suite of products) and ability to learn new technical concepts quickly.
• Analytical abilities, including process analysis and development, problem solving and root cause analysis.
• Strong desire to learn new things and take ownership of assigned tasks.
• Teaming skills, collaboration, negotiation, communication, organizational, people management and conflict resolution skills.
• Willing to travel to NiSource business unit or Service Provider locations, as needed.
• Willingness to become experienced with ITIL processes and metrics
• Willingness to participate in multiple process improvement initiatives
• Strong written and verbal communication
• Willingness to follow Project Management Fundamentals
• Willingness to participate delivery of technical projects
• Can work independently in multiple functional domains with minor assistance
• Solid understanding of NIST 800-53 v5 and NIST CSF Control sets.
• NiSource business operations knowledge
• Working knowledge of the gas and electric utility industry; additional experience a plus
• Information Technology Infrastructure Library (ITIL) V4 certification Upon Hire
• Authorized to work in the United States without requiring sponsorship.

Nice To Haves

• Experience using Archer GRC tool
• Demonstrated experience in Microsoft Suite
• Demonstrated experience in SharePoint
• Demonstrated experience in ServiceNow

Responsibilities

• Manage the development and implementation of the roadmaps for Cyber Assessments, Archer, and Fortress Control Assessments
• Support and execute the Cyber Assessment (CA) program, ensuring a methodology is used and communicated relative to when a CA is performed, risks are mitigated, results are communicated, and metrics are produced supporting the program
• Conduct independent cyber assessments and develop plans supporting the business, Cybersecurity, IT, Operational Technology, and the Innovation line of business ensuring Supply Chain processes are maintained, and reviews meet stated objectives, budgets, timelines, and reporting/readout requirements
• Serve as the Control Assessments analyst, contributing to the direction of the product, how to leverage the tool, and the ongoing process improvement/business benefit to NiSource
• Manage status of and facilitate audit/issues tracking and resolution for issues related to Cyber Assessments
• Advance the use and adoption of Archer to maintain and manage risk, compliance, policy monitoring and tracking, and additional use cases when deployed