NERC CIP Security Compliance Analyst

About The Position

Requirements

• Experience with Firewalls (functionality and maintenance), Servers & Applications, Office 365 Security, and Endpoint Security
• Experience with IDS/IPS, SIEM, Identity Management services, network monitoring solutions
• Experience with implementing zero trust solutions at enterprise scale and hardening solutions
• Experience working in a SOC is a plus
• Experience with Penetration Testing, Red and Blue teaming experience is a plus
• Strong interpersonal and communication skills with ability to successfully communicate in all situations with internal and external stakeholders
• Ability to work on a team or independently as needed
• Ability to manage simultaneous projects/work streams, set priorities, and exercise independent judgment
• Ability to assess, diagnose, and enhance security and networking technologies for both simple and complex networks
• Strong attention to detail with an analytical mind and outstanding problem-solving skills
• Great awareness of cybersecurity trends and hacking techniques
• Create and update documentation on all areas of expertise
• 4+ years of experience with NERC CIP Compliance program management and execution
• 4+ years of experience in an IT Governance Analyst role
• 4+ years of experience with Governance, Risk, & Compliance programs
• 4+ years of experience writing policies, procedures, standards, & baselines
• 4-year degree in IT, Engineering, History, or Writing; or comparable work experience. High school diploma minimally required.

Nice To Haves

• Security and/or network certification(s) are a plus

Responsibilities

• Managing and monitoring the NERC CIP Compliance program governance and execution
• Responsibility for creating, updating, maintaining, & adapting the client's IT Governance Framework
• Planning, implementing, managing, & auditing IT & OT Policies, Procedures, Standards, & Baselines in accordance with the IT Governance Framework
• Daily/weekly/monthly/annual administrative tasks, reporting, and communication with the relevant departments in the organization based on compliance requirements
• Participating in audits; preparation, evidence gathering, documentation, audit session participation, and audit finding mitigations
• Presenting policies & procedures to appropriate stakeholders
• Keeping track of and meeting audit and compliance deadlines for governance reviews

Benefits

• Medical, dental & vision
• Critical Illness, Accident, and Hospital
• 401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available
• Life Insurance (Voluntary Life & AD&D for the employee and dependents)
• Short and long-term disability
• Health Spending Account (HSA)
• Transportation benefits
• Employee Assistance Program
• Time Off/Leave (PTO, Vacation or Sick Leave)