Job Description
Main responsibilities:
• Facilitate cross-department coordination of NERC CIP Standards: (20%)
o Collaboratively work on audit preparation and management of Reliability Standard Audit Worksheet (RSAW) development.
o Coordinate with applicable departments to ensure compliance with NERC CIP.
o Report of potential noncompliance in NERC Align system and the Secure Evidence Locker.
o Drafting self-reports and mitigation plans, as needed.
• Ensure the development of processes, workflows and evidence required for compliance to the CIP standards for which NERC CIP Assurance is accountable: (20%)
o Collaboratively work to ensure the development of processes, workflows and evidence required to meet the CIP Security Controls developed and implemented by the NERC CIP Assurance team.
o Collaboratively work with all other NERC CIP applicable business areas to develop processes, workflows and evidence necessary to achieve the NERC CIP compliance objectives.
o Provides input on process improvements to NERC CIP Compliance program.
o Identifies, resolves, and escalates, as needed, more complex program issues.
o Identify areas for improvement and take action to resolve.
• Build strong relationships with business partners and other stakeholders (NERC and Regional Entities). (20%)
• Establish positive team environment by proactively assisting and training less experienced personnel. (15%)
• Proactively engages in training and development programs to improve and maintain job performance and promote professional growth and development. (10%)
• Support other regulatory needs of the company (15%)
• Integrate and align information security and/or cybersecurity policies to ensure system analysis meets regulatory security requirements.
• Lead and align information technology (IT) security priorities with the security strategy.
• Interpret and apply laws, regulations, policies, standards, or procedures to specific issues.Collaborate with stakeholders to establish the enterprise continuity of operations program, strategy, and mission assurance.
• Interpret and apply applicable laws, statutes, and regulatory documents and integrate into policy.
• Define and implement policies and procedures to ensure protection of real time critical infrastructure and meet regulatory commitments.
• Assist in development, analysis, maintenance, and training of EDPR NA’s policies, procedures, standards, and other systematic preventive measures developed to ensure adherence with applicable compliance requirements and industry best practices.