NERC Consultant, CIP

Position Summary:

This position is responsible for developing and implementing plans, schedules, procedures, tools, training, and processes required to establish and maintain a comprehensive NERC Compliance Program. Support the implementation of NERC Compliance Programs at Everline and external customers to ensure full compliance with all applicable NERC Reliability Standards. Collaborate and support other NERC Consultants in Operations & Planning (O&P), Critical Infrastructure Protection (CIP), and Project Management. Serve as a company resource and subject matter expert for O&P Standards compliance including FERC, NERC, and Regional Entities with regulations, orders, and statutes. Ensure that all contract requirements and customer needs are met or exceeded.

Major Duties and Responsibilities:

- Demonstrate in-depth understanding of applicable NERC CIP Standards. Specifically, expertise with CIP-002 and CIP-003, as well as CIP-004 through CIP-014

- Communicate applicable NERC compliance information, standards, and requirements in a clear, concise manner to the Subject Matter Experts (SME).

- Perform periodic internal compliance assessments and spot checks on applicable Standards.

- Monitor changes to new and existing CIP Standards and coordinate comments from internal SME team for commenting and balloting purposes.

- Assist the legal and project management teams in defining scopes of service for third-party contractors and reviewing proposed contract changes as they relate to NERC Standards.

- Participate in the evaluation of potential compliance concerns as the NERC compliance team member.

- Partner with the IT and OT team to identify and implement technologies to automate and streamline compliance monitoring and reporting processes.

- Apply understanding of NERC compliance monitoring and enforcement processes to provide recommendations and/or solutions to compliance issues.

- Act as a liaison between NERC Compliance and internal stakeholders on topics related to NERC Compliance.

- Participate in industry focus groups and conferences to share information and stay abreast of the ever-changing NERC compliance landscape.

- Lead response to regulatory compliance requests, enforcement actions, and data-reporting from a NERC CIP compliance perspective.

Knowledge, Skills, abilities and Other Personal Characteristics:

- Background knowledge of information technology, information security, operations technology and/or EMS operations.

- Experience with IT Audits, security controls, and/or internal controls.

- Strong leadership, interpersonal, problem-solving, and time-management skills.

- Excellent verbal and written communication skills.

- Agility in managing, prioritizing, and executing on multiple priorities depending on the needs of the business.

- Experience in monitoring a NERC compliance program.

- Highly motivated, self-starter willing to take on new challenges.

- Prior NERC CIP and GO/GOP compliance experience, including compliance monitoring, training, and audit support.

- Exceptional attention to detail with commitment to fostering a culture of compliance.

- Good project management skills.

- Working knowledge of Microsoft Word, Excel, PowerPoint, and SharePoint.

- Ability to apply one or more risk management frameworks is a plus.

Minimum Requirements:

- Bachelor's degree in computer science, Information Systems / Security, Computer or Systems Engineering, or related technical degree with 2 - 6 years of related NERC CIP experience resulting in demonstrated ability to perform the major duties required.

Desired but not Required:

- MBA or master’s degree in cybersecurity, risk management, or related discipline.

- Demonstrated abilities and success with managing the identification and addressing of client needs in the following areas: blend of technology solution development, functional architecture, and program management.

- Demonstrates extensive knowledge and/or a proven record of success in core management consulting skills and the ability to lead clients through solution development including experience in areas such as Application Development, System Implementation, Quality Assurance/Quality Control and Independent Verification and Validation (IV&V).

- Ability to keep leadership informed of progress and issues, and answering questions and offering directions to staff.

- Extensive program management, communication and presentation skills including the ability to liaise with technical and business teams and clearly articulate technology concepts to business audiences, in order to drive projects to completion.

- Additional certifications or credentials in related technologies, standards, methodologies, or frameworks (where applicable or available).

- Preference will be given to candidates who reside within a reasonable number of miles of an Everline Office.

Work Environment:

While performing the duties of this job, the employee will regularly work within an office environment and is required to sit and use hands to finger, handle, or feel. The employee is frequently required to reach with hands and arms and talk and listen. The employee is occasionally required to stand, walk, climb or balance and stoop, kneel, crouch, or crawl. The employee must regularly lift and /or move up to 10 pounds, frequently lift and/or move up to 25 pounds and occasionally lift and/or move up to 50 pounds. Specific vision abilities required by this job include close vision.

If located in Greater Houston area this person, will work a hybrid schedule of 3 days in our Cypresswood office location.

The noise level in the work environment is usually quiet.

If working remotely, the employee will be required to support video teleconferencing when applicable, as well as attend teleconference meetings originating in other time zones, which may occur outside normal working hours. The employee will interface with remote employees, requiring reliance on email and phone communications, as well as ability to maintain productivity while working autonomously.

Travel:

Domestic travel less than 10% of time

Employment is contingent upon a successful background check and drug screen.

Equal Opportunity Employer: E-Verify Employer

This document describes the current position. It is not an employment contract. Our Company reserves the right to modify Position duties or Position descriptions at its discretion