GRC Compliance Analyst

Job Summary

This position is a direct report to the Technology Group Product Manager. The NERC Compliance Specialist is responsible for ensuring compliance with NERC CIP (Critical Infrastructure Protection) and other regulations related to IT systems and processes. Documents compliance status validates NERC scope against developed policies and procedures objectives and determines strategy for tracking operational compliance activities goals including: gathering current state and periodic audit readiness and working closely with technology functions to ensure goals are met for which the Information Technology department supports compliance.

Job Responsibilities

Responsibilities include:
Own NERC compliance and serve as a functional expert with a deep understanding of compliance needs on CIP capabilities by developing managing and administration of the lifecycle of IT policies processes and procedures and awareness training impacting NERC CIP compliance.
Own and develop day to day relationship with SMEs working with them to optimize and enhance compliance as well as establish a deep understanding of our NERC CIP needs.
Provide compliance expertise in regards to NERC CIP needs and processes; developing managing and administration of the lifecycle of IT policies processes and procedures and awareness training impacting NERC CIP compliance.
Align and support with strategic direction of broader IT organization. Collaborate with Enterprise Compliance and Risk needs to identify and manage NERC CIP requirements for which IT is accountable or responsible and monitor and report compliance.
Facilitate and coordinate NERC CIP audit preparation plans calendars and remediation and ensure IT support for PSEG LI internal & external audits
Manage activities and documentation completion for compliance for selfcertifications data submissions and event reporting.
Manage remediation: Track report and ensure remediation of negative findings found by compliance operation team selfassessment IT assurance quality control or audits.
Assist in recommendations design and implementation of future automated systems procedures and methods required for maintaining and streamlining NERC CIP compliance.
Provide specific contributions as directed by Product Manager.

Job Specific Qualifications

Required Qualifications:
Bachelors degree in Information Technology Computer Science Computer Engineering Math or related technical field with a minimum of 4 years of relevant experience within the information technology field
4 or more years of experience in governance compliance auditing activities
Demonstrated knowledge of Information Technology principles including infrastructure support system administration security operations and application management
Demonstrated ability to lead and influence a diverse team of senior leadership
Strong demonstrated verbal and written communication skills including presentation of data to support causal analysis and improvement
Demonstrated ability to build relationships and effectively interact with a wide range of people peers vendors and all levels of leadership
Demonstrated ability to proactively communicate technical topics in a clear succinct and relevant way
Demonstrated ability to perform assigned work proficiently
Demonstrated ability to effectively interact with external constituent groups and customers
Proficiency in use of Microsoft Word Excel Outlook and PowerPoint

Desired Qualifications:
Working knowledge of NERC CIP standards and requirements
Advanced degree e.g. Masters of Information Technology
Previous experience working with an Electric Utility organization.
Ability to meet aggressive work project schedules
Strong leadership and influence skills. Ability to work through issues independently with successful outcomes
Experience in IT services assets and operations.
Excellent teamwork facilitation relationship building and negotiation skills

Minimum Years of Experience

Education