NERC CIP Compliance Senior Technical Auditor

Salt Lake, UT - USA

Monthly Salary: Not Disclosed

Posted on: 30+ days ago

Vacancies: 1 Vacancy

Job Summary

Are you ready to be part of a company thats not just talking about the future but actively shaping it Join The AES Corporation (NYSE: AES) a Fortune 500 company thats leading the charge in the global energy revolution. With operations spanning 14 countries AES is committed to shaping a future through innovation and collaboration. Our dedication to innovation has earned us recognition as one of the Top Ten Best Workplaces for Innovators by Fast Company in 2022. And with our certification as a Great Place to Work you can be confident that youre joining a company that values its people just as much as its groundbreaking ideas.

AES is proudly ranked #1 globally in renewable energy sales to corporations and with $12.7B in revenues in 2023 we have the resources and expertise to make a significant impact as we provide electricity to 25 million customers worldwide. As the world moves towards a net-zero future AES is committed to meeting the Paris Agreements goals by 2050. Our innovative solutions such as 24/7 carbon-free energy for data centers are setting the pace for rapid global decarbonization.

If youre ready to be part of a company thats not just adapting to change but driving it AES is the place for you. Were not just building a cleaner more sustainable future - were powering it. Apply now and energize your career with a true leader in the global energy transformation.

Qualifications:

AES Clean Energy is seeking a highly technical NERC CIP Compliance Senior Technical Auditor to provide leadership independent oversight and expert guidance in maintaining continuous compliance with the NERC CIP Standards that support the reliable operation of the Bulk Electric System. This role requires a strong technical foundation in cybersecurity operational technology and control system environments along with the ability to perform detailed technical assessments validate complex security controls and interpret technical evidence with precision. As a key member of the Compliance team this position plays a critical role in driving a robust technically sound culture of NERC CIP compliance across the environments along with the ability to perform detailed technical assessments validate complex security controls and interpret technical evidence with precision. As a key member of the Compliance team this position plays a critical role in driving a robust technically sound culture of NERC CIP compliance across the organization.

Primary Duties and Responsibilities

Demonstrate deep expertise in applicable NERC CIP Standards (CIP002 through CIP014).
Maintain strong technical knowledge of NERC compliance monitoring and enforcement processes.
Clearly and concisely communicate NERC compliance requirements standards and expectations to Subject Matter Experts (SMEs).
Conduct periodic internal compliance assessments and spot checks to verify adherence to applicable Standards.
Monitor updates to new and existing CIP Standards and coordinate comments from internal SMEs for industry commenting and balloting activities.
Support legal and project management teams by defining scopes of service for third-party contractors and reviewing contract changes for alignment with NERC contractors and reviewing contract changes for alignment with NERC Standards.
Participate in evaluating potential compliance concerns as a member of the NERC compliance team.
Collaborate with IT and OT teams to identify recommend and implement technologies that automate and streamline compliance monitoring and reporting processes.
Apply knowledge of NERC monitoring and enforcement processes to develop solutions and recommendations for compliance issues.
Serve as a liaison between NERC Compliance and internal stakeholders on all compliance related matters. Related matters.
Engage in industry focus groups and conferences to remain informed about evolving NERC compliance expectations and best practices.
Lead responses to regulatory requests enforcement actions and data reporting obligations from a NERC CIP perspective reporting obligations from a NERC CIP perspectivereporting obligations from a NERC CIP perspective.

Skills and Experience

Bachelors degree in Computer Science Information Systems/Security Computer or Systems Engineering or a related technical field with 6-10 years of NERC CIP experience demonstrating ability to perform required responsibilities.
Foundational knowledge of information technology cybersecurity operations technology networking systems and/or EMS operations.
Experience participating in IT audits and implementing or overseeing security and internal controls.
Strong leadership interpersonal analytical and time management skills.
Proven ability to work effectively and lead across multiple organizations and stakeholder groups.
Experience with Industrial Control Systems (ICS).
Excellent verbal and written communication skills.
Ability to manage prioritize and execute multiple priorities and projects in a dynamic environment.
Experience performing internal spot checks and compliance assessments.
Handson experience supporting or monitoring a NERC CIP compliance program.
Highly motivated self-starter with a strong desire to take on new with a strong desire to take on new challenges.
Previous CIP and GO/GOP/TO/TOP compliance experience including monitoring training and audit support.
Exceptional attention to detail and commitment to fostering a culture of compliance.
Strong project management capabilities.
Proficiency with Microsoft Word Excel PowerPoint and SharePoint.
Ability to apply one or more risk management frameworks (preferred but not required).management frameworks (preferred but not required).
Optional but beneficial certifications: CISA CIA Security.

AES is an Equal Opportunity Employer who is committed to building strength and delivering long-term sustainability through diversity and inclusion. Respecting all backgrounds differences and perspectives enables us to improve the lives of our people customers suppliers contractors and the communities in which we live and work. All qualified applicants will receive consideration for employment without regard to sex sexual orientation gender gender identity and/or expression race national origin ethnicity age religion marital status physical or mental disability pregnancy childbirth or related medical condition military or veteran status or any other characteristic protected under applicable law. E-Verify Notice: AES will provide the Social Security Administration (SSA) and if necessary the Department of Homeland Security (DHS) with information from each new employees I-9 to confirm work authorization.

The expected salary for this position at commencement of employment is between $100000 and $124950/Annual; however base pay offered may vary depending on multiple individualized factors including market location job-related knowledge skills and experience. The total compensation package for this position may also include other elements such as annual bonus in addition to a full range of medical dental vision life financial and/or other benefits (including 401(k) eligibility and various paid time off benefits such as vacation sick time and parental leave) dependent on the position offered. Details of participation in these benefit plans will be provided if a candidate receives an offer of employment. If hired employee will be in an at-will position and the Company reserves the right to modify base salary (as well as any other discretionary payment or compensation program) at any time including for reasons related to individual performance Company or individual department/team performance and market factors.

Required Experience:

Senior IC

Are you ready to be part of a company thats not just talking about the future but actively shaping it Join The AES Corporation (NYSE: AES) a Fortune 500 company thats leading the charge in the global energy revolution. With operations spanning 14 countries AES is committed to shaping a future throug...

Qualifications:

Primary Duties and Responsibilities

Demonstrate deep expertise in applicable NERC CIP Standards (CIP002 through CIP014).
Maintain strong technical knowledge of NERC compliance monitoring and enforcement processes.
Clearly and concisely communicate NERC compliance requirements standards and expectations to Subject Matter Experts (SMEs).
Conduct periodic internal compliance assessments and spot checks to verify adherence to applicable Standards.
Monitor updates to new and existing CIP Standards and coordinate comments from internal SMEs for industry commenting and balloting activities.
Support legal and project management teams by defining scopes of service for third-party contractors and reviewing contract changes for alignment with NERC contractors and reviewing contract changes for alignment with NERC Standards.
Participate in evaluating potential compliance concerns as a member of the NERC compliance team.
Collaborate with IT and OT teams to identify recommend and implement technologies that automate and streamline compliance monitoring and reporting processes.
Apply knowledge of NERC monitoring and enforcement processes to develop solutions and recommendations for compliance issues.
Serve as a liaison between NERC Compliance and internal stakeholders on all compliance related matters. Related matters.
Engage in industry focus groups and conferences to remain informed about evolving NERC compliance expectations and best practices.
Lead responses to regulatory requests enforcement actions and data reporting obligations from a NERC CIP perspective reporting obligations from a NERC CIP perspectivereporting obligations from a NERC CIP perspective.

Skills and Experience

Bachelors degree in Computer Science Information Systems/Security Computer or Systems Engineering or a related technical field with 6-10 years of NERC CIP experience demonstrating ability to perform required responsibilities.
Foundational knowledge of information technology cybersecurity operations technology networking systems and/or EMS operations.
Experience participating in IT audits and implementing or overseeing security and internal controls.
Strong leadership interpersonal analytical and time management skills.
Proven ability to work effectively and lead across multiple organizations and stakeholder groups.
Experience with Industrial Control Systems (ICS).
Excellent verbal and written communication skills.
Ability to manage prioritize and execute multiple priorities and projects in a dynamic environment.
Experience performing internal spot checks and compliance assessments.
Handson experience supporting or monitoring a NERC CIP compliance program.
Highly motivated self-starter with a strong desire to take on new with a strong desire to take on new challenges.
Previous CIP and GO/GOP/TO/TOP compliance experience including monitoring training and audit support.
Exceptional attention to detail and commitment to fostering a culture of compliance.
Strong project management capabilities.
Proficiency with Microsoft Word Excel PowerPoint and SharePoint.
Ability to apply one or more risk management frameworks (preferred but not required).management frameworks (preferred but not required).
Optional but beneficial certifications: CISA CIA Security.