Analyst, CIP Compliance
Luminant
- Irving, TX
- Permanent
- Full-time
- Demonstrate clear technical cybersecurity and program level familiarity with NERC CIP standards.
- Support and facilitates progress on all compliance related activities such as audits, self-certifications, mock-audits, that includes mitigation plan development and documentation of completion.
- Support and facilitate response to regulatory compliance monitoring activities such as audits, self-certifications, mock-audits, enforcement actions, compliance filings, data reporting and data request.
- Provide guidance and independent compliance oversight in developing, implementing, and executing project plans goals and timelines for implementation of internal controls.
- Support and collaborate with process owners and other staff to provide input and technical support in the development and execution of CIP related projects implementing new or modified CIP standards. This may include supporting the formation and creation of new or modified CIP standards.
- Lead and facilitate violation determination and issue management process. Apply technical CIP expertise in problem solving and producing recommendations and alternative solutions to remediate the violation and to support on-going compliance.
- Develop and assist in development and maintenance of documentation for CIP related programs, processes, and procedures.
- Perform other duties as assigned.
- Experience gained through college degree programs and or certifications in engineering, business, technology, or other related fields
- 3-5 years of experience with an understanding in one or more of the following: NERC CIP, ERCOT Protocols, ISO 27001, NIST 800-53, SOX, PCI, NACHA, NRC.
- Ability to manage multiple initiatives simultaneously in a dynamic, fast-paced environment
- Good reading comprehension and written communication skills
- Experience with Security or Compliance best practices
- Professional certification a plus (e.g., PPM, CISM, CISA, CISSP, PE)
- 100% - Meeting various regulatory reporting deadlines
- 100% - Meeting new or modified CIP standard implementation deadlines
- Meet or exceed compliance control deadlines