- Utilize IT and Cybersecurity policy, standards, processes, controls, tools, and research capabilities
- Facilitate Extent of Condition (EOC) analysis by liaising with Security Compliance and coordinating with ETSCE sub-teams
- Identify and improve processes to meet regulatory compliance requirements
- Correlate compliance data to identify vulnerabilities and make recommendations for remediation
- Identify and implement automation opportunities
- Collaborate with stakeholders to generate evidence demonstrating compliance with NERC CIP, TSA, and SOX programs
- Provide internal consulting to ensure business area personnel understand and implement compliance requirements
- Create and maintain work management dashboards and update ETSCE newsletter and team communications
- Provide support to sub-teams during work cycle peaks for compliance programs
- Bachelor's degree in Business, Computer Science, or related discipline
- Minimum of two (2) years of related work experience
- Strong critical thinking and communication skills
- Experience with cause analysis, extent of condition analysis, and mitigation/corrective action plans
- Experience validating organizations against policies, guidelines, procedures, regulations, and laws
- Proficiency with Microsoft Office (Outlook, Word, Excel, PowerPoint)
- Direct experience with NERC CIP, TSA, and/or SOX compliance programs
- Experience participating in governance processes to address security and compliance risks
- Proficiency with JIRA, Power BI, and Visio
Compliance Specialist - Charlotte, United States - Eliassen Group
Description
**This is a hybrid position, requiring 2-3 days in-office presence.**
A leading American electric power and natural gas holding company, committed to fostering a future marked by clean energy, stability, and dependability for our organization, company, and the communities we serve. Within it's IT organization, the Enterprise Technology & Security Compliance Enablement (ETSCE) team plays a crucial role in supporting compliance, information technology, security, and tool initiatives.
Seeking a Compliance Specialist to join the ETSCE team and support the IT503 Compliance Program based on the North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) standards. The ideal candidate will bring expertise in risk or compliance program experience, including exposure to cause analysis, extent of condition analysis, and mitigation/corrective action plans.
Responsibilities:
Basic/Required Qualifications:
Desired Qualifications: