Effectively implements JEA's compliance program to meet and track processes to monitor the implementation of compliance activities and effectiveness of compliance evidence to ensure JEA meets regulatory requirements for NERC and FRCC Reliability Standards applicable to JEA. This position supports the development of reliability standards that preserve and enhance operating reliability of the Bulk Electric System. Identifies reliability standards that may have a business impact on JEA and effectively communicates with affected business units regarding impact on operations and business processes. Interfaces with regulator to complete compliance processes such as self-certifications, mitigation plans, regulatory requests, and recurring regulatory reviews etc. This position will also develop reporting for management to inform them of the status of JEA's monitoring activities, regulatory responses and other compliance activities. This person will facilitate the preparation for audits by assisting business units in meeting their obligations and investigations where required. This person will take lead roles on industry committees related to compliance as assigned.
Compliance Monitoring Processes -
- Develop and continuously improve JEA's Internal Compliance Program
- New and revised standards implementation Develop and implement a process for identifying new/revised standards and advise on the impact Standard will have on JEA for voting and comment and to ensure compliance with the standards prior to the mandatory enforcement date, determining whether there will be a significant effort needed to bring JEA into compliance. Work with Standard Owners to develop action plans. Final products must be reviewed for compliance with the standards prior to the mandatory enforcement date.
- Program Documents Develop and maintain compliance program documents such as internal technical procedures, process flow diagrams, etc.
- Internal Assessment Reviews Assist with the annual master review schedule and participate in internal reviews of evidence for Reliability Standards. Lead the development of the Internal Assessment Review Sheet by identifying the areas for improvement and to ensure for completion of evidence.
- Self-certifications Assist with the Self Certification and participate in internal reviews of evidence for Reliability Standards,
- Lead the development of the Internal Assessment Review Sheet by identifying the areas for improvement and to ensure for completion of evidence.
- On-Site Audit Assist with the On-Site Audit review of evidence for Reliability Standards. Lead the development of the Internal Assessment Review Sheet by identifying the areas for improvement and to ensure for completion of evidence.
- Alerts Notifications Acknowledge and provide responses to regulator alerts and notifications including determination that no action is needed must be documented. Action plans must be tracked to ensure completion according to the plan. Ensure all responses required by regulator are made in the required timeframe.
- ES-ISAC (Electric Sector Information Sharing and Analysis Center) Notifications procedure develop and implement a procedure to ensure that when notifications are received the appropriate JEA manager is assigned to determine whether any JEA action is required and assist as needed in the development of any action plans. Automate this process using available software where possible.
- Upon completion of FRCC auditor or consultant's recommendations Assist Standard Owners in developing action plans for implementing recommendations from regulators and consultants during audits or gap analyses.
- Implementation of mitigation/action plans Assist Standard Owners in the development and documentation of any mitigation plans developed as a result of a self-report or alleged violation and ensuring that all documentation is turned into the regulator on schedule. Submit mitigation plans to FRCC and serve as JEA's interface with the regulators for standard communications with respect to the mitigation plans.
- Assist in the investigation of potential non-compliance that have been identified, making a determination of compliance, needed action plans, and any other appropriate actions that result from the findings.
- Work with Standard Owners to develop strategies to improve JEA's processes to ensure compliance and documentation requirements are met.
Communications and Reporting -
- Foster a strong compliance culture through education and encouragement to management to participate in the NERC processes.
- Communicate compliance issues to Management; assist in the development of strategies to address these issues.
- Develop and implement communications strategies to improve JEA's employees understanding of regulatory obligations.
- Webpage develop compliance webpage content and deliver other corporate awareness educational materials and programs to inform employees of JEA's responsibilities under NERC and FERC.
- Metrics Assist in the development and ensure implementation of department metrics.
- Training Assist in the development of the Standards of Conduct and NERC training.
- Meetings- Assist in the preparation for and document compliance committee meetings.
Committees/Industry Participation
- Participate in industry compliance committees and teams as assigned.
- Standards Development participate in NERC Reliability Standard development and other activities at NERC
- Work with voters to determine whether to vote for or against new/revised standards and interpretations and document the rationale for these decisions.
- Work with Standard Owners as new standards are posted for comments and determine if they believe JEA should comment.
- Notify Standard Owners when new standards pass and determine whether the standard is sufficiently changed such that Electric Compliance needs to closely monitor the implementation of processes to bring JEA into compliance (See New Standards implementation above).
- Participate on Standard Development Teams at NERC to develop new/revised standards.
Qualifications - External
Education & Experience:
Bachelor's degree in engineering, business administration, computer systems, accounting or related field
AND
8 years professional experience in the field of Computer Systems, Cyber Security, or Compliance/Audits involving technology or systems, preferably in a utility environment.
OR
An equivalent combination of education, experience and/or training.
Preferred experience in the following specialties depending on the business needs:
- Electric utility operations
- Systems or other IT experience, with IT security experience a plus
- Transmission planning/Transmission operations
- Cyber security
- Electrical/Power engineering
- Generation operations
- Legal/regulatory experience, specifically with NERC/FERC auditing or quality control
- Auditing or quality control
- Compliance or trade control
- SOX or risk management
- SCADA, EMS, Transmission Mgmt System or Plant Control system
- NERC CIP Compliance
