Overview:
We are seeking a knowledgeable and proactive NERC CIP Compliance Consultant to support Program Owners in driving a culture of compliance and ensuring the effective implementation of NERC CIP standards across IT-owned assets. This role is critical in maintaining continuous compliance, supporting audit readiness, and enhancing program maturity through strategic process improvements and stakeholder collaboration.
Key Responsibilities:
• Assist in the implementation and sustainment of IT-owned CIP requirements.
• Support internal readiness assessments and mock audits in collaboration with the NCO.
• Help define and refine control objectives, metrics, and escalation protocols.
• Contribute to the development and maintenance of compliance documentation and evidence.
• Identify and resolve systemic compliance gaps and support mitigation planning.
• Collaborate with stakeholders to develop and track roadmaps for PNC mitigations.
• Coordinate with the NERC Training Office to develop training content and ensure SME availability.
• Monitor program execution, metrics, and control effectiveness via dashboards and reports.
• Support process design, enhancement, and alignment with evolving NERC standards.
• Provide insights on new or changing standards and their cross-standard impacts.
• Participate in settlement agreement activities and ensure compliance obligations are met.
Qualifications:
• Proven experience with NERC CIP standards and compliance programs.
• Strong understanding of IT systems and cybersecurity controls in regulated environments.
• Experience supporting audits, developing compliance documentation, and managing evidence.
• Excellent communication and stakeholder engagement skills.
• Ability to analyze complex regulatory requirements and translate them into actionable processes.
