Compliance Analyst
Location: Hybrid - Rosemead, CA
Rate: $50/hr W2 | $60/hr C2C
Position Overview
The IT Compliance Analyst will support the utility’s compliance program to ensure adherence to NERC CIP (Critical Infrastructure Protection) standards and related regulatory requirements. This role is ideal for someone early in their compliance career who is detail-oriented, process-driven, and eager to learn compliance within both operational technology (OT) and information technology (IT) environments.
Working under the guidance of senior compliance and security staff, the analyst will help maintain documentation, track compliance tasks, and support audit readiness.
Key Responsibilities
- Assist in maintaining compliance with NERC CIP standards, policies, and procedures.
- Support the development, organization, and storage of compliance evidence and documentation.
- Track and report on compliance activities, deadlines, and periodic review schedules.
- Assist with internal audits, self-certifications, and regulatory reporting.
- Coordinate with IT and OT teams to gather necessary compliance data and records.
- Participate in change management reviews to ensure compliance considerations are addressed.
- Help maintain compliance tools, logs, and tracking systems.
- Support incident response and reporting processes as required by NERC CIP.
- Assist with training coordination and awareness activities for compliance-related topics.
Qualifications
- Associate degree in Information Technology, Cybersecurity, or related field (Bachelor’s preferred) OR equivalent work experience.
- Familiarity with IT systems, security concepts, and regulatory compliance principles.
- Strong attention to detail and ability to follow structured processes.
- Good organizational skills and ability to track multiple tasks and deadlines.
- Effective communication skills for working with technical and non-technical stakeholders.
- Basic knowledge of NERC CIP standards a plus.
Preferred Skills/Experience
- Exposure to utility, energy, or regulated industry environments.
- Experience with compliance documentation and audit preparation.
- Basic understanding of security frameworks (e.g., NIST, ISO 27001) and regulatory controls.
Work Environment
- Primarily office-based, with some interaction with technical teams in IT and OT environments.
- May involve occasional travel to utility facilities or substations.
