IT Security Compliance Analyst (NERC CIP)

IT Security Compliance Analyst (NERC CIP) - Hybrid in Scottsdale, AZ

Optomi, in partnership with a leader in the energy space, is looking to add a Security Analyst over IT Compliance! The Security Compliance Analyst will manage and audit a NERC CIP Compliance program. They will also oversee the governance framework (policies and procedures), risk register, and cybersecurity training programs. Responsibilities include monitoring compliance deadlines, creating and updating IT and OT policies, and participating in audits.

Responsibilities:

• Manage and monitor the NERC CIP Compliance program governance and execution
• Create, update, and adapt the IT Governance Framework
• Plan, implement, and audit IT and OT policies, procedures, standards, and baselines
• Participate in audits, including preparation, evidence gathering, and mitigation of findings
• Present policies and procedures to stakeholders
• Track and meet compliance deadlines for governance reviews

Must Have Skills:

• 4 years of experience with NERC CIP Compliance program management and execution
• 4 years of experience in an IT Governance Analyst role
• 4 years of experience with Governance, Risk, & Compliance programs
• 4 years of experience writing policies, procedures, standards, & baselines
• 4-year degree in IT, Engineering, History, or Writing; or comparable work experience
• Strong interpersonal and communication skills
• Ability to manage simultaneous projects and exercise independent judgment
• Experience with Firewalls, Servers, Office 365 Security, and Endpoint Security
• Experience with IDS/IPS, SIEM, Identity Management, and network monitoring solutions

Preferred Skills:

• Experience working in a SOC
• Experience with Penetration Testing, Red and Blue teaming
• Security and/or network certifications
• Great awareness of cybersecurity trends and hacking techniques