Lead Analyst IT - NERC CIP Compliance
[ Back ] [ The Roadtechs Computer / Telecom Job Board ] [ Help ] [Edit ] [Mark Position Closed ]
DescriptionPRIMARY PURPOSE OF POSITION:This NERC CIP Lead Analyst IT position reports to a manager in the IT NERC CIP Compliance team and has supervisor responsibilities.This successful candidate is required to lead and supervise a small team of individuals who are primarily focused on regularly maintaining solid evidence of compliance to the NERC CIP standards and requirements for the environments and cyber assets owned, operated and maintained by the support teams on behalf of Exelon registered entities.This position is responsible for execution, tracking and regular reporting of status of team assignments and personal assignments.You will also be required to create and update metrics, procedures and presentations.A critical part of this role requires constant collaboration with multiple teams across the enterprise to maintain and enhance the enterprise security and compliance programs.Assist in the training and development of less experienced team members.PRIMARY DUTIES AND ACCOUNTABILITIES:Lead a NERC CIP compliance team of five to seven individuals across multiple regions (Baltimore, Philadelphia and Chicago).Assist manager in assigning and tracking NERC CIP compliance and security tasks and small projects.Drive execution of tasks and delivery of solutions within expected timeframe while providing regular updates to manager.Troubleshoot and solve technical and non-technical issues with a focus on continuous process improvement.Represent the Cloud and Infrastructure Operations compliance team in meetings both internal and external to the company.Track, enforce and execute recurring NERC CIP compliance and Exelon security tasks as required in relation to;- Cyber Asset Inventory Management,- Access Control & Management (Physical, Electronic and Information)- Change Control and Configuration Management- Cyber Vulnerability Assessments- Systems Security Management (Baseline Configuration, Ports & Services, Patching, Malware Prevention, Account Management, Cyber Asset Disposal/Redeployment)- Incident Response Planning (Collaborate with IT security)- Recovery Plans, Exercises , Backup and Restore- Transient Cyber Assets
QualificationsPOSITION SPECIFICATIONSMinimum:- Bachelors degree in Computer Science or related discipline and typically 5 to 8 years relevant experience.- Experience in some or all of the technologies involved (Cisco, Checkpoint, Microsoft, Linux, and other Networking Technologies).- Strong knowledge of NERC CIP compliance practices and security processes (Cyber Asset Inventory, Visio Network Drawings, Access Management, Account Management, Remote Access, Intrusion Detection, Logging, Monitoring & Alerting, Security Patch Management, Change Control & Configuration Monitoring, etc.).- Experience leading small IT projects or sub-teams and knowledge of IT project management.- Strong problem solving and analysis ability.- Excellent communications skills (written and verbal)- Ability to work with remote teams- Utilizes understanding of customers business needs to determine requirements- Applies technical expertise to plan, design, build or support required products and processes- Helps other team members learn appropriate theories, practices and principles that relate to their skill set portfolio- As assigned, manage budget for area of responsibility- Expected to work under minimal supervision
---Exelon is proud to be an equal opportunity employer and employees or applicants will receive consideration for employment without regard to: age, color, disability, gender, national origin, race, religion, sexual orientation, gender identity, protected veteran status, or any other classification protected by federal, state, or local law.VEVRAA Federal ContractorEEO is the Law Poster
Thinking about applying for this position?
Please make sure that you meet the minimum requirements indicated for the job before you apply (see user agreement). If you are qualified, then use either the email link (near top of post) or the application link (near bottom of post) to apply, whichever is provided.