Position Description
Administers and supports NERC Critical Infrastructure Protection (CIP) compliance with respect to programmable electronic devices in Transmission substations. Primary work includes: understanding CIP standards and keeping policies up to date with pending changes; maintaining storage of accurate and updated compliance data for existing stations; supporting and participating in the CIP-related work for new installations; and being a liaison between Transmission Technical and Technology Services (TS) for that group's role in supporting compliance. This position also conducts CIP-related meetings, including training for new employees. The incumbent will be a part of helping to develop and implement compliance strategies for changing equipment and technologies, as well as new and changing CIP requirements. Duties may involve working with other Transmission personnel (beyond this department) who access equipment as appropriate. At this experience level, some guidance/direction is expected from other senior staff (technical experts and compliance specialists), along with collaboration with other Transmission Technical personnel. At higher experience levels additional leadership roles are expected.
Essential Job Tasks:
Administers CIP policies for Transmission substations.
Coordinates with the Santee Cooper compliance group and CIP specialists in other areas of Santee Cooper.
Investigates new and changing CIP standards and discusses impact with other Subject Matter Experts.
Formulates opinions concerning impact and discusses with others in order to maintain compliance.
Schedules and conducts any Transmission Technical CIP meetings, as needed, and ensures meetings and results are documented.
Coordinates with Technology Services for the support of PCs used for CIP compliance (hardware and software) and tracks other equipment as need.
Reviews reports from Technology Services for compliance functions performed by TS, such as Transient malware/antivirus prevention and software management and resolves issues with Transmission Technical.
Works with TS as needed to resolve any process issues or changes.
Performs other monthly reviews as required by CIP standards, such as patch management tasks.
Administers the yearly Cybersecurity Vulnerability Assessments for Medium Impact sites.
Works with other Transmission Technical staff to conduct annual review of Low Impact site information and documents results.
Manages change forms throughout the year at Medium Impact sites as substation equipment is changed out due to failures, upgrades, or additions.
Ensures inventories are updated with changes provided by field personnel.
Functions as a primary Subject Matter Expert during CIP audits and Mock Audits.
Prepares documentation and answers questions and requests as needed.
Tracks electronic access requests for transmission substations at Medium Impact sites.
Provides CIP training to new employees in Transmission Technical and other CIP training to existing employees as warranted.
Provides assistance to other staff to support Transmission Technical information technology needs, when these needs border on present or future CIP compliance.
Participates in corporate CIP meetings, including lead team meetings and any other focus meetings that are improved by Transmission Technical participation.
Position Requirements
This position may be eligible for hybrid (remote and in person arrangement).
Will consider Compliance Specialist I, II or III.
Compliance Specialist II
Bachelor's Degree in Computer science or engineering (electrical or computer engineering preferred), + 2 years experience in network, cyber security, or electrical engineering disciplines.
Knowledge of the NERC Critical Infrastructure Protection Standards and/or other compliance is preferred.
A professional understanding of cybersecurity of workstations, servers, backup systems, switches, routers, and firewalls is desired.
Compensation Information:
$75,600 - $94,490 (min. - mid.)
Compliance Specialist III
Bachelor's Degree in Computer science or engineering (electrical or computer engineering preferred), + 5 years experience in network, cyber security, or electrical engineering disciplines.
Knowledge of the NERC Critical Infrastructure Protection Standards and/or other compliance is preferred.
A professional understanding of cybersecurity of workstations, servers, backup systems, switches, routers, and firewalls is desired.
Compensation Information:
$93,960 - $117,450 (min. - mid.)
Compliance Specialist I
Bachelor's Degree in Computer science or engineering (electrical or computer engineering preferred).
Knowledge of the NERC Critical Infrastructure Protection Standards and/or other compliance is preferred.
A professional understanding of cybersecurity of workstations, servers, backup systems, switches, routers, and firewalls is desired.
Compensation Information:
$60,820 - $76,020 (min. - mid.)
We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class.