Sign In




Lead Analyst IT - NERC CIP ComplianceLead Analyst IT - NERC CIP ComplianceFalseFalse210385,<p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><strong>SUMMARY:</strong></p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"> </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">This role serves in a Lead Analyst capacity providing oversight, direction and technical reviews adhering to North American Electric Reliability Corporation (NERC) Standards supporting Configuration Management, Change Management, and Patch Management. </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"> </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><strong>PRIMARY PURPOSE OF POSITION</strong><br></p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">In this position the Lead Analyst serves as the primary contact in supporting North American Electric Reliability Corporation (NERC) Critical Infrastructure Protection (CIP) requirements and deliverables.   The core responsibilities focus on Change Management practices, adherence to Configuration Management execution and Security Patch discovery support. </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"> </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">The IT Lead Analyst manages daily Change Management and Configuration reviews supporting Business Unit Support IT areas in successfully maintaining compliance requirements. This role requires understanding of Change, Configuration and Patch Management best practices with technical experience with servers, network infrastructure and scripting solutions.    </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"> </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">This position will be responsible for performing change management review of business unit changes, validation of evidence for compliance, perform security patch discovery and project support. Other responsibilities include understanding of general business functions including Corrective Action programs, regulatory requirements (NERC CIP, SOX), provide support to other business groups and the IT Compliance Central organization as needed.   </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"> </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><strong>This role will report directly to the Compliance Operations Configuration IT Manager and may require limited travel to other Exelon locations. </strong> </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><strong> </strong></p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><strong> PRIMARY DUTIES AND ACCOUNTABILITIES</strong> </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"> </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">- Provide daily review of IT SCADA system changes ensure compliance requirements for change management are maintained with appropriate evidence validation. <br></p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">- Accountability as the Subject Matter Expert (SME) for NERC CIP Change requirements, reviewing and ensuring change and configuration guides are accurate, align to modifications and Exelon standards are enforced. </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"> </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">- Develop and maintain knowledge of NERC CIP standards and Exelon Management Model program supporting Change and Configuration Management. </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"> </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">- Provide technical support for regulatory and internal audits. Will be accountable for providing evidence, response to audit inquires and support to IT Compliance Central Organization. </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"> </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">- Manage multiple concurrent assignments with varying deliverables and dates. </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"> </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">- Support NERC CIP Compliance projects with analysis, design, build and test solutions in accordance NERC standards. </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"> </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">- Active participant in annual Cyber Security Incident response exercises supporting IT Compliance Operations</p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"> </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">- Assist and mentor individuals to build NERC CIP Compliance understanding and awareness</p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"> </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">- Actively build Information Technology, Business and Industry relationships gaining broader knowledge to support innovative solutions with NERC CIP. </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><strong> </strong></p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><strong>- Participate in Business Area Storm support as assigned</strong></p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><br>POSITION SCOPE</p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"> </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">The role of the Compliance Operations IT Lead Analyst is to support various business unit technical teams with successfully maintaining IT NERC CIP compliance standards for Change, Configuration and Patch management.   A successful candidate will be required to work independently and demonstrate compliance awareness with sound project management skills. This position requires maintaining a thorough knowledge of NERC CIP standards, Exelon compliance requirements and executing to industry best practices. Continued self-improvement will include maintaining compliance awareness through seminars, presentation and publications, enhancing the IT NERC CIP Compliance Organization by promoting technological innovations to drive improved process enabling consistent repeatable processes and executing to NERC CIP Standards as an industry leader. <br></p>