Sign In

 

 

 

Lead Analyst IT - NERC CIP ComplianceLead Analyst IT - NERC CIP ComplianceFalseFalse211783https://exeloncorp.taleo.net/careersection/exelon_external/jobdetail.ftl?job=211783, https://exeloncorp.taleo.net/careersection/exelon_external/jobdetail.ftl?job=211783<p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><br>At Exelon, we've got a place for you! </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><br>Join the nation's leading competitive energy provider, with one of the largest electricity generation portfolios and retail customer bases in the country. You will be part of a family of companies that strives for the highest standards of power generation, competitive energy sales, and energy delivery. Our team of outstanding professionals is focused on performance, thought leadership, innovation, and the power of ideas that come from a diverse and inclusive workforce. </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><br>Exelon will provide you the tools and resources you need to design, build and enhance a successful career. We are also dedicated to motivating the success of our employees through competitive base salary, incentives, and health and retirement benefits. </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><br>Join Exelon and share your passion at a forward-thinking Fortune 100 company. Establish yourself in a place where you can truly shine and create a brighter, more sustainable tomorrow. Energize your career at Exelon!</p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"> </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">PRIMARY PURPOSE OF POSITION </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><br>This NERC CIP Lead Analyst IT position reports to a manager in the Cloud and Infrastructure (C&I) Operations NERC CIP compliance team. <br>This successful candidate is required to lead a small team of individuals who are primarily focused on regularly maintaining solid evidence of compliance to the NERC CIP standards and requirements for the environments and cyber assets owned, operated and maintained by the C&I teams on behalf of the Exelon entities. </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><br>This position is responsible for execution, tracking and regular reporting of status of personal assignments as well as those of the team. <br>You will also be required to create and update metrics, procedures and presentations. </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><br>A critical part of this role requires constant collaboration with multiple teams across the enterprise to maintain and enhance the enterprise security and compliance programs. </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><br>Assist in the training and development of less experienced team members. </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"> </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><br> PRIMARY DUTIES AND ACCOUNTABILITIES </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"> </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">Lead a NERC CIP compliance team of five to seven individuals across multiple regions (Baltimore, Philadelphia and Chicago). </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><br>Assist manager in assigning and tracking NERC CIP compliance and security tasks and small projects. </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><br>Drive execution of tasks and delivery of solutions within expected timeframe while providing regular updates to manager. </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><br>Troubleshoot and solve technical and non-technical issues with a focus on continuous process improvement. </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><br>Represent the Cloud and Infrastructure Operations compliance team in meetings both internal and external to the company. </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><br>Track, enforce and execute recurring NERC CIP compliance and Exelon security tasks as required in relation to; </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><br>- Cyber Asset Inventory Management, </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><br>- Access Control & Management (Physical, Electronic and Information)</p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><br>- Change Control and Configuration Management</p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><br>- Cyber Vulnerability Assessments </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><br>- Systems Security Management (Baseline Configuration, Ports & Services, Patching, Malware Prevention, Account Management, Cyber Asset Disposal/Redeployment)</p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><br>- Incident Response Planning (Collaborate with IT security)</p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><br>- Recovery Plans, Exercises, Backup and Restore</p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"><br>- Transient Cyber Assets</p>