Sign In




NERC CIP Compliance - Lead Analyst ITNERC CIP Compliance - Lead Analyst ITGP0|#036d7cad-49e3-4a98-8821-efa704301d6d L0|#0036d7cad-49e3-4a98-8821-efa704301d6d|Exelon Generation GTSet|#bb697efb-4d63-4298-b4d0-ab279caf3fe8GP0|#6e1a6428-87bf-4ba0-b377-3c17f62a8aa6 L0|#06e1a6428-87bf-4ba0-b377-3c17f62a8aa6|Exelon Generation headquarters in Kennett Square GTSet|#e70f62ad-35ba-4371-ba87-92cfd51534bf GPP|#1b639f21-edff-47d9-a4b6-513f021f4bbcFalseFalseGP0|#089e501d-5d0b-4246-ad39-00ba6625c901 L0|#0089e501d-5d0b-4246-ad39-00ba6625c901|Information Technology GTSet|#7712b39a-721e-4406-b3c9-bfbaaf3b9a98206834,<p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">PRIMARY PURPOSE OF POSITION<br></p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">The Critical Infrastructure Protection (CIP) Lead Analyst is responsible for developing and implementing programs to evaluate the regional entity�s adherence to the North American Electric Reliability Corporation (NERC) CIP Rules of Procedure, Compliance Monitoring and Enforcement Program, specifically as it pertains to the CIP security standards.   CIP Standards provide cyber security framework for protection of computer systems supporting reliable operation of Bulk Electric System.   CIP Lead Analyst will provide direction to a small team and oversee execution of small projects.   This position reports to the manager of Compliance Operations.   Compliance Operations is a central Exelon organization which promotes collaboration, shared learning, and the identification of best practices in support of the Exelon NERC CIP program. The position will interface with stakeholders supporting NERC CIP program across Exelon, including various IT organizations, transmission and generation business organizations and associated compliance teams and legal. </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"> </p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;"> PRIMARY DUTIES AND ACCOUNTABILITIES <br></p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">- Provide compliance guidance and direction to the CIP compliance staff. <br></p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">- Develop and implement oversight programs to evaluate the regional entity�s adherence to the NERC Rules of Procedure and Compliance Monitoring and Enforcement Program. <br></p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">- Develop and maintain consistency in compliance documents. Compile, edit & finalize completed audit documents for annual Self-Assessment and Regulatory Submissions. Participate in regional entity CIP compliance program audits.   <br></p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">- Develop detailed material, information and tools to improve consistency in CIP program and compliance monitoring. <br></p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">- Perform quality assurance of evidence and provide support to compliance investigations. <br></p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">- Provide technical expertise in support of IT teams and transmission and generation Operations Technology teams performing NERC CIP compliance activities. Execute and provide support for compliance activities (Security Patch Management, Vulnerability Assessment, and Change Management, Malicious Code Prevention, Recovery Drill Support, etc �)<br></p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">- Assist in the ongoing development and improvement of NERC compliance monitoring and enforcement program policies, procedures, rules, etc. <br></p><br><p style="MARGIN-BOTTOM:0px;MARGIN-TOP:0px;">- Develop recommendations to improve the regional compliance program process. </p>