IT Network Security Lead (NERC)

EDP Renewables is a global leader in the renewable energy sector and currently operates in more than 25 markets. With eight offices and several sites, at EDP Renewables North America, we are experienced developers and operators of renewable energy. Our portfolio includes wind farms, solar parks, energy storage projects, and green hydrogen solutions throughout the continent. We are ranked among the top 5 in the U.S. in operational renewable energy capacity.

Our company is part of EDP, a global energy group present in around 30 markets with a particular emphasis on renewable energies. With more than 45 years of experience, we have been consolidating a relevant presence on the world energy scene based on the commitment to be all-green by 2030, leading the energy transition. With more than 13,000 employees around the world, we are committed to using our energy and heart to drive a better tomorrow.

What you will do

Role Overview :

The NA IT NERC Security Lead will work as part of the IT Team to develop, implement, and maintain the security posture of both the corporate infrastructure and technical networks including networks that must maintain compliance with NERC CIP Standards. This is a role that will require in depth knowledge centered on Anti-Virus / Anti-Malware management, firewall rule design, IPS / IDS, web-filtering, SEIM logging, and security event alerting. This role will work with other security team members to execute vulnerability assessments, DR planning, pen-testing, and other scheduled activities that support the review of policies, procedures, and practices. The Security Engineer will assist in the further enhancement and design of critical network security posture and support the development of new architecture to meet upcoming CIP standards.

Main responsibilities :

• Promote the reliability of EDPR Systems through rigorous compliance with applicable NERC standards monitoring and enforcement activities and functions as a team member for internal and external audit preparation
• Ensure relevant, valid, reliable, stacking, and sufficient evidence is available to demonstrate compliance
• Ensure effective regulatory compliance to the North American Reliability Corporation (NERC) Critical Infrastructure Protection (CIP) Standards by providing hands on to support and enhance operational business unit’s risk management, Cyber, Information, Physical and Personnel Security programs
• Work and support the compliance and regulation team
• Maintain and revise security / compliance systems infrastructure including the administration and maintenance of compliance policies, programs, and procedures related to the NERC CIP Standards
• Coordinate and support compliance audits conducted by internal resources, consultants, or regulatory organizations
• Work with responsible EDPR internal NERC group to resolve compliance issues and develop improvement recommendations and mitigation plans
• Document and submit potential violations and ensure they are tracked for timely resolution and fully documented in auditable records
• Utilize EDPR compliance technology to assign, track, and monitor compliance efforts
• Implement and / or recommend appropriate IT initiatives to ensure effective integration of compliance programs or initiatives
• Configure and install various network devices and services (i.e., routers, switches, firewalls, etc.)
• Monitor system resource utilization, trending, and capacity planning
• Select and implement security tools, policies, and procedures
• Design and implement configurations management, reporting, and alerting functions to automate the environment
• Follow standard methodologies and develop new and innovative processes for delivering information security solutions
• Additional duties as required

Employment type

Full-time

Work site

Hybrid

What are we looking for

Minimum Requirements :

Travel : Less than 10%

Behavioral Requirements :

Physical demands & working conditions :

Equal opportunities for all

Our vision is that each person combines their unique characteristics and experiences to fulfill our mission of creating new energy for the planet. We are an inclusive employer, ensuring all candidates are treated fairly throughout the recruitment process. We welcome and value all people, and we are committed to fostering a sense of belonging for each person who is part of the EDP group.

This policy applies to all employment practices within our organization, including hiring, recruiting, promotion, termination, layoff, recall, leave of absence, compensation, benefits, training, and apprenticeship. EDP makes hiring decisions based solely on qualifications, merit, and business needs at the time. For further information, please review this notice from the Department of Labor : EEO is the Law poster (https : / / www.eeoc.gov / poster). You may have additional rights pursuant to recent amendments to federal labor laws. Please review these protections from the EEO is the Law Supplement (https : / / www.eeoc.gov).

Need more reasons to apply?

As a top employer we :

Our efforts have resulted in several distinctions over time, highlighting the EDP group's strong positioning and its dedication and commitment to attracting and retaining the best talent :

Discover our tips to enhance your performance during the recruitment process and apply until February 6 2025 , if you think you are the right fit for this opportunity.