What are the responsibilities and job description for the Cyber Security Auditor position at ReliabilityFirst Corporation?
Job Details
Cleveland - CLEVELAND, OH Fully Remote
About RF
ReliabilityFirst Corporation is a regulator focused on preserving and enhancing reliability, security, and resilience of the Bulk Power System across 13 states and the District of Columbia. ReliabilityFirst is uniquely positioned to work closely with transmission, generation, and other power companies as well as the federal government to help identify and ensure the mitigation of operational risks and physical and cyber security threats to the electric grid.
Culture Statement
At ReliabilityFirst, we are more than just a team – we are a community of dedicated professionals committed to ensuring the reliability and security of the electric grid. Our people are our greatest asset, and we believe that their diverse backgrounds, skills, and experiences are what drive our success. If you’re looking for a career that offers competitive compensation, generous benefits, work-life harmony, and the opportunity to be part of a mission that matters, then we invite you to join us at ReliabilityFirst. Together, we can ensure a reliable and secure electric grid for today and tomorrow.
Purpose Of Position
The Cyber Security Auditor will support the Compliance Monitoring and Enforcement Program by supporting the Compliance Monitoring processes and by performing cyber and physical security compliance reviews and assessments of utility industry stakeholders that pose a risk to the Bulk Electric System (BES), in accordance with the NERC Critical Infrastructure Protection (CIP) Standards.
Key Responsibilities
ReliabilityFirst is an equal opportunity employer and is committed to providing equal opportunities to all employees and applicants in accordance with local and federal laws. ReliabilityFirst's mission is to preserve and enhance bulk power system reliability and security. This mission cannot be accomplished without a diverse and inclusive staff - one that at all levels feels empowered, valued, respected, and engaged.
Learn more at: Diversity, Equity, & Inclusion at RF (rfirst.org)
Cleveland - CLEVELAND, OH Fully Remote
About RF
ReliabilityFirst Corporation is a regulator focused on preserving and enhancing reliability, security, and resilience of the Bulk Power System across 13 states and the District of Columbia. ReliabilityFirst is uniquely positioned to work closely with transmission, generation, and other power companies as well as the federal government to help identify and ensure the mitigation of operational risks and physical and cyber security threats to the electric grid.
Culture Statement
At ReliabilityFirst, we are more than just a team – we are a community of dedicated professionals committed to ensuring the reliability and security of the electric grid. Our people are our greatest asset, and we believe that their diverse backgrounds, skills, and experiences are what drive our success. If you’re looking for a career that offers competitive compensation, generous benefits, work-life harmony, and the opportunity to be part of a mission that matters, then we invite you to join us at ReliabilityFirst. Together, we can ensure a reliable and secure electric grid for today and tomorrow.
Purpose Of Position
The Cyber Security Auditor will support the Compliance Monitoring and Enforcement Program by supporting the Compliance Monitoring processes and by performing cyber and physical security compliance reviews and assessments of utility industry stakeholders that pose a risk to the Bulk Electric System (BES), in accordance with the NERC Critical Infrastructure Protection (CIP) Standards.
Key Responsibilities
- Perform day-to-day department activities including on-site and off-site Audits and Spot Checks of electrical utility companies ensuring compliance with the NERC CIP Standards.
- Perform as Team Lead or Audit Team Lead (ATL), including serving as the main point of contact for audits and coordinating and facilitating pre-audit work and onsite and off-site reviews.
- Be a subject matter expert on CIP Standards and related matters associated with the security, reliability and resiliency of the cyber systems used to support the operation of the BES.
- Bachelor’s degree in computer science, Information Systems / Security, Computer or Systems Engineering, or related technical degree with 2 - 6 years of related experience OR no degree with at least 6 years of related experience/education resulting in demonstrated ability to perform the major duties required.
- Background knowledge of information technology, information security and/or EMS operations.
- Ability to participate on a team of Subject Matter Experts and effectively contribute to the regulatory oversight process and provide subject matter expertise /technical support to non-technical departments
- Experience with IT Audit, security controls and/or internal controls.
- Familiarity and understanding of NERC CIP Standards.
- Certifications/Licensures pertinent to Cyber Security CISA, CISSP, GIAC, CISM, PE license, regulatory experience, and/or auditor certification.
- Recent (last 2-3 years) experience in managing or implementing cybersecurity controls in a corporate environment.
- Experience in configuration management, IT networking, system engineering, security architecture, virtualization, cloud infrastructure, supply chain and/or Information security auditing.
- Experience in developing or managing procurement processes and controls used in the procuring of assets, systems or services from vendors.
- Working knowledge in the operations or planning of the BES and supporting technologies.
ReliabilityFirst is an equal opportunity employer and is committed to providing equal opportunities to all employees and applicants in accordance with local and federal laws. ReliabilityFirst's mission is to preserve and enhance bulk power system reliability and security. This mission cannot be accomplished without a diverse and inclusive staff - one that at all levels feels empowered, valued, respected, and engaged.
Learn more at: Diversity, Equity, & Inclusion at RF (rfirst.org)
