NERC COMPLIANCE ENGINEER required by our Client, within the Renewable Energy industry, to be assigned on a Contract basis, located in Boston, MA.
POSITION SCOPE
The Cyber Security, Infrastructure Protection and NERC Engineer manages all aspects of our Clients Renewables Cyber Security Program for the Renewables Operations business group, as well as assigned areas of North American Electric Reliability Corporation (NERC) Reliability Standards to ensure compliance with applicable standards and requirements.
Belonging to the Systems Integration Package within the Project Execution Area and reporting to the Systems Integration Package Manager locally, the NERC Engineer will be responsible for implementing robust and cost-effective engineering strategies and plans. This includes support to the tendering, negotiating, and managing offshore supply, installation, and maintenance contracts, as well as planning and implementing delivery sites and logistics. The NERC Engineer must comply with company and business engineering standards and technical acceptance criteria, ensuring quality, best practices, and excellent H&SE performance are applied. They will work in coordination with the Systems Integration Package Manager. The main responsibilities across the different phases of the projects are outlined below:
PRINCIPAL RESPONSIBILITIES
Cyber Security Program Development and Implementation
- Lead the development and implementation of the Renewables cyber security program.
- Coordinate cyber security program objectives with the Iberdrola Global Cyber Security team.
- Collaborate with Businesses, IT, and other Corporate Service Areas to define, govern, and support cyber security measures.
Representation and Coordination
- Represent the Renewables cyber security initiative to businesses and local cyber security teams in the USA, UK, Spain, Mexico, and Brazil.
- Represent Renewables in the Cyber Threat and Incident Response Program.
Strategic Decision-Making
- Make strategic decisions to mitigate cyber-related threats and vulnerabilities to the Renewables operation and OT network.
- Ensure governance of Business and IT teams to ensure all actions and work plans related to cyber assets conform to Renewables cyber security requirements.
Compliance and Monitoring
- Assess, track, monitor, and verify Renewables cyber security and NERC compliance against global business policies and standards.
- Support the interface between the Renewables NERC compliance program and Cyber Security Program for seamless continuity and comprehensive oversight.
- Direct actions of cyber security SMEs in performing duties impacting NERC compliance processes.
- Promote the reliability of the Bulk Power System through rigorous compliance with applicable NERC standards.
NERC Regulatory Compliance and Audit Preparation
- Ensure effective regulatory compliance with North American Reliability Corporation (NERC) applicable standards, including CIP, MOD, BAL,COM, EOP,FAC, INT, IRO, PER, PRC, TOP, TRL, VAL, etc.
- Provide guidance to support and enhance operational business units risk management, Cyber, Information, Physical, and Personnel Security programs.
- Monitor and enforce activities and functions for internal and external audit preparation.
- Maintain and revise NERC compliance program, including the administration and maintenance of compliance policies, programs, and procedures related to NERC Standards.
- Prepare for, coordinate, and support compliance audits conducted by internal resources, consultants, or regulatory organizations.
Issue Resolution and Standards Development
- Work with responsible Business Units to coordinate resolving compliance issues and develop improvement recommendations and mitigation plans.
- Keep responsible Business Units informed regarding NERC Standards Development and activities associated with NERC Standards.
- Solicit input from appropriate subject matter experts and effectively communicate position on proposed regulatory standards to NERC.
- Ensure timely adherence from responsible business units to all new/revised NERC regulatory obligations.
Industry Awareness and Participation
- Maintain awareness of emerging utility industry issues through benchmarking and participation in appropriate utility forums/groups.
QUALIFICATIONS / EXPERIENCE
- Bachelor’s Degree or equivalent combination of education and experience.
- Masters Degree applicable national / cyber security related area preferred.
- 3+ years experience in the electric utility industry.
- 5+ years experience in national / cyber security capacity.
Offshore (preferred) Wind Projects Experience:
- Proven track record of delivery in an offshore wind projects environment, including technical due diligence and grid connection concepts.
- Experience in construction, commissioning, and operations of offshore wind projects.
Technical Knowledge:
- Extensive understanding of offshore wind technology, including turbines and electrical infrastructure.
- Good understanding of operational efficiency.
Project Commissioning Management:
- Strong experience in project commissioning management, including planning, budget management, risk and opportunity management, and delivery.
Interpersonal Skills:
- Strong networking, communication, relationship building, and influencing skills demonstrated across various teams, stakeholders, and senior leadership.
- Effective negotiation and contractor management skills.
Technical Proficiency:
- IT literate with the ability to operate MS Office systems and other IT-based project management software.
Engineering Design Review:
- Experience in engineering design review and assurance processes.
Criteria Essential/Desirable
- Bachelor’s Degree or equivalent combination of education and experience.
- 3+ years experience in the electric utility industry.
- 5+ years experience in national / cyber security capacity.
- Strong experience in project commissioning management, including planning, budget management, risk and opportunity management, and delivery.
- Strong networking, communication, relationship building, and influencing skills demonstrated across various teams, stakeholders, and senior leadership.
- Effective negotiation and contractor management skills.
- Experience in engineering design review and assurance processes.
- Ability to communicate verbally and in writing across various levels
- Flexible, team player and can work in multi-cultural teams
- Masters Degree applicable national / cyber security related area preferred.