Tri-State Generation and Transmission Association, Inc. Compliance Analyst I, II, III or Senior (IRC28052) in Westminster, Colorado
The Compliance Analyst is responsible for the development and implementation of a strategy and program to effectively oversee and coordinate the compliance with the North American Electric Reliability Corporation's (NERC) Reliability Standards. Directs the development and execution of specific compliance programs and prepares or reviews filings with the applicable regulatory regions (Midwest Reliability Organization (MRO) and Western Electricity Coordinating Council (WECC)). Oversees Tri-State's compliance with Reliability Standards, reviews evidence attesting to compliance with said standards and provides guidance to Subject Matter Experts (SMEs). Assists with the design and implementation of compliance policies and computer based tracking databases or systems. Researches and summarizes information from the NERC, WECC, and MRO for distribution to employees and members on a regular basis. Under proper Delegation of Authority may from time to time fill in for the Senior Manager, Reliability Compliance.
*This position opening has a heavy emphasis on compliance with the Critical Infrastructure Protection Standards.*
Note: There is one position available, and the position will be filled at one of 4 levels: Compliance Analyst I (job grade NB17); Compliance Analyst II (job grade NB19); Compliance Analyst III (job grade NB21) or Senior Compliance Analyst (job grade NB23). This decision will be based on the experience level and qualifications of the selected candidate and Tri-State business needs at the time of hire.
ESSENTIAL FUNCTIONS AND RESPONSIBILITIES:
- Provides technical advice and assistance on the interpretations of Reliability Standards
- Develops compliance mechanisms for execution by the various Tri-State Business Units.
- Develops and presents briefings on industry and/or Tri-State incidents
- Anticipates and plans for changes in compliance program requirements at the national and regional levels. Develops and oversees effective internal activities relating to anticipation and implementation of program changes.
- Directs the work of teams charged with the development and implementation of compliance processes and procedures. Teams may include management and SMEs from the various Business Units that are stakeholders in compliance.
- Under proper Delegation of Authority may perform the duties the Senior Manager, Reliability Compliance to include the supervision of the Reliability Compliance Group employees.
- Directly coordinates the work of SMEs, analysts, or other administrative staff as needed.
- Establish and maintain effective relationships with industry, regional entities and internal stakeholders to allow for effective achievement of business goals and compliance with requirements.
- Conducts risk-based security assessments and identifies risks and process gaps in existing processes, procedures and systems
- Tracks documentation (compliance evidence) sent and received to/from SMEs and cooperative members in response to specific requests and linked to specific Standards requirements.
- Reviews and transmits correspondence from NERC, WECC, and MRO to appropriate SMEs and cooperative members.
- Monitors and provides SMEs and cooperative member status updates on Reliability Compliance programs and standards.
- Provides training for SMEs and members on the preparation of self-certifications, reports, mitigation plans, and related documents required for WECC, MRO, and NERC submittals.
- Prepares updates to management on the status of programs, plans, reports, and related documents.
- Adhere to and demonstrate compliance with appropriate electric utility industry regulatory requirements. Attain knowledge and remain knowledgeable of development in regulations, laws, standards and best practices applicable to the functional area including, but not limited to, Standards of Conduct, Environmental, Employment Law, NERC Reliability Standards and Safety. Must be familiar with, and comply with, all aspects of Corporate Policy C-54, Compliance.
- Demonstrate behavior consistent with Tri-State's culture embodied in the Cooperative principles and spirit and core values of technical competency, respect and dignity, accountability, integrity, trustworthiness, and servant leadership to empower or otherwise enable others to optimally perform their job responsibilities. Demonstrate and promote ethics and behaviors consistent with Tri-State's culture, Board policies, and business practices. Understand and fulfill the role and responsibility for all compliance programs within the company.
- Because Tri-State is an electric utility with continuous service obligations to its customers, regular, reliable, and predictable performance of the essential functions and responsibilities is an essential function of the job.
- Because Tri-State has an obligation to provide continuous, reliable electric service to its customers, the ability to work overtime at any time of the day or week is considered an essential function of the job.
OTHER DUTIES AND RESPONSIBILITIES:
- Perform other related duties as assigned
SUCCESS FACTORS/JOB COMPETENCIES:
- Planning: ability to think ahead and plan within timelines and resources; develop scopes, plan and schedule work; set priorities and goals; anticipate and adjust for problems; evaluate workloads; measure and evaluate performance against established goals.
- Time management: ability to successfully plan and implement objectives within established timelines and work schedules.
- Ability to analyze problems and develop effective solutions at both strategic and functional levels.
- Commitment to company values.
- Excellent interpersonal and communication skills.
- Strong team player: accomplishes tasks by working with others and being a good team player. Recognizes how his/her decisions may impact others; seeks input from others.
- Computer proficiency in operating a personal computer and standard business office applications including Microsoft Office suite, databases, and other related applications.
- Ability to work independently, with minimal direction as a highly motivated self-starter.
REQUIRED JOB QUALIFICATIONS:
Education and Training:
- Bachelor's degree in Computer Science, Information Science, Electrical Engineering, Business Administration, Business Process Management, or equivalent experience. Advanced degree in relevant field desirable.
Requirements specific to NERC Critical Infrastructure Protection (CIP) standards:
Knowledge, Skills, and Ability:
- Knowledge of risk assessments techniques, change management, incident reporting and response planning.
- Knowledge of business continuity processes and disaster recovery.
- Knowledge of enterprise security architecture, network design, and operational risk management.
- Excellent presentation and communication skills both orally and in writing.
- Ability to multitask and work effectively with Subject Matter Experts.
- Proficient project management skills preferably including experience with related project management software/applications.
- Ability to maintain effective working relationships and team work.
The Senior Compliance Analyst requires a minimum of eight (8) years' combined experience in any of the following:
- Information Technology (IT) security and management,
- IT auditing,
- CIP compliance implementation or oversight,
- or other comparable experience with an emphasis on technical and security domains.
- Experience in the life-cycle of cyber security and computer network security technical and programmatic operations. This includes experience in:
- Penetration testing and other cyber security automated testing and monitoring tools.
- Virus/malicious software identification and management.
- Computer network monitoring.
- Security tool development
Those with less experience will be hired at the Compliance Analyst I, II, or III, as appropriate.
- Willingness to travel as required. (Must possess a valid driver's license.)
- Must be able to demonstrate that he/she can perform all of the essential functions of the position.
PHYSICAL AND MENTAL DEMANDS: The physical demands and work environment characteristics described here are representative of those that must be met by an employee to successfully perform the essential functions of the position. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
- Physical demands: While performing the duties of this position, the incumbent is required to sit for long periods of time, occasionally stand, walk, stoop, bend, and reach above and below shoulder level. Incumbent is frequently required to use hands and fingers to handle, or feel objects, tools, or controls, talk and hear.
- Mental demands: While performing the duties of this job, the incumbent is required to read, write, perform basic math, analyze data and reports, exercise judgment, develop plans, procedures and goals, and present information to others and work under pressure.
- Work Environment: While performing the duties of this position, the incumbent is occasionally exposed to dirt/dust, chemicals, confined areas and noise. Most duties are performed indoors and at a desk, operating office equipment.
Job Title: Compliance Analyst I, II, III or Senior (IRC28052)
Location: Westminster, CO, US
Base Location: Headquarters - Westminster, CO
Amount of Travel: Up to 10%
Equal Opportunity Employer – Minority/Female/Disabled/Veteran