TECO Energy Compliance & Risk Analyst/Advisor Progression (IT) in Ybor City, Florida
Compliance & Risk Analyst/Advisor Progression (IT)
Date:Nov 20, 2022
Location: Ybor City, Florida, US, 33605
Apply now »
Title: Compliance & Risk Analyst/Advisor Progression (IT)
Company: Tampa Electric Company
Location: Ybor Data Center
State and City:Florida - Ybor City
Shift:8 Hr. X 5 Days
Hiring Manager: Ehab Salah
Recruiter: Mark E Koener
This is a multi-level position and the salary range for this position varies and is commensurate with skills, experience, and education.
TITLE: Compliance & Risk Analyst/Advisor Progression
PERFORMANCE COACH: IT Quality Assurance & Compliance Director
COMPANY: TECO Services, Inc.
DEPARTMENT: Information Technology & Telecommunciations: Information Technology Quality Assurance & Compliance
TITLE: Compliance & Risk Analyst I
Under general supervision, carries out procedures to ensure all information systems products and services meet IT&T organization standards and compliance obligations, including regulatory requirements, contractual requirements, and Emera requirements. Analyst is primarily responsible for the maintenance, training, assurance, monitoring and reporting of all IT standards and procedures, as well as IT&T related regulatory requirements for the TSI IT&T Department and individual business units as applicable.
Please keep in mind that these are the minimum requirements for a Compliance & Risk Analyst position. This position does have various levels, so if an applicant meets more of the preferred skills, they may qualify for a higher level of position.
PRIMARY DUTIES AND RESPONSIBILITIES (Each item should account for ≥10%) .
Policies, standards, and processes: Analyzes best-in-class processes including IT Information Library (ITIL), National Institute of Standards and Technology (NIST) standards, and COBIT, and keeps current on all regulatory and compliance issues relating to Information Technology. Responsible for maintaining all IT standards, procedures and policies. Maintains internal desk-level procedures. [15%]
Assurance and Information Management: Ensures that quality methods and procedures are executed by the IT department to stay in compliance with regulatory requirements, e.g., NERC Critical Infrastructure Protection (CIP), Sarbanes-Oxley (SOX), contractual requirements (e.g., Payment Card Industry (PCI) Data Security Standards (DSS), Defense Federal Acquisition Regulation System (DFARS) requirements, internal requirements, e.g., Emera, voluntary requirements, e.g. America Gas Association commitement to Department of Homeland Security (DHS) Transportation Safety Administration (TSA) Pipeline Security Guidelines, and customer requirements. Manages compliance related information and documentation consistent with retention requirements. Support collection, review and approval of compliance-related data. Facilitates and tracks deliverables for root cause analysis, compliance reporting, technical feasibility exceptions, and NERC Alerts. [25%]
Controls & Monitoring: Administers the IT Compliance Management Systems and Governance, Risk, and Compliance (GRC) tool(s). Collect and sample evidence to support demonstration of compliance. Escalates out of compliance items to senior management. Participate in the implementation of technology-based tools (e.g. GRC) to support IT risk initiatives. Additionally, analyst adheres to company confidentiality and security requirements. [20%]
Reporting: Documents all quality problems and compliance issues, and assists in their resolution. Performs quality audits across various IT&T functions to ensure quality standards, procedures, and methodologies are being followed. Monitors and reports on exceptions, risks and exposures to IT senior management. [20%]
Training and Communications: Develops and delivers quality process training to technical staff and acts as an internal quality consultant to facilitate business or technical partners on the use of the IT standards and procedures. [10%]
Performance Management: Establishes and administers activities of performance analysis (e.g., metrics) within assigned area(s) of responsibility. [10%]
Direct: No direct reports. Works under general supervision.
Internal: Directly accountable to the IT Quality Assurance and Compliance Director. Indirectly accountable to the Lead Compliance Analyst for day-to-day and project activities. Interacts with all levels of TSI IT&T; selected individuals in TEC Energy Delivery, Energy Supply, Corporate Security, Facility Services, Human Resources, Emergency Management, Customer Experience, Regulatory Affairs, Audit Services, Corporate Accounting; PGS Compliance, Gas Operations; NMGC Compliance, Customer Service, Gas Operations; and Emera Compliance and Cyber Security.
External: Analyst is responsible for building and maintaining external relationships with vendors, contractors, and external auditors.
Required: Bachelor’s degree in Computer Science, Information Systems or a related field with a minimum three (3) years of experience in an information technology, audit or utility business.
OR Associates Degree with a minimum five (5) years of experience in an information technology, audit or utility business
OR Valid high school diploma or GED with a minimum seven (7) years of experience in an information technology, audit or utility business may be considered in lieu of a 4 year degree
Preferred: Two (2) years of direct IT Audit or Controls experience strongly preferred. Four (4) year degree in Computer Science, Information Systems, or related information technology discipline strongly preferred.
Required: Expected to obtain Information Technology Infrastructure Library (ITIL) Certification within 6 months of employment in this position.
Preferred: Current ITIL Certification. Certified Information Systems Auditor (CISA) or related certifications.
Required: Minimum of 3 years experience in an information technology, audit, or utility business environment is required.
Preferred: 2 years IT experience, especially security or network technologies, IT audit.
Required: Excellent writing skills for creating IT-related compliance documents. An extensive knowledge and understanding of IT regulatory standards and control frameworks. Ability to apply regulatory requirements within all aspects of the IT Department. Demonstrates the ability to work with all levels of team members throughout the company.
Preferred: Knowledge of Utility IT regulations. Knowledge of Sharepoint document management and workflow.
JOB RELATED DIMENSIONS
Business & Job Knowledge
Ownership & Excellence
Planning & Organization
Communication & Presentation Skills
TECO offers a competitive Benefits package!!
Competitive Salary 401k Savings plan w/ company matching * Pension plan * Paid time off Paid Holiday time * Medical, Prescription Drug, & Dental Coverage *Tuition Assistance Program * Employee Assistance Program * Wellness Programs * On-site Fitness Centers * Bonus Plan and more!
STORM DUTY REQUIREMENTS....Please make sure to read below!!! Responding to storms will be considered a condition of employment.
TECO Energy and its companies serve a role in providing critical services to our community during an emergency. Team members are required to participate in the response/recovery activities related to emergencies/disasters to maintain service to our TECO Energy customers. Team members are required to work in their normal job duties or other assigned activities. Proper compensation will be made in accordance with the company's rules and procedures.
TECO Energy is proud to be an Equal Opportunity Employer.
TECO Energy is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability status, veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by law, except where physical or mental abilities are a bona fide occupational requirement and the individual is unable to perform the essential functions of the position with reasonable accommodations.
In order to provide equal employment and advancement opportunities for all individuals, employment decisions at TECO Energy will be based on skills, knowledge, qualifications and abilities.
Pay Transparency Non-Discrimination Statement
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information. 41 CFR 60-1.35(c)
It is the policy of TECO Energy to provide reasonable accommodation for all qualified disabled individuals who are employees and applicants for employment, unless it would cause undue hardship. The corporation will adhere to applicable federal and state laws, regulations and guidelines, including, but not limited to the Americans with Disabilities Act (ADA) of 1990 and section 503 and 504 of the Rehabilitation Act of 1970s.
Applicants may request reasonable accommodation in the application process five business days prior to the time accommodation is needed.
Pre-employment physical exams may be required for positions with bona fide job-related physical requirements regardless of disability.