Under supervision of the NERC Compliance Supervisor, this position is responsible for the implementation and management technologies and processes that assist Independence Power & Light in meeting regulatory obligations and general business security needs. Incumbent participates in the oversight process involving enforcement of CIP standards, communications of supplementary requirements, training and design of information security test plans. Responsibilities include ensuring that the Critical Infrastructure Protection (CIP) requirements are implemented at Power & Light and the documentation meets requirements. Will facilitate CIP audits in connection with requirements and work with compliance team to create internal self-audit programs for compliance monitoring and on the mitigation of deficiencies. Will track the status of the mitigation plans and update compliance status reports for the IPL Compliance Lead Team. Function as part of a core team consisting of NERC Compliance Officer, Security Administrator and Document Management Specialists, as each relates to the NERC CIP Standards and other regulatory compliance requirements. Liaise with Technology Services to ensure compatibility with city-wide cyber security initiatives and the development of disaster recovery plans, exercises and actual events. Actively participates in the security vulnerability and risk assessment process, including reporting and oversight of remediation efforts to address negative findings. Duties include communicating security and risk-related concepts to technical and non-technical audiences. Serves as the primary and/or secondary subject matter expert on NERC Standards related to CIP, and will provide input in developing formal employee training regarding NERC CIP Physical and Cyber Security Requirements. Chairs the IPL CIP Compliance team and attends regional meetings as related to responsibilities. Performs other duties as assigned.
Minimum Qualifications: Bachelor’s degree from a four-year college or university in engineering, computer science/information systems or equivalent combination of education and related IT experience resulting in demonstrated ability to perform the essential functions of this job. Prefer a minimum of ten years of progressively responsible related experience in stated IT areas with energy or utility industry experience. Requires demonstrated knowledge of NERC CIP standards, RSAW and audit procedures. Must be experienced in working with: NERC, NIST, IDS/IPS products, vulnerability assessment and management products, Windows operating systems, networks, scripting/programming (shell, Perl, C, etc. preferred), and other cyber security compliance requirements. Successful applicant will be able to demonstrate a strong understanding of: network architecture, firewalls, Intrusion Detection Systems, web filtering, audit/log management, physical security control systems, operation or planning of bulk electric systems and supporting technologies. Must be able to perform a wide variety of tasks and change focus quickly as demands change; manage transitions effectively and adapt to customer needs. Requires excellent verbal and written communication skills, with the ability to effectively present information on both technical and non-technical levels. Must be skilled in the exercise of discretion, initiative and independent judgment. Requires ability to establish and maintain effective working relationships with internal and external customers. Must be proficient in Microsoft Office applications, including Word, Excel, Access and PowerPoint. Must complete required NIMS level training within first six months of hire.
Physical Demands: While performing the essential functions of this job the incumbent is occasionally required to lift and/or move up to 25 pounds. Working Conditions: Work is performed mostly indoors with minor outdoor activity on occasion. Position may require work beyond normal working hours and will be subject to on-call status.
Licenses & Certifications:
CISSP, GSEC, GISF or other security related certifications preferred
Valid Driver’s License, Drug Testing, Security Background Check
In addition to the Application, testing and/or examinations may be required for further consideration on this position.
You may apply on-line at www.indepmo.org/hr or apply in the Human Resources Department, 2nd floor City Hall, 111 E. Maple, Independence, MO 64050. Position Closes August 20, 2013.
EQUAL OPPORTUNITY EMPLOYER – BILINGUAL SKILLS PREFERRED