CIP NERC Compliance Analyst
AES Indiana · Indianapolis, IN · 4 days ago
LegalFull-time
About the role
AES is seeking a NERC CIP Compliance Specialist responsible for executing defined compliance activities and supporting the maintenance of compliance with NERC Critical Infrastructure Protection (CIP) Standards.
Responsibilities
- Maintain and have a foundational understanding of applicable NERC CIP Standards and support execution of compliance requirements within assigned activities.
- Cook up the collection of compliance evidence from internal stakeholders and SMEs in accordance with established processes and timelines.
- Track and monitor recurring compliance activities, including evidence refresh cycles, attestations, and scheduled compliance tasks.
- Send routine communications, reminders, and follow-ups to support timely completion of compliance deliverables.
- Maintain compliance documentation repositories, including organizing, labeling, and storing evidence in approved systems (e.g., SharePoint, compliance tools).
- Perform initial reviews of submitted evidence to confirm completeness, required components, and adherence to established formatting and documentation requirements.
- Compile and organize documentation packages for internal reviews, audits, and regulatory requests using established templates and guidance.
- Maintain compliance trackers, logs, dashboards, and status reporting tools to ensure accurate visibility into task completion and outstanding activities.
- Prepare routine compliance status updates and reports reflecting completion status, overdue items, and pending deliverables.
- Support audit preparation activities by assembling evidence files, maintaining request logs (e.g., RFIs), and tracking submission status.
- Execute established internal compliance procedures and follow defined workflows for evidence collection, documentation, and tracking.
- Identify missing information, incomplete documentation, overdue activities, or process deviations and escalate to senior compliance staff or management in accordance with established escalation procedures.
- Demonstrate awareness of when activities fall outside defined procedures or expectations and seek guidance or escalate concerns appropriately rather than making independent compliance determinations.
- Support development and maintenance of RSAWs by gathering, organizing, and aligning evidence to documented control requirements and narratives.
- Support development of self-reports and mitigation plans by compiling required information, coordinating inputs from SMEs, and maintaining supporting documentation.
Requirements
- Bachelor’s degree or equivalent experience.
- 0–3 years of experience in compliance, audit, cybersecurity, or a regulated environment.
- Strong organizational and documentation skills with attention to detail.
- Ability to manage and track multiple activities within established processes and timelines.
- Strong written and verbal communication skills and ability to interact with cross-functional teams.
- Working knowledge of Microsoft Office tools (Excel, SharePoint, PowerPoint) and compliance tracking tools preferred.