NERC Compliance Associate
Talen Energy · Byesville, OH · 3 mo ago
FinanceFull-time
Primary Duties
- Covers all aspects of the Plant Critical Infrastructure Protection (CIP) Standards NERC CIP Compliance.
- Maintains NERC procedures and logs and other required documentation.
- Maintains all NERC CIP defined equipment to ensure they are kept up to date with all the latest cyber security updates.
- Conducts audits of plant systems to ensure compliance, including CIP policies, procedures, practices, checklists, worklists, internal controls, process flows, training material, and other material as needed.
- Identifies and investigates potential anomalies and/or non-compliances and escalates to management, as necessary; performs root cause analyses and develops corrective actions to mitigate the potential reoccurrence of near-misses and/or non-compliances.
- Aids in the preparation of self-reports.
- Supports roll-out of training at the plant to support NERC compliance activities.
- Supports and assists in all efforts to prepare, draft, and coordinate materials responsive to regulatory questionnaires, and other Requests for Information.
- Assists the plant DCS engineer with the maintenance of the Plant’s DCS system as well as the numerous PLC (Programmable Logic Control) systems that are running site wide.
- Assists operations and maintenance by troubleshooting logic issues, making logic changes due to process changes or improvements, and making graphics changes.
Qualifications
- Education: Degree in Engineering, Computer Science, IT, Cybersecurity, or Business Administration, or one year of NERC CIP Reliability Standard knowledge and experience strongly desired.
- Experience: Practical experience in power plant operations and maintenance is desired.
- Knowledge: Familiarity with networks, change management, anti-malware, configuration baselines, patching, or other security practices.
- Technical Skills: Strong understanding of networks, change management, anti-malware, configuration baselines, patching, or other security practices.
- Administrative and Computer Experience: Strong administrative and computer experience.
- Windows Experience: Experience with Windows Server, Active Directory, patch management systems, and endpoint protection tools.
- Change Management: Working knowledge of change management, configuration baseline, and incident response.