At AES, we raise the quality of life around the world by changing the way energy works. Everyone makes an impact every day in our small, global teams. Apply here to start an extraordinary career today.
The AES Clean Energy team is looking for an innovative and motivated individual to manage the CIP NERC Compliance team for AES’s rapidly growing renewable energy portfolio. This position provides the opportunity to support one of the largest renewable energy portfolios in the U.S. while playing a pivotal role in ensuring that AES builds, operates and maintains the portfolio to standards that exceed industry best-practice.
The ideal candidate will be an initiative-taker and can tackle multidisciplinary challenges in coordination with various AES teams and third parties. This role will support the growth of the AES CIP NERC Compliance team as the renewable portfolio continues to expand.
Principal Duties and Responsibilities:
The CIP Compliance manager will be responsible to
Build a team of NERC CIP compliance specialists and technical experts who can help support and ensure compliance with AES Clean Energy portfolio.
Provide Oversight and cross-department coordination of NERC CIP Standards
Collaboratively develops KPI’s and program metrics, audit coordination/RSAW development.
Lead Self Reports, mitigation plans, and self-certification submittal process as needed
Develop training and knowledge transfer in CIP Security Controls, with all NERC CIP applicable business areas.
Ensure the development of processes, workflows and evidence required for compliance to the CIP standards.
Manage day to day responsibilities related to NERC CIP Compliance for Medium Impact Assets.
Collaboratively work with all NERC CIP applicable business areas to develop processes, workflows, and evidence necessary to achieve the CIP internal security controls objectives.
Serves as a technical expert within CIP workgroup to ensure AES Clean Energy implements CIP NERC Reliability Standards Requirements within regulatory deadlines.
Support Director of NERC Compliance to implement organization wide strategies, priorities, and documentation to meet reliability compliance requirements.
Leads CIP audits, spot-checks, guided self-certification, internal assessments, compliance filings, mock audits and information requests while relying on internal and third-party support
Contribute to internal control actions through risk assessments and lessons learned
Evaluate, prepare, and maintain materials for audits, self-certifications, spot-checks, internal compliance assessments, self-reports, mitigation plans, Reliability Standard Audit Worksheets (RSAWs), and evidence documentation
Lead response to regulatory compliance requests, enforcement actions, and data-reporting from a NERC CIP perspective.
Establish and maintain effective relationships with industry associations, regional entities, and internal stakeholders to promote business goals and compliance with requirements
Desired Skills and Expertise:
Four Year Bachelor’s Degree or equivalent experience in information security and/or cybersecurity policy.
Minimum 5 years of related work experience with NERC CIP standards and requirements.
Experience in implementing and/or maintaining a NERC compliance program.
Knowledge of physical security, network infrastructure, and security related tools such as whitelisting, IDS/IPS, anti-malware, patch management, baselining, SIEM, access control, and firewalls.
Knowledge of industrial control systems and other utility Operational Technology or Information Technology systems
Ability to see tasks through to completion without significant guidance
Strong verbal and writing skills, technical and non-technical
Experience with CIP specific audit skills, controls, cyber and physical security, and related industry regulatory issues.
Highly motivated, self-starter willing to take on new challenges
Good project management skills.
AES is an Equal Opportunity Employer who is committed to building strength and delivering long-term sustainability through diversity and inclusion. Respecting all backgrounds, differences and perspectives enables us to improve the lives of our people, customers, suppliers, contractors, and the communities in which we live and work. All qualified applicants will receive consideration for employment without regard to sex, sexual orientation, gender, gender identity and/or expression, race, national origin, ethnicity, age, religion, marital status, physical or mental disability, pregnancy, childbirth, or related medical condition, military or veteran status, or any other characteristic protected under applicable law. E-Verify Notice: AES will provide the Social Security Administration (SSA) and if necessary, the Department of Homeland Security (DHS) with information from each new employee's I-9 to confirm work authorization.
Safety comes first at AES. To protect the health and safety of our people, customers, communities and partners, and to provide and maintain a workplace that is free of known hazards, AES requires all newly-hired people or current AES people applying for U.S.-based role(s), to be fully vaccinated against COVID-19 or be willing to be fully vaccinated against COVID-19 by their date of hire. Except where prohibited by law or not specifically covered in a collective bargaining agreement, new hires and transfers will be required to provide proof of vaccination during onboarding and periodically thereafter. This policy will comply with all applicable laws and is based on guidance from the Centers for Disease Control and Prevention and local health authorities, as applicable.
The world no longer thinks of energy as a matter of supply and demand. Now it’s a space for innovation and partnership. With this transformation comes a responsibility to work with a smarter approach, new thinking informed by past experiences, and with stronger collaboration between regulators and innovators, old systems and new technologies.
At AES, we partner with our organizations ...