Information Compliance Analyst 4

City Of Memphis - Memphis, TN

posted 3 months ago

Full-time - Mid Level
Memphis, TN
Executive, Legislative, and Other General Government Support

About the position

The Information Compliance Analyst 4 position at MLGW is a senior-level role that reports directly to the Supervisor of Systems Security and Compliance. This position requires specialized expertise in regulatory and cyber security to develop, interpret, analyze, organize, and assess processes and procedures related to compliance with various regulatory bodies, including the Federal Energy Regulatory Commission (FERC), North American Electric Reliability Corporation (NERC), and Southeastern Electric Reliability Council (SERC). The analyst will also be responsible for ensuring compliance with the Critical Infrastructure Protection Standards, Cyber Security Plan, Information Protection Plan, Incident Response Plan, Change Management Process, Revocation Process, and Access Request Process, particularly as they pertain to the integrity and reliable operation of information technology and systems security requirements. Additionally, the role encompasses compliance with TSA and EPA cyber security regulations related to gas and water systems, as well as other cyber security requirements from various regulatory agencies. In this role, the analyst will create and maintain documentation for standards and regulatory compliance, ensuring that all documentation is current and complete. They will control internal procedures to collect, analyze, report, and track reliability compliance standards, while also identifying and recommending improvements to policies and procedures to enhance operational efficiency, safety, and compliance. The analyst will collaborate with the Utility Compliance Manager to review and submit mitigation plans for potential violations of regulatory compliance requirements, prepare accurate reports and studies in a timely manner, and recommend corrective actions for compliance violations. Maintaining records of pertinent studies as required for regulatory compliance is also a key responsibility. The analyst will evaluate and manage internal controls for information and data protection related to MLGW's electric, gas, and water infrastructure, including personally identifiable information. This involves tracking and monitoring regulatory requirements from the National Association of Regulator Utility Commissioners and the Municipal Technical Advisory Service for the Records Retention Department. The analyst will assist in preparing and presenting MLGW's cyber security and social engineering awareness training, updating executive staff on compliance, procedures, and industry trends. They will perform proactive reviews and disseminate relevant industry changes, events, and best practices to mitigate risks associated with cyber security and social engineering. Acting as the liaison between MLGW's information technology and systems and external agencies regarding reliability compliance standards is also a critical function of this role. The analyst will review and monitor internal and external electronic databases and assist management with cyber security incidents and restoration efforts, while staying informed about the latest developments in IT and regulatory compliance standards.

Responsibilities

  • Create and maintain documentation for standards and regulatory compliance.
  • Control internal procedures to collect, analyze, report, and track reliability compliance standards.
  • Identify and recommend improvements to policies and procedures to enhance operational efficiency, safety, and compliance.
  • Collaborate with the Utility Compliance Manager to review and submit mitigation plans for potential violations of regulatory compliance requirements.
  • Prepare accurate reports, charts, and studies in a timely manner.
  • Recommend corrective actions for compliance violations and maintain records of pertinent studies as required for regulatory compliance.
  • Evaluate and manage internal controls for information/data protection and storage related to MLGW's infrastructure.
  • Assist in the preparation and presentation of cyber security and social engineering awareness training.
  • Update executive staff on compliance, procedures, and industry trends.
  • Perform proactive reviews and disseminate relevant industry changes, events, and best practices for reducing cyber security risks.
  • Act as MLGW's information technology and systems liaison to external agencies regarding reliability compliance standards.
  • Review and monitor internal and external electronic databases and assist management with cyber security incidents and restoration efforts.

Requirements

  • Bachelor's Degree with 12 hours of college accredited programming/computer related courses.
  • Six to eight years of professional experience in Network, Systems Security, NERC-CIP Compliance, Information Technology Compliance/Auditing, Project Management, or Cyber Security Administration.
  • Knowledge of security/regulatory compliance and computer applications.
  • Ability to apply senior level expertise to information technology and NERC-CIP, FERC, SERC change management, and project management standards.
  • Strong organizational ability to plan, formulate, and carry out programs/projects.
  • Excellent oral and written communication skills.
  • Leadership skills and resource management skills.
  • Integrity and strong analytical, problem-solving, and decision-making skills.
  • Customer relations skills and ability to work as a team member.
  • Promote safe work practices.

Nice-to-haves

  • PMP certification
  • CISSP certification
  • CompTIA Network+ certification
  • CompTIA Security+ certification

Benefits

  • Competitive salary starting at $95,971.20
  • Equal opportunity employer
  • Comprehensive training and development programs
  • Health and wellness programs
  • Retirement savings plan options

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service