Process Development Specialist - NERC CIP

Description

Dragonfli Group seeks a skilled and detail-oriented NERC CIP Process/Procedure Development Specialist to join our team. The ideal candidate will have experience in developing and implementing processes and procedures in accordance with North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) standards. While domain knowledge in Access Management (CIP-004), Configuration Management (CIP-010), and System Configuration (CIP-007) is preferred, it is not mandatory. This role will be pivotal in ensuring compliance with regulatory requirements and enhancing the security and reliability of our critical infrastructure.

This role requires periodic travel to the West Coast on a quarterly basis.

Key Responsibilities:



• Develop and Implement NERC CIP Procedures: Create, revise, and maintain comprehensive procedures and processes to ensure compliance with NERC CIP standards, focusing on but not limited to Access Management (CIP-004), Configuration Management (CIP-010), and System Configuration (CIP-007).
• Conduct Risk Assessments: Identify and assess potential risks related to critical infrastructure and develop mitigation strategies to address these risks.
• Compliance Audits and Reporting: Participate in internal and external compliance audits, prepare necessary documentation, and ensure timely reporting of compliance status.
• Training and Awareness: Develop and deliver training programs to ensure that relevant personnel are aware of and understand NERC CIP requirements and procedures.
• Collaborate with Stakeholders: Work closely with internal teams, including IT, security, and operations, to ensure seamless implementation and adherence to NERC CIP standards.
• Continuous Improvement: Regularly review and update processes and procedures to reflect changes in regulatory requirements, industry best practices, and organizational needs.

Requirements

Experience:

• Proven experience in process and procedure development, preferably in a regulated environment.
• Familiarity with NERC CIP standards, with preference given to experience in CIP-004, CIP-010, and CIP-007.

Preferred Qualifications:

• Direct experience with NERC CIP-004 (Access Management), CIP-010 (Configuration Management), and CIP-007 (System Configuration).
• Previous experience in the energy sector or with critical infrastructure protection.

Certifications:

• Certifications related to NERC CIP, cybersecurity, or IT management are a plus (e.g., CISA, CISSP, CISM).

Skill(s)

• Strong analytical and problem-solving skills.
• Excellent written and verbal communication skills.
• Ability to work collaboratively with cross-functional teams.
• Detail-oriented with strong organizational skills.

Travel

This role requires period travel to the West Coast on a quarterly basis.