Project Manager
| Company | Iberdrola Group |
|---|---|
| Location | Rochester, NY, USA, Milford, CT, USA |
| Salary | $94400 – $129900 |
| Type | Full-Time |
| Degrees | Bachelor’s, Master’s, Associate’s |
| Experience Level | Mid Level, Senior |
Requirements
- Master’s Degree in Engineering, Science, Business or a related field with a minimum of 4 years experience; or
- Bachelor’s Degree in Engineering, Science, Business or a related field with a minimum of 6 years experience; or
- Associated Degree in Engineering, Science, Business or a related field with a minimum of 8 years experience.
- Firm grasp of and experience dealing with FERC/NERC regulatory requirements
- Highly skilled in organizational practices with attention to detail
- Proven written and verbal communication skills
- Strong problem-solving and analytical skills
- Strong project management skills
- Strong understanding of current and future state of cyberspace
- Teambuilding and coaching expertise
Responsibilities
- Analyze current/future OT vendors, hardware, software, etc. that may be introduced to modernize the electric grid and assess increases and offsets to cyber exposure
- Collaborate with executive leadership to develop and manage program budgeting and costs
- Compliance metrics reporting and preparation of regular Compliance updates to leadership
- Coordinate compliance teams as determined by Program requirements
- Develop cybersecurity metrics to gauge how conformance to cyber standards, policies, and technical requirements
- Educate members and government agencies as required during cyber and physical events
- Engage suppliers for purposes of framing appropriate mitigation/remediation countermeasures in operational and nonoperational environments
- Ensure that all elements of the NERC Reliability Standards Program are completed to schedule
- Establish and monitor Compliance Program milestones for all programs
- Establish vendor process and metrics for cyber assurance
- Establishes, administers, and monitors departmental standards, procedures, and performance to minimize risk and ensure compliance with
- Hold regular Program meetings and document key decisions and progress toward compliance requirements
- Identify, analyze, track and resolve risk and non-compliance program issues
- Interact with the Department of Energy (DOE), Department of Homeland Security (DHS), Federal Emergency Management Agency (FEMA), Federal Bureau of Investigation (FBI) and other relevant agencies as needed in response to security and grid modernization-related issues
- Lead the preparation of audit documents prior to external audits and to conduct regular internal audits of individual standards to support company compliance
- Lead, develop, maintain, and write ICS/OT cybersecurity policies, rules, and guidelines
- Manage the review and updates of policies and procedures in conjunction with SMEs
- Monitor grid security and resiliency issues and intelligence from a variety of sources and if needed synthesizing and framing impacts and considerations on AVANGRID business areas
- Participate in appropriate external industry groups, including Edison Electric Institute (EEI)
- Provide preparation and coordination for all internal and external Compliance audits
- Provides leadership across departments to the Managers and professional staff in support of Compulsory Assurance Lines, Control Objectives, and Conformance reporting
- Research current industry and government frameworks, vulnerabilities, and risk trends, and assess impact
- Respond to audits, participate in cybersecurity-related committees, and explain policy impacts at all levels of the company
- Synthesize recommendations for improvements in cybersecurity business processes related to identifying, processing, and managing cyber risk for ICS/OT
- Work closely with the Subject Matter Experts to determine impacts and ensure compliance
- Works with Subject Matter Experts and management to provide specialized technical expertise and support for compliance program development and compliance performance tracking and reporting.
Preferred Qualifications
- Experience in a utility environment
- Experience in federal cybersecurity agencies and environments
- Experience in federal or state regulatory environments
- Experience in risk and compliance management lifecycles
- Experience with regulatory audits
- Project Management, ITIL, CRISC, CRMA, GRCP certifications a plus