Job Details
NERC CIP Compliance Specialist
2026-02-05 Consolidated Asset Management Services Houston,TX
Description:
Description
The NERC CIP Compliance Specialist plays a critical role in ensuring full compliance with NERC Critical Infrastructure Protection (CIP) cybersecurity standards and supporting broader corporate cybersecurity initiatives. This position works closely with site Subject Matter Experts (SMEs), operations leaders, and corporate compliance personnel to maintain consistent, audit-ready evidence and a secure Bulk Electric System (BES) environment.
Key responsibilities include internal compliance assessments, Cybersecurity Incident Response drills, audit preparation and evidence validation, corrective action tracking, and support for continuous improvement across all assigned sites.
Essential Duties and Responsibilities
- Monitor and validate compliance with FERC and NERC CIP requirements across assigned sites, including evidence management, self-certifications, spot checks, data submissions, and mitigation plan support.
- Conduct internal site compliance assessments to verify evidence accuracy, investigate potential issues, and ensure audit readiness at all times.
- Collaborate with the NERC CIP Director, CIP Senior Managers, and Compliance peers to develop, refine, and maintain the company's NERC CIP compliance framework.
- Review daily CIP compliance tasks within compliance-tracking software; provide actionable feedback to SMEs and stakeholders.
- Lead or support Cybersecurity Incident Response drills, tabletop exercises, and awareness training.
- Deliver ongoing regulatory and cybersecurity training to station personnel and SMEs.
- Work independently or collaboratively on compliance initiatives, providing value-added insights and improvements.
- Support cross-functional cybersecurity initiatives as needed.
- Perform other duties as assigned.
- Bachelor's degree in a related field or equivalent industry experience.
- Demonstrated experience with NERC CIP standards and operational cybersecurity requirements.
- Strong technical proficiency, including Microsoft Office, document management tools, and compliance-tracking systems.
- Ability to pass and maintain a 7-year background check, personal risk assessment, and clean driving record as required under NERC CIP.
- Ability to travel 25-35% to conduct assessments (air, rental vehicles, industrial facility access).
- Ability to work in industrial environments involving PPE, climbing, bending, and exposure to plant conditions.
- CompTIA Security+, Network+, or similar cybersecurity certifications.
- Knowledge of IT, networking, ICS/SCADA/PLC/DCS systems.
- Experience with power plant operations, utility compliance, renewable or conventional generation assets.
- Strong analytical, documentation, and problem-solving skills.
- High attention to detail, adaptability, and the ability to manage multiple priorities.
- Excellent written and verbal communication abilities.