23 Feb
Microserve
Canada
CIP Cybersecurity Consultant (13 Month Contract)
Location: Remote or Burnaby, BC/Hybrid (Consultant must be willing to work PST hours)
Staffing Placement Opportunity:
Project Description:
Our client is looking for a IT Cyber Security Compliance Consultant that will provide expert level support to creates and maintains clients cyber security standards and guidelines and compliance sustainment activities such as IT audits to ensure compliance with digital technology and cyber security regulations and policy.
Work Assignment Requirements:
This role is in the Reliability Standards Assurance – Critical Infrastructure Protection (CIP)
Assurance Department within our clients General Counsel and Compliance Office which provides oversight for MRS CIP compliance across the organization. Oversight includes strengthening a culture of compliance, minimizing the occurrence of violations and ensuring our client meets its legal obligations.
This role provides CIP expertise, follows industry developments and conducts benchmarking with other utilities on compliance best practices, supports the organization with implementing CIP practices, performs assurance activities and reports the outcomes to management, set requirements on incident reporting/investigation frameworks, cause analysis, and evidence collection, mitigation planning and continuous improvements, and supports regulatory processes as required.
Other duties include but arent limited to,
• Collaborate with other SMES or team members in completing compliance project/program, audits to ensure our clients compliance with cyber security regulations and policy.
• Lead an audit review on compliance evidence documents by collaborating with CIP Policy Subject Matter Experts (SMEs), cybersecurity and safety teams,
and emergency management team to monitor and assure the development, revision, and update of CIP compliance policies, processes, and procedures and the completion of required auditing records.
• Conduct compliance impact assessments on IT projects and provide guidance on the execution of cyber security related action items by collaborating with project managers to ensure that projects apply cybersecurity best practices and comply with regulations and policy.
• Identify potential cyber security risks and incidents by performing vulnerability assessments, coordinating with internal teams and stakeholders, and monitoring external events and security logs to help our client prepare for possible contingencies.
• Determine remediation options and recommend solutions by analyzing security test results,
confirming the impact of security risks and validating baseline security configurations for operating systems, applications, networking tools, and telecommunications equipment to adequately mitigate cyber security risk for the our client.
What you bring
* University degree or experience in relevant discipline or equivalent combination of education and experience.
* Ability to obtain security clearance for a Security Sensitive Position classification
* A minimum of 10 years of relevant cyber security and/or associated reliability compliance/audit experience in the electric utility industry. Candidates with physical security experience in addition to cyber security experience may be given preference.
* Registered Professional Engineer or security relevant certifications (e.g. CISSP, CISA, CISM, NCSF, PSP) is an asset
* Experience in Industrial Control Systems (ICS)
including SCADA and other Operational Technology (OT) used in the Energy sector would be considered an asset
* Demonstrated and proven experience, ability and knowledge in the following:
- NERC/MRS Programs in both the US and Canada;
- security governance, audit, risk and controls (including experience with designing, evaluating and implementing controls based on common security frameworks, such as NERC CIP, COSO, COBIT, ISO, NIST);
- leading investigations, with ability to analyze and process a high volume of detailed information with accuracy.
* Excellent written and verbal communications skills
* Excellent relationship management, collaboration and interpersonal skills
* Effective presentation skills, including the ability to convey complex technical issues to diverse audiences
* This role requires a combination of demonstrated deep technical security and security management expertise
* Strong leadership skills and ability to influence cross-functional teams
* Must be able to travel to the United States.
Note: This job opportunity is with a Microserve client.
Impress this employer describing Your skills and abilities, fill out the form below and leave Your personal touch in the presentation letter.