Qualifications
· Mid to Senior Level Experience
· CISSP Certification is a MUST
· Nice to have a PMP Certification
· ISO27001/NIST and/or NERC-CIP experience MUST
· Contract to Hire after 6 Months (or Client may directly hire)
· USCs or GC, sponsorship not available
Candidate is required to work on-site. After few months, Client may accept 3 days on site, 2 days off site and it is not GUARANTEED.
Description: Our Client is a large engineering, architectural, construction, environmental and consulting services company with several locations In the United States
NERC CIP Program Manager whose primary responsibility will be to partner with Project Controls Manager to horizontally manage all NERC CIP compliance project. These projects will include cross functional (Generation, Information Technology and Transmission & Distribution) and cross version (NERC CIP V3, V4 and V5) efforts.
Job Responsibilities:
· Establish the NERC CIP Compliance Program and adapt (and modify as needed) to the KCP & L Projects Governance Model as defined by the KCP & L Projects Controls Office.
· Manage program to highest quality and standards, and ensure program components are consistent KCP & L NERC CIP Compliance vision and mission.
· Bring NERC CIP Compliance implementation uniformity to KCP&L Transmission & Distribution, Power Generation and Information Technology divisions.
· Bring NERC, FERC and Regional Entities NERC CIP Compliance perspective to CLIENT divisional Subject Matter Experts (SMEs).
· Establish Program level executive reporting model per CLIENT standards.
· Create and periodically present to CLIENT Executives, CIP Steering Committee and Stakeholders a consolidated summarized and transparent program level view/reports of:
o Program/Projects Execution
§ Plan & Schedule
§ Work Breakdown Structure
§ Resource Allocations & Dependencies
§ Critical Paths and Completion Status
§ Milestone Map
o Success, Issues, Risks and Solutions
o Integration (Generation, Transmission and Information Technology)
o Budgets and Forecasts
Create and Ensure NERC CIP Projects Controls are implemented and reported for:
o Budget and Cost
o Scope and Schedule
o Risk and Issues
o Quality and Resource Management
o Communications, Escalations and Reporting
o
· Coordinate with Project Controls Office to escalate and represent program/project issues.
· Establish a Compliance Information Technology and Information Security verification/quality-assurance plan.
· Periodically provide consolidated view of verification/quality-assurance plan execution to the key stakeholders.
· Ensure the projects are prioritized based on CLIENT Compliance Risk and Operational (Generation, Transmission and Information Technology) availability and adaptability.
· Track industry movement and bring impact view of regulatory changes to CLIENT NERC CIP Program, Stakeholders and Executives.
· Ensure CLIENT’s compliance burden is minimum at all levels without compromising compliance obligation.
· Ensure internal compliance control program for NERC CIP Standards is established in a manner that can be practiced by Substations, Power Plants and Controls Systems staff.
· Prepare and provide guidance for Regional Entity and Third Party audits to demonstrate compliance with NERC CIP Standards.
· Create and implement remediation and corrective action plans for compliance areas of concerns.
· Coordinate and Assist in investigation of compliance areas of concerns.
· Work closely with Technical and Procedural compliance teams to ensure solutions are designed to meet compliance obligations for current and future NERC CIP versions in Transmission, Generation and Information Technology.
· Develop and Implement a NERC CIP Compliance Governance Model for Information Technology, Transmission & Distribution and Generation.
· Provide technical and compliance guidance to meet NERC Compliance Monitoring and Enforcement Program (CMEP) for Generation, Transmission and Information Technology divisions.
· Define NERC CIP Compliance Projects objectives, budgets and oversee quality control throughout execution.
This subject area will be led by a NERC CIP Project Manager who will plan & direct schedules and monitor budget & spending, and organize external and internal project activities, ensure completion of the projects on schedule and within budget. The NERC CIP Project Manager will work closely with NERC CIP Program Manager and CLIENT Project Controls and IS Compliance Office to plan and execute projects according to the established best practices and expected rigor. The primary responsibilities may include but not limited to:
· Direct the work of team members to assure technical and financial milestones are met.
· Direct and manage project development from beginning to end including defining project scope, goals and deliverables that support NERC CIP Compliance goals.
· Adhere and adapt to CLIENT Project Controls Implementation Methodology to ensure uniformity in execution and reporting.
· Identify and implement Project Controls specific to NERC CIP Projects.
· Develop and maintain ful-scale Project Execution Plan(PEP) that includes:
o Detailed Milestones and Tasks Identification & Scheduling
o Resource Scheduling and Allocation
o Work Breakdown Structure
o Change Control Protocols
o Issues Logs
o Risk Matrix
o Critical Path
o Project Dependencies
o Quality Control Plans
· Create and Provide weekly reports for each project that includes project data for CLIENT and Suppliers including Client and other third Parties:
o Resource & Scope
o Time Summary (allocated, actual and forecasted)
o Financials (budgeted, actuals, forecasted)
o Issues & Risks
o Tasks Completion Status
o Quality Assurance/Check
o Other reports deemed necessary by NERC CIP Program Manager
· Effectively communicate project expectations to CLIENT team members and stakeholders.
· Draft and submit project change requests, change reasons & necessities and recommend time, resource and budget impacts.
· Track project milestones and deliverables.
· Proactively manage changes in project scope, identity potential crises, and devise contingency plans.
· Work with the Project team, including sub-contractors and sub-consultants, to identify the technical and process solutions to be employed and deliverables that will be furnished at the completion of the Project.
· Schedule and assign resources to verify that Project objectives and schedule are achieved.
· Review Project expenditures, coordinate with program management team, and actively manage the Project budget.
· Identify NERC CIP Compliance risks and improvement areas.
· Ensure milestones and tasks are driven to achieve and demonstrate compliance by Standards Effective Dates.
· Create and maintain a consolidated NERC CIP compliance project plan covering efforts for:
o Information Technology – Planning & Active Management
§ V3 – Remediation Implementation Plans
§ V3 – Annual Compliance Obligations
§ V3 – Audit Preparations
§ V3 - Self Certification
§ V3 - Post Audit Mitigation Plans
§ V4/V5 – Transition Plans
o Transmission & Distribution
§ V3 – Audit Readiness
§ Active Management
§ V4/V5 – Analysis
§ Active Management
§ V4/V5 – Controls Implementation & Verification
§ Budgeting & Planning
§ Active Management
o Generation
§ V4/V5 – Implementation & Verification
§ Budgeting & Planning
§ Active Management