city seal

City of Austin - JOB DESCRIPTION

city seal

Critical Infrastructure Protection Compliance Program Manager
FLSA: Standard/Exempt EEO Category: (20) Professionals
Class Code: 15303 Salary Grade: ZR5
Approved: December 06, 2006 Last Revised: June 06, 2019

Purpose:
 

Under limited supervision, the Critical Infrastructure Protection (CIP) Compliance Program Manager functions as a Compliance professional with respect to CIP-related electric industry reliability standards and operating guides  promulgated by the Federal Energy Regulatory Commission (FERC), Public Utility Commission of Texas (PUCT) or Electric Reliability Council of Texas, Inc. (ERCOT) (Reliability Requirements) regarding CIP and cyber security matters. This role will manage and oversee  activities and programs to assist Austin Energy in complying with CIP-related Reliability Requirements.

 
Duties, Functions and Responsibilities:
  Essential duties and functions, pursuant to the Americans with Disabilities Act, may include the following. Other related duties may be assigned.

 

  1. Monitor applicable FERC/NERC/PUCT/TRE/ERCOT Reliability Requirements.
  2. Track proposed changes, including providing information to appropriate Austin Energy Subject Matter Experts (SMEs) to allow timely comment or voting on such matters. This role includes drafting comments to the applicable regulatory authorities. 
  3. Lead cross-functional teams in attempting to ensure enterprise-wide compliance.
  4. Oversee the development, review and approval of written policies and procedures necessary for compliance.
  5. Assist in developing/maintaining compliance monitoring systems and programs regarding compliance, including processes for self-reporting non-compliance events.
  6. Coordinate responses to requests for information, audits, spot checks and compliance activities.
  7. Assist the Reliability Compliance Director in managing the internal and external audit processes required to maintain consistent standards to assist in compliance.
  8. Provide support to any disputes.
  9. Advise the Reliability Compliance Director on the state of the Company's compliance with regard to Reliability Requirements.
  10. Represent Austin Energy in Reliability Requirement development activity and inform appropriate staff of Reliability Requirements and initiatives. 
  11. Develop and implement internal processes to assist in compliance. 
  12. Train appropriate staff and managers for compliance and maintain training records as appropriate. 
  13. Monitor and report on compliance with and/or violations of Reliability Requirements. 
  14. Advise management, as needed and as requested by the Reliability Compliance Director, on the state of the Company's compliance. 
  15. Assist work groups with systems development, implementation, integration and analysis. 
  16. Assist the Reliability Compliance Director in managing annual budgets including preparing short and long-term spending plans. 

 

 
Responsibilities - Supervisor and/or Leadership Exercised:
 

 

  • Provide leadership, work assignments, evaluation, training and guidance to others.

 

 
Knowledge, Skills, and Abilities:
  Must possess required knowledge, skills, abilities, and experience and be able to explain and demonstrate, with or without reasonable accommodations, that the essential functions of the job can be performed.

 

  • Knowledge of NERC and TRE CIP-related Reliability Standards 
  • Knowledge of ERCOT Protocols and Operating Guides
  • Knowledge of systems used to forecast, evaluate, monitor and control the transmission grid and generation resources
  • Knowledge of International Organization for Standardization (ISO) quality management systems requirements 
  • Knowledge of National Institute of Standards and Technology (NIST) cyber security framework
  • Knowledge of electric industry operations and evolving national and Texas regulatory developments 
  • Knowledge of the Company’s transmission and generation operations 
  • Knowledge of utility financial practices, including budget preparation, financial, regulatory and managerial accounting practices
  • Knowledge of public agencies and commissions 
  • Skill in oral and written technical and/or general communication including preparation of written reports 
  • Skill in handling conflict resolution
  • Skill in working with relational databases
  • Skill in Governance, Risk & Compliance (GRC) applications and software
  • Skill in developing and understanding internal controls
  • Skill in performing risk-based assessments 
  • Strong leadership and communication skills 
  • Project Management experience

 

 
Minimum Qualifications:
 

 

  • Graduation with a Bachelor’s degree from an accredited college or university with major course work in a field related to the job and six years of experience working in Information Technology (IT) or Industrial Control System (ICS) design or operations, preferably with hands-on experience in an IT or ICS environment.
  • Related experience working on cyber security matters in IT or ICS environments may substitute for the required degree, with a maximum substitution of 4 years.
  • A Master’s degree in a field related to the job may substitute for experience up to two years.

 

 

 
Licenses and Certifications Required:
 
  • None.

This description is intended to indicate the kinds of tasks and levels of work difficulty required of the position given this title and shall not be construed as declaring what the specific duties and responsibilities of any particular position shall be. It is not intended to limit or in any way modify the right of management to assign, direct and control the work of employees under supervision. The listing of duties and responsibilities shall not be held to exclude other duties not mentioned that are of similar kind or level of difficulty.