Supervisor, Critical Infrastructure Protection and - Edmonton, Canada - Atco Ltd.

Atco Ltd.

Verified Company

Edmonton, Canada

2 weeks ago

Posted by:

Sophia Lee

beBee Recruiter

Description

Division:
Operations, Electricity Division

Location:
Edmonton, AB (Hybrid)

Position Summary:

Always there. Anywhere. _That's us We are committed to delivering inspired solutions for a better world. We care about our communities, we care about each other, and we care about showing up for those who need us. We never break a promise and we have the courage to do the right thing, even when it's hard. We take pride in holding ourselves to the highest standard of integrity and excellence in all that we do.

The Supervisor CIP and SOC Compliance is an integral member of the ATCO Electric leadership team.

Strong leadership skills, technical expertise, the ability to efficiently manage difficult situations and complex compliance requirements while providing mentorship and guidance to their teams as well as other ATCO Electric business teams is essential to this role.

The Supervisor CIP and SOC Compliance will be expected to develop policy, process, procedures, and internal controls to ensure operations technology systems are compliant and meet best practices for cyber security.

The supervisor will also be required to develop compliance controls for new AESO CIP and SOC reliability standards by providing guidance and leadership to the business teams responsible for compliance.

We're looking for someone who cares about their work and strives for more each day. Someone who challenges the status quo, embraces change, and thrives in a collaborative work environment.

If you are someone who approaches work with passion, curiosity and the courage to innovate, then this role is for you.

What You Get to Do:

Solves complex problems and takes broad perspective to identify innovative solutions for compliance and operational technology initiatives.
Manage cross functional projects, programs, or initiatives.
Coordinating audits, preparing reports, developing, and maintaining performance metrics, conducting selfcertifications, spot checks, and investigations, issue handling, facilitating reporting and violation mitigation.
Participate in industry lead focus teams on CIP and ARS compliance.
Assist with the development, implementation, and maintenance of an Operational Technology (OT) with emphasis on Electronic and Physical Security Requirements, and other regulations as assigned.
Ensures that all documentation is current, complete, accurate and in compliance with applicable regulatory standards.
Lead cross functional teams and engage in activities such as clarifying responsibilities and commitments, handoffs, training, and communication.
Expected to remain current with evolving OT cybersecurity and regulatory requirements to ensure completeness of requirement inventory and compliance evidence.
Respond to ad hoc requests from other lines of business and compliance oversight organizations to ensure timely oral and written communication.
Support Corporate Security requirement owners in the development, implementation, and maintenance of effective controls.
Lead written responses to regulatory data requests, investigations, compliance and regulatory audits and customer inquiries.
Conduct quality reviews on compliance activities.
Develop documentation related to audit findings, selfreports, root cause analysis, mitigation plans and evidence of completion.
Monitor developing or evolving compliance obligations to ensure compliance with national, regional, and local regulations. Developing new metrics as needed.
Monitor compliancerelated metrics, Implement AESO / NERC selfreporting process, including making noncompliance determinations and preparing selfreports and mitigation plans to the regulator.
Validating, through gap analysis and selfcertification, that complete and accurate evidence of compliance exists for the CIP standards and applicable System Operations Control Center Standards.
Participate, monitor, and track compliance mitigation action plans from initiation through closure.
Support requests from ATCO Electric and CIP and SOC compliance Teams.
Preparing presentations on compliance topics for Corporate Security, as needed.
Develop and enhance compliancerelated training.

Qualifications:

Bachelor's degree in engineering, information technology and or equivalent.
Minimum 12 years experience in a leadership position preferred.
Prior experience leading CIP compliance programs preferred.
The ability to effectively communicate both orally and in writing, to both technical and nontechnical individuals, and to give presentations to large groups is required.
Class 5 or Valid Driver's License with a clean abstract and able to maintain same.

What You Will Need To Be Successful:

Three (3) to (5) years of experience in compliance including some experience in electronic and physical security controls and industry standards
Prior regulatory reporting and auditing experience preferred
CISSP or CGIP Certification preferred
Willingness to embrace new tech