Job description
Job Title: Lead Cyber Compliance Analyst
Job Code: 107943
Job Description
Introduction:
Develop, maintain, and execute the NiSource Cyber Assessments program, also known as Third Party Risk Management, and Technology support. Cyber Assessments include corporate and technology Control Assessments using Fortress and coordinating independent assessments such as penetration tests, NIST CSF, and mock regulatory reviews. Technology supports focuses on our enterprise Archer implementation and Fortress solution. The Cyber Assessments Analyst will work collaboratively with numerous teams including NERC CIP Compliance, Pipeline Compliance, Innovation, Supply Chain and the business. This role is responsible for executing the Cyber Assessment program and driving the effective use of Fortress and Archer, including upgrades, dashboards and metrics. Works closely with the Director of Cyber Compliance, the Manager Cyber Assessments, the Manager(s) Cyber Compliance, and others as needed to ensure that all assessment results are addressed and leverages Fortress and RSA Archer and their adoption.
Key outcomes for success include:
NiSource has an effective Cyber Assessments program, leveraging Fortress and reducing vendor risk. The program must effectively communicate results to management, vendor relationship owners, and supply chain.
NiSource Cyber Assessments partners with Supply Chain and Cyber Vulnerability Management for a cohesive Fortress implementation, including Supply Chain vendor onboarding and contract renewal processes.
RSA Archer is an effective tool for Innovation, Cyber Compliance and expands to additional business units. Interfaces with key NiSource systems of record (i.e. Workday, Service Now, etc.).
Analyze vendor risk posture, identify risk items, tracking of exceptions, and other data to assist management in making more informed decisions relative to vendor management.
Help ensure that NiSource and contracted services are performed to satisfaction.
Positive business perception of Cyber Assessments services through proactive actions.
Lead Analyst Essential Responsibilities:
Perform and oversee routine and complex assignments in the Cyber Assessment Analyst job band, under the direction of the Director of Cyber and the Manager Cyber Assessments.
Work closely with the business, OT, IT, and Cyber, Physical Security and other areas of NiSource, and Service Providers to perform and/or support Cyber Assessment processes. Build relationships with these groups.
Manage the development and implementation of the roadmaps for Cyber Assessments, Archer, and Fortress Control Assessments
Lead and execute the Cyber Assessment (CA) program, ensuring a methodology is used and communicated relative to when a CA is performed, risks are mitigated, results are communicated, and metrics are produced supporting the program.
Conduct independent cyber assessments and develop plans supporting the business, Cyber, IT, OT, and the Innovation line of business ensuring Supply Chain processes are adhered to. Reviews must meet stated objectives, budget requirements, timeline requirements and reporting/readout requirements.
Serve as the Fortress Control Assessments lead, contributing to the direction of the product, how to leverage the tool, and the ongoing process improvement/business benefit to NiSource.
Serve as the Archer SME, contributing to the direction of the product, our leveraging of the tool, and the ongoing business benefit to NiSource; Serves as an Archer ambassador across NiSource as to capabilities and expanded adoption.
Manage status of and facilitate audit/issues tracking and resolution for issues related to Cyber Assessments.
Advance the use and adoption of Archer RSA to maintain and manage risk, compliance, policy monitoring and tracking, and additional use cases when deployed.
Other duties as assigned.
Required Qualifications for Lead Analyst Position
Bachelor’s Degree or equivalent work experience that provides knowledge and exposure to fundamental theories, principles, and concepts.
Knowledge of IT infrastructure components, trends, and best practices.
Demonstrated skills with computers, operating systems, and software (MS Office 365 suite of products) and ability to learn new technical concepts quickly.
Excellent analytical abilities, including process analysis and development, problem solving and root cause analysis.
Strong teaming skills, collaboration, negotiation, communication, organizational, people management and conflict resolution skills.
Willing to travel to NiSource business unit or Service Provider locations, as needed.
Lead Analyst
-
6+ years of IT experience in varying support functions
-
In-depth experience with ITIL processes and metrics (must be ITIL V3 certified)
-
Demonstrated experience in leading multiple process improvement initiatives
-
Excellent written and verbal communication
-
Experience in Project Management Fundamentals (PMP certification is a plus)
-
Proven track record in leading successful delivery of technical projects
-
Can work independently in multiple functional domains
Can work independently in multiple functional domains with minor assistance
Preferred Additional Qualifications for Position
-
Solid understanding of NIST 800-53 v5 Control sets.
-
ITIL V4 certification
-
Demonstrated experience in Microsoft Excel and Word
-
Demonstrated experience in SharePoint
-
Demonstrated experience in ServiceNow
-
Experience using RSA Archer GRC tool
-
NiSource business operations knowledge
-
Working knowledge of the gas and electric utility industry; additional experience a plus
Disclaimer
The preceding description is not designed to be a complete list of all duties and responsibilities required of the position.
Inclusion & Diversity
Value inclusion within your day to day responsibilities by respecting others perspectives/convictions, engaging others opinions, creating a safe environment where people, ideas, and opinions are valued within your Team/Customers and external partners.
Respect and take into consideration diversity within your Team/Customers and external work partners by valuing different world views, challenges, and cultures that represent all walks of life and all backgrounds.
Treat others with respect and consideration. Actively participate in creating and contributing to a positive work environment.
Equal Employment Opportunity
NiSource is committed to providing equal employment opportunities in each of its companies to all employees and applicants for employment without regard to race, color, religion, national origin or ancestry, veteran status, disability, gender, age, marital status, sexual orientation, gender identity, genetic information, or any protected group status as defined by law. Each employee is expected to abide by this principle.
NiSource is committed to providing equal employment opportunities in each of its companies to all employees and applicants for employment without regard to race, color, religion, national origin or ancestry, veteran status, disability, gender, age, marital status, sexual orientation, gender identity, genetic information, or any protected group status as defined by law. Each employee is expected to abide by this principle.
By applying, you may be considered for other job opportunities.
Safety Statement
Promote a safe work environment by actively participating in all aspects of our employee safety program. Report any unsafe conditions and take actions to prevent personal injuries. Support our interdependent safety culture by ensuring the safety of your co-workers. Stay focused on the task at hand and promote productivity through good work habits.
Promote a safe work environment by actively participating in all aspects of our employee safety program. Report any unsafe conditions and take actions to prevent personal injuries. Support our interdependent safety culture by ensuring the safety of your co-workers. Stay focused on the task at hand and promote productivity through good work habits.
Posting Start Date:
2023-03-20
Posting End Date (if applicable):
Please note that the job posting will close on the day before the posting end date.
learninglandscape.com is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, learninglandscape.com provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, learninglandscape.com is the ideal place to find your next job.