NRG Energy, Inc. LOW SITE CIP SPECIALIST in Houston, Texas
NRG is leading a customer-driven change in the U.S. energy industry by delivering cleaner and smarter energy choices, while building on the strength of the nation s largest and most diverse competitive power portfolio. A Fortune 200 company, we create value through reliable and efficient conventional generation while driving innovation in solar and renewable power, electric vehicle ecosystems, carbon capture technology and customer-centric energy solutions. Our retail electricity providers serve almost 3 million residential and commercial customers throughout the country. More information is available atwww.nrg.com. Connect with NRG Energy on Facebook and follow us on Twitter@nrgenergy.
Responsible for overseeing the CIP Low compliance program specific to the NERC Critical Infrastructure Protection standards.
Serve as primary point-of-contact for CIP Low Program. Provide status reports and maintain awareness with all stakeholders.
Working independently, perform and/or coordinate all site specific activities, tests and controls for meeting program requirements and ongoing compliance at CIP Low BES assets
Maintain documentation and procedures to support physical and electronic security plans related to the CIP Low Program
Reconcile discrepancies between documented electronic communication lists and system generated reports.
Serve as point of contact for controlling and documenting access to protected assets in the CIP Low Program.
Serve as CIP Program Lead for logical separation. Maintain NRG standards for logical separation. Perform period validation of logical separation at CIP BES assets.
For new CIP Low BES assets, develop and/or assist in creation of work scope, design of logical and physical controls around systems, implementation and training at site, benchmarking and commissioning.
Assist in preparation for various audits and act as SME for CIP Low Program. Develop recommendations, responses and remediation plans in response to audit findings
Monitor electronic perimeters for potential breaches/vulnerabilities and act as first responder for any potential incident.
Work with CIP Team, plant personnel, Enterprise Security and IT to perform periodic reviews as well as revise structure of security controls based upon changes in regulations
Serve as SME on hardware, software and control architectures for CIP Low BES Assets. Utilize best practices and knowledge of internal/external issues to improve or recommend technical or compliance solutions.
Work with vendors to ensure solutions deployed are compliant to regulations and in alignment with corporate standards.
Escalate any potential violations or near misses for consideration as self-reports
Serve as CIP Duty Specialist, on a rotating basis. Duties include monitoring security applications and performing access removal tasks.
Bachelor s degree with a concentration in computer science, engineering, management information systems or related field or equivalent experience, or 8-10 years of experience in Information Technology industry or Industrial Controls
Experience working under the NERC Critical Infrastructure protection (CIP) standards is preferred
Security certification such as CISSP is preferred
At least 5 years experience in an industrial controls environment (power plant/energy, manufacturing, utility, or equivalent) with working knowledge of SCADA/DCS systems and related hardware, software, and networks
Working knowledge of basic security and networking concepts including: LAN/WAN, firewalls, routers and switches, VPN, encryption, IDS/IPS sensors
Knowledge and identification of network infrastructure threats or virus, intrusion containment and mitigation techniques
Experience working security tools such as anti-malware, intrusion detection, configuration management, and firewall analysis and design
Demonstrated ability to work independently and as a team member
Demonstrated ability to set priorities, and to respond to changing demands from multiple sources
Demonstrated ability to communicate (verbal and written), with all levels of internal and external customers
Demonstrated presentation skills; planning and organizing skills
Demonstrated analytical and problem solving skills
Ability to exercise discretion and independent judgment in applying established techniques, procedures or standards; demonstrated ability to maintain confidentiality
Ability to respond to issues and concerns 24 hours a day; ability to work additional hours; and flexibility to travel, domestically 20% of the time
NRG Energy is committed to a drug and alcohol free workplace. To the extent permitted by law and any applicable collective bargaining agreement, employees are subject to periodic random drug testing, and post-accident and reasonable suspicion drug and alcohol testing. EOE AA M/F/Vet/Disability Level, Title and/or Salary may be adjusted based on the applicant's experience or skills. Official description on file with Human Resources.
NRG Energy is committed to a drug and alcohol free workplace. To the extent permitted by law and any applicable collective bargaining agreement, employees are subject to periodic random drug testing, and post-accident and reasonable suspicion drug and alcohol testing. EOE AA M/F/Protected Veteran Status/Disability
EEO is the Law Poster(The poster can be found athttp://www.eeoc.gov/employers/upload/posterscreenreader_optimized.pdf)
Level, Title and/or Salary may be adjusted based on the applicant's experience or skills.
Official description on file with Human Resources