At PGE, our work involves dreaming about, planning for, and realizing a smarter, cleaner, more enduring Oregon neighborhood. Its core to our DNA and we haven’t stopped since we started in 1888. We energize lives, strengthen communities and drive advancements in energy that promote social, economic and environmental progress. We’re always on the lookout for people passionate about leading and being a part of teams that are advancing innovative clean energy solutions that are also affordable and accessible to all.

This position is posted at 2 levels.

Staff Operational Compliance Analyst / Senior Operational Compliance Analyst

Job Function

In this role, you will have the unique opportunity to join our Operational Technology (OT) Cybersecurity team! OT Cybersecurity is a department of dedicated Compliance Analysts and Cybersecurity Specialists that support Transmission & Distribution (T&D) Cybersecurity and North American Electric Reliability Corporation (NERC) Critical Infrastructure Protection (CIP) compliance programs for PGE’s operational assets.

Our team is responsible for subject matter expertise in Cybersecurity practices relevant to Operational Technology and for developing and overseeing the implementation of a roadmap to reduce the risk of Cybersecurity events impacting PGE’s operational systems. OT Cybersecurity also oversees the development and operation of the T&D and Generation NERC CIP compliance programs, interfacing with a wide range of teams who perform planning, design, and hands-on work to ensure the reliable operation of the Bulk Electric System.

In this role you will support the Generation and T&D operational units by writing and establishing standards and procedures, gathering support documentation, and collaborating with other internal business units to ensure compliance with NERC CIP Cybersecurity reliability standards.

Staff Operational Compliance Analyst

Key Job Information

• Requires in-depth knowledge and experience regarding NERC CIP regulations, requirements and standards.

• Uses best practices and knowledge of internal or external business issues to improve processes or services.

• Solves complex problems; takes a new perspective using existing solutions.

• Works independently; receives minimal guidance.

• Acts as a resource for colleagues with less experience.

Key Responsibilities

• Executes operational procedures, processes and practices under supervision, researches and analyzes NERC CIP regulations, requirements and standards.

• Provides guidance on implementation of NERC CIP Cybersecurity standards.

• Drives implementation of new CIP standards in Generation and T&D business units using project management skills, tools, and techniques.

• Coordinates with various business units to ensure consistent, efficient, and achievable practices.

• Supports tracking and documentation of data related to compliance controls. Identifies gaps and suggests remediation strategies. Collaborates with Corporate Regulatory Compliance on companywide compliance reviews.

• Responds to questions about CIP compliance standards and regulations, procedures and processes. Provides guidance and training to others within operational domain.

• Researches changes in technology (with a focus on cybersecurity and operational technology (OT)) process or regulation. Analyzes implications. Determines which procedures may be impacted and how. Recommends changes to operational processes.

• Assists with internal and external audits of federal regulatory compliance matters conducted throughout the company.

Education/Experience/Certifications

• Requires a bachelor’s degree in finance, business, technical field or other related field or equivalent experience.

• Typically, five or more years in combination with compliance and one or more years of utility operations, cyber security or auditing, which includes at least two years of FERC/NERC.

• NERC certification preferred.

• FERC/NERC, Generation, T&D, and OT Cybersecurity experience.

• CISSP or other cybersecurity certification.

• Knowledge of business processes and procedures in operational domain (Transmission & Distribution and/or Generation, combined with Information Technology and/or Cybersecurity).

• Intermediate knowledge of relevant NERC CIP Cybersecurity regulations and reliability standards.

• Ability to perform under high pressure with attention to detail.

• Ability to work independently and within a team.

• Ability to take the initiative to take action, problem solve and find solutions.

• Strong time management skills.

• Knowledge of corporate and operational compliance and risk management principles and protocols.

• Intermediate skills in using database and documentation tools.

Senior Operational Compliance Analyst

Key Job Information

• Requires specialized depth and/or breadth of expertise regarding NERC CIP regulations, requirements and standards.

• Interprets internal or external business issues and recommends best practices.

• Solves complex problems; takes a broad perspective to identify innovative solutions.

• Works independently, with guidance in only the most complex situations.

• May lead functional teams or projects

Key Responsibilities

• Executes operational procedures, processes and practices with limited supervision, researches and analyzes NERC CIP regulations, requirements and standards.

• Leads and coordinates projects to identify new work standards, procedures and business practices to ensure regulatory CIP compliance.

• Responds to complex questions about CIP compliance standards and regulations, procedures and processes and provides guidance on implementation of NERC CIP Cybersecurity standards.

• Drives implementation of new CIP standards in Generation and T&D business units using project management skills, tools, and techniques.

• Coordinates with various business units to ensure consistent, efficient, and achievable practices.

• Oversees CIP compliance reviews and supports tracking and documentation of data related to compliance controls. Identifies gaps and suggests remediation strategies. Collaborates with Corporate Regulatory Compliance on companywide compliance reviews.

• Researches changes in technology (with a focus on cybersecurity and operational technology (OT)) process or regulation. Analyzes implications. Determines which procedures may be impacted and how. Recommends changes to operational processes.

• Assists with internal and external audits of federal regulatory compliance matters conducted throughout the company. Provides leading functional subject matter expertise.

Education/Experience/Certifications

• Requires a bachelor’s degree in finance, business, technical field or other related field or equivalent experience.

• Typically, eight or more years in combination with compliance and one or more years of utility operations, cyber security or auditing, which includes at least three years of FERC/NERC.

• NERC certification preferred.

• FERC/NERC, Generation, T&D, and OT Cybersecurity experience.

• CISSP or other cybersecurity certification.

• Knowledge of business processes and procedures in operational domain (Transmission & Distribution and/or Generation, combined with Information Technology and/or Cybersecurity).

• Advanced/Expert knowledge of relevant NERC CIP Cybersecurity regulations and reliability standards.

• Ability to perform under high pressure with attention to detail.

• Ability to work independently and within a team.

• Ability to take the initiative to take action, problem solve and find solutions.

• Strong time management skills.

• Advanced knowledge of corporate and operational compliance and risk management principles and protocols.

• Advanced skills in leading others and planning, organizing and executing complex technical studies to demonstrate compliance with regulations and standards.

• Intermediate / Expert skills in using database and documentation tools.

Compensation Range:

$87,225.00 - $173,875.00

Actual total compensation, including a performance based incentive bonus, is commensurate with experience, skills, qualifications, education, training, and internal equity. While we anticipate the selected candidate for this position will fall towards the middle or entry point of the compensation range, the decision will be made on a case-by-case basis.

PGE believes in rewarding dedicated performance. We provide a total rewards package that is designed to reward your contributions to the company, and, at the same time, support your well-being and professional development, both now and into the future. To find out more, click here (https://portlandgeneral.com/hrcs5511) .

Join us today and power your potential!

Assisting with storms or other Company emergencies is a part of all positions at Portland General Electric.

PGE is committed to diversity and inclusion in the workplace and is an equal opportunity employer. PGE will not discriminate against any employee or applicant for employment based on race, color, national origin, gender, gender identity, sexual orientation, age, religion, disability, protected veteran status, or other characteristics protected by law.

PGE does not discriminate on the basis of disability. We recognize individuals have a variety of abilities to offer and we believe there is much to value and celebrate by incorporating different abilities into the work we do. One very important way we live this out is in our application and interview process. We work hard to support individuals who may need an accommodation to fully participate in these processes. If you feel you may need an accommodation, or would like to request one, please notify the Talent Acquisition Specialist (Recruiter) associated with the job posting. You may also make this request by contacting talentacquisition@pgn.com or by calling 503-464-7250. The Recruiter will provide information and next steps for the accommodation process. Our Diversity, Equity & Inclusion (DEI) team is also available for support. You can contact them at dei@pgn.com .

To be considered for this position, please complete the following employment application by the posting close date. Posting closes at midnight (Pacific Time) on the closing date below. If no date is listed, job is open until filled.

At Portland General Electric, we’re innovators, builders, and achievers. We’re committed to powering our customers’ potential and making a difference for our community and the planet. Today, that commitment includes developing an intelligent and resilient electric grid, electrifying transportation and de-carbonizing the energy sector.

We’re proud to deliver an exceptional experience to help our customers thrive. Our mission is to make clean, reliable and affordable energy services available to all. We obsess over serving customers and are committed to growing employee career paths with purpose. Equity and inclusion are core business values; we celebrate our differences and are committed to developing teams that reflect the communities we serve.