Senior Compliance and Risk Analyst

Juno Beach, FL, US, 33408

NextEra Energy

View company page

Requisition ID:  78380 

Florida Power & Light Company is America’s largest electric company, providing clean, affordable, and reliable electricity to more than 12 million people in Florida. We operate one of the cleanest power generation fleets in the U.S. and our reliability is among the best in the nation. Our goal is to achieve Real Zero carbon emissions from our operations by 2045 by expanding our solar capacity, increasing battery storage and bringing new renewable energy opportunities to Florida, while improving customer affordability and reliability. Are you interested in becoming a game-changer in the energy industry?  Join our world-class team today! 

 

Position Specific Description

Our Operation Services Department is looking for a Sr. Compliance & Risk Analyst to join their Risk Management team.  This position will work within the NERC CIP Center of Excellence, which is focused on identifying, specifying, and continuously monitoring indicators of NERC Critical Infrastructure Protection (CIP) compliance across all business units.  This position will lead in planning, developing, and implementing a comprehensive NERC Critical Infrastructure Protection (CIP) compliance program. Program components will include establishing a governance model for the execution of enterprise processes related to each of the applicable CIP standards / requirements.  This opportunity will also include leading efforts associated with continuous improvements focusing on automation and sustainable, enterprise-wide processes for each of the applicable CIP standards.

 

The selected candidate for this role will:

•    Identify root cause of process failures.
•    Develop and monitor mitigation plans that include an effective extent of condition.
•    Perform process capability assessments for completeness, accuracy, quality of evidence, failure modes, and ability to satisfy compliance.
•    Identify failure modes and determine the processes defect escape probability (FMEA).
•    Identify and assess effectiveness of process internal controls.
•    Understand the elements of and perform risk assessments.
•    Identify methods to design, measure, implement, and assess Internal Controls for effectiveness to reduce inherent risk of failure mode.
•    Risk assessments – identify inherent risk within a process and residual risk after internal controls are implemented.
•    Develop and measure metrics to monitor compliance.
•    Develop and implement opportunity for improvements.

 

The position primary location is Jupiter West (JW), located in Jupiter, FL, but it open to Lejeune Flagler Office (LFO) located in Miami, FL.

 

We truly have the best team in the business.  Apply today to be a part of it!

Job Overview

This job supports teams facilitating internal solution development across business units, to align Cybersecurity risk, leading technology solutions, and user experience. This position is responsible for various aspects of achieving compliance of cybersecurity including developing, implementing and enforcing IT policies, standards, methodologies and awareness using a risk based approach. Employees in this role develop a deep understanding of NextEra’s technology footprint, technology strategy, threat landscape and risks, to establish a collective Cyberstrategy.

Job Duties & Responsibilities

  • Builds processes and tools to provide the business visibility of cybersecurity risks and drive accountability
  • Develops and maintains policies, standards, processes, and procedures to assess, monitor, report, escalate and remediate cyber risk while maintaining corporate compliance with mandated security regulations
  • Assesses and reviews security and controls to ensure sustainable regulatory compliance
  • Develops processes and monitoring to identify, quantify, analyze, and report risk and compliance status
  • Coordinates cyber risk management efforts including identification, assessment, tracking and resolution of risk management activities across all levels of the organization
  • Assists with training, including training material development and deployment to ensure that compliance and risk becomes a sustainable business practice
  • Gathers and prepares documentation to support audits, self-assessments, data requests, etc.
  • Performs other job-related duties as assigned

Required Qualifications

  • High School Grad / GED
  • Bachelor’s or Equivalent Experience
  • Experience: 4+ years

Preferred Qualifications

  • Bachelor’s Degree
  • Certified Information Systems Aud (CISA) certification
  • Project Management Professional (PMP)
  • Six Sigma Green Belt Certified

 

Employee Group:  Exempt
Employee Type:  Full Time
Job Category:  Information Technology
Organization:  Florida Power & Light Company 
Relocation Provided:  No

 

NextEra Energy is an Equal Opportunity Employer. Qualified applicants are considered for employment without regard to race, color, age, national origin, religion, marital status, sex, sexual orientation, gender identity, gender expression, genetics, disability, protected veteran status or any other basis prohibited by law. We are committed to a diverse and inclusive workplace.

 

NextEra Energy provides reasonable accommodation in its application and selection process for qualified individuals, including accommodations related to compliance with conditional job offer requirements, consistent with federal, state, and local laws. Supporting medical or religious documentation will be required where applicable and permitted by applicable law. To request a reasonable accommodation, please send an e-mail to recruiting-coordinator.sharedmailbox@nexteraenergy.com, providing your name, telephone number and the best time for us to reach you. Alternatively, you may call 1-844-694-4748. Please do not use this line to inquire about your application status.

 

NextEra Energy will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information.

 

NextEra Energy does not accept any unsolicited resumes or referrals from any third-party recruiting firms or agencies. Please see our policy for more information.

#LI-JA1 

Apply now Apply later
  • Share this job via
  • or

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Audits Automation C CISA Compliance Governance Monitoring NERC CIP Risk assessment Risk management Strategy

Perks/benefits: Career development Health care Relocation support

Region: North America
Country: United States
Job stats:  10  2  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.