Analyst II Cyber Security Compliance

If you have what it takes to become part of the Vistra family and would like to start a promising career with a global leader, take a look at the exciting employment opportunities that are currently available and apply online.

Job Summary

The Analyst for cyber compliance will administer controls to maintain adherence with regulatory rule sets and internal policy, investigate variances and escalate when needed.

They will be responsible for making sure the required evidence documentation is accurate to ensure effective compliance.

They will be responsible for maintaining the confidentiality, integrity and availability of information assets and ensuring that compliance drives operational best practices, delivering on agreed upon service expectations and procedures.

The analyst is expected to participate in and provide support to audit processes and lead remediation steps for findings.

Job Description

Key Accountabilities

• I nvestigate and address variances by performing root cause analysis and developing corrective actions to mitigate the potential of recurrence and advise management of the same.
• Produce required logs, evidentiary records & other items as needed.
• Support efforts to prepare, coordinate and submit materials responsive to regulatory reporting requirements, internal and external audits and other Requests For Information.
• Exercise critical thinking and problem solving to research and document processes supporting applicable regulations, identify efficiency and automation opportunities and work with process owners to implement agreed-upon solutions.
• Monitor stakeholder control performance and provide guidance as needed to ensure adequate evidence of compliance
• Efficiently and accurately perform periodic monitoring controls required to maintain and evidence compliance with internal and external regulatory obligations.
• Support technology key controls, tools and compliance with regulatory requirements(i.e. ERCOT, NERC-CIP, PCI, NACHA, SOX, NEI)

Education, Experience, & Skill Requirements

• Experienced gained through college degree programs and or certifications in business, technology, or related field
• 2-4 years experience with an understanding in one or more of the following : NERC CIP, ERCOT Protocols, ISO 27001, NIST 800-53, SOX, PCI, NACHA , NRC
• Exceptional reading comprehension and written communication skills
• Experience with application development or a coding technology language such as (VBA, PowerShell, Python, Ruby, C++, etc.)
• Working knowledge of agile framework and methodology
• Professional certification a plus (e.g., CISM, CISA, CISSP, Digital Design)
• Experience facilitating agreement across a wide range of disparate stakeholders
• Experience with ICS devices, Generation or Transmission assets

Key Metrics

of compliance controls completed on time

of control performance effectiveness

of control performance automation

LI-Hybrid

LI-ND1

Job Family

Information Technology

Company

Energy Harbor Nuclear Op

Locations

Perry

Ohio

We are a company of people committed to : Exceeding Customer Expectations, Great People, Teamwork, Competitive Spirit and Effective Communication.

If this describes you, then apply today!

If you currently work for Vistra or its subsidiaries, please apply via the internal career site.

It is the policy of the Company to comply with all employment laws and to afford equal employment opportunity to individuals in all aspects of employment, including in selection for job opportunities, without regard to race, color, religion, sex, sexual orientation, gender identity, pregnancy, national origin, age, disability, genetic information, military service, protected veteran status, or any other consideration protected by federal, state or local laws.

If you are an individual with a disability and need assistance submitting an application or would like to request an accommodation, please email us [email protected] make a request.