Black Hills Energy Corporate Security Compliance Specialist in Rapid City, South Dakota
Corporate Security Compliance Specialist
Location: Rapid City, SD, United States
Job ID: 33187
Date Posted: Oct 3, 2020
Salary: $53050to $79650annually
IT Compliance Specialist's role is to assist in the assessment of technology-related compliance issues across the organization including information security, identity management, user access, and data integrity. This includes working with systems owners and administrators to identify, document and monitor current risks and controls.
SALARY RANGE: $53,050 - $79,650 (Determined by the knowledge, skills and abilities of the applicant.)
REPORTING RELATIONSHIP: Manager of Information Technology Compliance
LOCATION: Our Corporate Headquarters in Rapid City, South Dakota
To learn more about our locations, please visit the locations page on our career website.
Relocation assistance is available for this position!Package is based on distance/complexity of the move, and individual circumstances. Contents of our relocation program are subject to change and may vary based on position.
ESSENTIAL JOB FUNCTIONS:
Perform specific compliance functions related to all areas of IT, including but not limited to any area of IT internal compliance and/or monitoring of general IT security controls, SOX and NERC CIP.
Assist other Compliance team members and systems owners to identify, document and monitor current risks and controls and prepare/update Risk Control Matrix documents where necessary.
Assist in Coordinating, communicate and monitor internal IT compliance activities including data collections, analysis and remediation throughout the company, working with internal and external audit as required. This role supports the operating effectiveness testing of the IT departments control activities processes.
Communicate and assist with training on IT compliance related issues and activities. Partner within the organization to build IT compliance and security awareness.
Assist with the maintenance of inventory of all regulatory and technology compliance requirements and associated evidence mapping.
Build subject matter expertise in the creation, implementation and maintenance of appropriate policies and procedures to be compliant with applicable technology related regulations including NERC CIP, and SOX.
Assist with the creation and modification of all technology compliance policies.
Learn applicable standards, requirements and their application to the enterprise environment in cooperation with operational area SMEs.
Coordinate audit-related tasks working with IT and business/system managers and their organizations for audit testing and facilitating the timely resolution of any audit findings.
Support internal and external audit teams to perform audit testing, data collection and remediation of issues identified.
Participate in internal and external audits and regulatory reviews to ensure compliance with applicable regulatory standards and internal security policies and controls.
Support IT compliance related projects and project teams while meeting project timelines and budget set forth by project.
Build understanding to identify risks and work to ensure proper solutions are implemented as necessary.
Ensure timely and accurate review of IT audit controls and quick resolution to identified issues.
Understand and identify risks and work to ensure proper solutions are implemented as necessary.
Support BHC’s compliance objectives and partner where appropriate to add value to overall corporate objectives.
Run and provide reports and compliance communications as required.
Partner with IT staff and other company personnel to build IT compliance and security awareness.
Build and maintain knowledge of regulations which impact Black Hills Energy IT.
Be engaged in industry forums and venues related to various Compliance topics; make recommendations to management at all levels to ensure that appropriate levels of compliance is maintained.
Maintain professional and technical knowledge by attending educational workshops; reviewing professional publications; establishing personal networks; benchmarking state-of-the-art practices; participating in professional societies.
Ensure duties are performed in accordance with Company’s published policies and procedures.
Occasional overnight travel as necessary to attend team meetings, meet with employees, training and support remote systems.
After hours response may be required for critical issues requiring management attention.
Minimum of 1 year of professional IT experience is required.
Associates degree in IT or equivalent experience preferred.
Experience with Windows Server operating systems, Active Directory administration, Unix operating systems desired.
Experience working with IT audit issues or system and security monitoring desired.
A general knowledge of Information Technology is preferred.
A general knowledge of regulations and regulatory compliance is preferred.
The ability to gain a broad knowledge and understanding of Information Technology concepts, IT and Business security controls, and processes.
Gain the ability to understand, comprehend and communicate technology.
Gain an understanding of electric and gas control systems.
Knowledge of Internet resources to reference IT risk and compliance and regulations related to BHC IT.
Ability to work effectively in a team environment.
Ability to maintain strict confidentiality of business information.
Strong organizational skills, attention to detail and ability to manage multiple responsibilities while meeting deadline demands.
Ability to recognize and understand IT risk and compliance issues. Ability to assist with planning, scheduling, managing and coordinating projects.
Excellent verbal and written communication skills; ability to prepare and give presentations to technical and non-technical people.
Proficiency in computer applications including Word, Excel, Power Point and project management.
Must possess very good human relation skills to build relationships and partner with the business.
Committed to customer service and able to maintain service attitude while under tight time pressure.
MENTAL/PHYSICAL REQUIREMENTS AND WORKING CONDITIONS:
The mental and physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Mental Requirements: Ability to understand, remember, apply oral and/or written instructions or other information, and communicate routine factual information. Ability to apply common sense in performing job functions, usually within a set of rules or guidelines.
While performing the duties of this job, the employee is continuously (67% or more) required to: use fingers and hands, communicate, and have close visual acuity. Employee is frequently (34-66%) required to: ascend/descend stairs, position self to access lower items, and move about the office. The employee may occasionally (less than 33%) be required to: reach, push, pull. Employee must be able to operate routine office equipment including computers and similar equipment. Must be able to routinely perform this work for an average of 6-8 hours per day and occasional extended hours as necessary. Must be capable of regular, reliable, and timely attendance.
Specific lifting abilities required by this job include: Sedentary work. Exerting up to 10 pounds of force occasionally and/or negligible amount of force frequently or continuously to lift, carry, push, pull or sitting most of the time. Jobs are sedentary if walking and standing are required only occasionally and all other sedentary criteria are met.
Work environment: Must be able to routinely perform work indoors in climate-controlled shared work area with moderate noise level. Must be capable of occasional travel (less than 10 days per year) by automobile (as driver and passenger), commercial airlines, rental vehicles and public transportation and be able to lodge in public facilities.
This description is not intended to be an all-inclusive list of responsibilities, duties, and requirements for employees in this position. Job descriptions may and do change periodically. Where positions are covered by a collective bargaining unit agreement, the terms and conditions of the collective bargaining unit agreement will apply.
About our Company:We are a customer focused, growth-oriented utility company that is devoted to our communities. We have a mission to improve life with energy and a vision to be the energy partner of choice. Our diverse culture sparks unique perspectives, opening doors to new ideas and possibilities. Based in Rapid City, South Dakota, we have over 2900 employees and serve 1.2 million natural gas and electric utility customers across eight states (South Dakota, Montana, Wyoming, Colorado, Nebraska, Iowa, Kansas, and Arkansas).
Enjoy our Comprehensive Benefits Package:annual incentive program, 401(k) (6% company match and up to 9% company retirement contribution), tuition reimbursement, paid time off, additional Veteran PTO, military leave differential pay, paid holidays and annual floating holidays, company paid short term and long term disability, paid maternity and paternity benefits, health and wellness program, and competitive medical, dental and vision insurance.
Candidates must successfully pass a pre-employment drug screen and background check.
Black Hills Corporation does not sponsor applicants for work visas. All applicants must be legally authorized to work in the US.
Black Hills Corporation is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, or status as a protected veteran.
Wage: 53050 to 79650