Vistra Corp.

Sr. Analyst, Cyber Security Compliance

Vistra Corp.$90K — $120K *
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree or certification in business, technology, or a related field
  • 6-8 years of experience with NERC CIP, ERCOT, ISO 27001, NIST 800-53, SOX, PCI, NACHA, or NRC
  • Strong reading comprehension and written communication skills
  • Experience with application development or coding languages (e.g., VBA, PowerShell, Python)
  • Preferred: experience with ICS devices, cloud security, and agile methodology

Responsibilities

  • Investigate and address compliance variances through root cause analysis
  • Produce logs and evidentiary records for audits and regulatory requirements
  • Support preparation and submission of materials for internal and external audits
  • Exercise problem-solving skills to improve compliance processes
  • Monitor control performance and guide stakeholders to ensure compliance evidence
  • Perform periodic monitoring controls for regulatory compliance
  • Support technology controls in adherence to regulatory requirements

Benefits

  • Hybrid work model with flexibility
  • Opportunities for professional development and certifications
  • Engagement in meaningful compliance and regulatory initiatives
  • Collaborative environment with diverse stakeholders
  • Contributions to operational excellence and best practices
Full Job Description
Job Summary
The Sr. Analyst for cyber compliance will administer controls to maintain adherence with regulatory rule sets and internal policy, investigate variances and escalate when needed. They will be responsible for making sure the required evidence documentation is accurate to ensure effective compliance. They will be responsible for maintaining the confidentiality, integrity and availability of information assets and ensuring that compliance drives operational best practices, delivering on agreed upon service expectations and procedures. The Sr. Analyst is expected to participate in and provide support to audit processes and lead remediation steps for findings.

Job Description

Key Accountabilities
• Investigate and address variances by performing root cause analysis and developing corrective actions to mitigate the potential of recurrence and advise management of the same.
• Produce required logs, evidentiary records & other items as needed.
• Support efforts to prepare, coordinate and submit materials responsive to regulatory reporting requirements, internal and external audits and other Requests For Information.
• Exercise critical thinking and problem solving to research and document processes supporting applicable regulations, identify efficiency and automation opportunities and work with process owners to implement agreed-upon solutions.
• Monitor stakeholder control performance and provide guidance as needed to ensure adequate evidence of compliance
• Efficiently and accurately perform periodic monitoring controls required to maintain and evidence compliance with internal and external regulatory obligations.
• Support technology key controls, tools and compliance with regulatory requirements(i.e. ERCOT, NERC-CIP, PCI, NACHA, SOX, NEI)

Education, Experience, & Skill Requirements
• Experienced gained through college degree programs and/or certification in business, technology, or related field
• 6-8 years experience with an understanding in one or more of the following: NERC CIP, ERCOT Protocols, ISO 27001, NIST 800-53, SOX, PCI, NACHA , NRC.
• Exceptional reading comprehension and written communication skills
• Experience with application development or a coding technology language such as (VBA, PowerShell, Python, Ruby, C++, etc.)

Preferred:
• Experience facilitating agreement across a wide range of disparate stakeholders
• Experience with ICS devices, Generation or Transmission assets
• Working knowledge of agile frame work and methodology
• Experience with Cloud security or Compliance best practices
• Professional certification a plus (e.g., CISM, CISA, CISSP, Digital Design)

Key Metrics
• Compliance Metrics
• % of compliance controls completed on time
• % of control performance effectiveness
• % of control performance automation

#LI-Hybrid

#LI-ND1

Job Family
Information Technology

Company
Vistra Corporate Services Company

Locations
Irving, Texas

Texas

About Vistra Corp.

Vistra (NYSE: VST) is a leading Fortune 500 integrated retail electricity and power generation company that provides essential resources to customers, businesses, and communities from California to Maine. Based in Irving, Texas, Vistra is a leader in the energy transformation with an unyielding focus on reliability, affordability, and sustainability. The company safely operates a reliable, efficient, power generation fleet of natural gas, nuclear, coal, solar, and battery energy storage facilities while taking an innovative, customer-centric approach to its retail business. In the 2020 Forbes Global 2000, Vistra Energy was ranked as the 756th-largest public company in the world. The company owns the Moss Landing Power Plant in California which currently contains the largest battery energy storage system in the world. In 2016, Texas Competitive Electric Holdings, parent company of TXU Energy and Luminant, emerged from Chapter 11. TCEH was then rebranded as Vistra Energy. Vistra acquired Dynegy in 2018. In 2019, Ambit Energy was acquired, resulting in a 32% residential market share in ERCOT, with NRG Energy as its largest competitor. It also acquired Crius Energy in 2019.
Learn more about Vistra Corp.
Size
5,060 employees
Market Cap
$9,272
Industry
5 Year Trend
+1460%
NASDAQ

Similar Jobs

More Jobs at Vistra Corp.

More Information Technology Jobs

Find similar Sr. Analyst, Cyber Security Compliance jobs: