Technology Organization Risk & Compliance Analyst
This position will perform support functions in the Technology Organization (TO) risk management and compliance activities for SCS TO organization. The position will help ensure that SCS TO has appropriate controls in place and can demonstrate compliance with internal and external requirements including North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP), Transportation Security Administration Pipeline Security Directives (TSA SD), and Sarbanes-Oxley (SOX). Occasional overnight travel may be required. This position is located in either Birmingham at the APC headquarters or in Atlanta at the GPC headquarters location.
JOB RESPONSIBILITIES
- Serve as support for technology risk and control activities for internal and external stakeholders related to applicable compliance programs
- Facilitate the execution of the Technology Organization’s patch and vulnerability management review processes in support of compliance with applicable compliance programs
- Support the implementation of new compliance requirements impacting the Technology Organization
- Manage work practices documentation in support of applicable compliance programs
- Facilitate new training opportunities and refresh current training
- Support the Technology Organization efforts during routine audits of applicable compliance programs by both internal and external audit teams
- Support Senior Staff with the execution of monthly, quarterly, annual, and other periodic control reviews to support compliance with regulatory requirements
- Interact and assist with other departments to report and investigate instances of potential non-compliance, and develop and track associated mitigation plans to completion as necessary
- Work collaboratively with other Compliance Coordinators to meet all team goals, and assist with other compliance issues as workload dictates
- Build and sustain strong working relationships with individuals and workgroups across the Technology Organization and throughout Southern Company
- Perform internal control monitoring and testing of Technology Organization’s compliance programs for applicable compliance programs
- Manage all projects and other assigned responsibilities effectively to meet deadlines
JOB REQUIREMENTS
Education Requirements
- BS/BA Degree in Computer Science / Information Security/ Information Systems or related field preferred
Experience Requirements
- Prior Technology Security, Server Support and/or internal controls experience not required but preferred
Preferred Areas of Knowledge
- Technology controls and processes
- Compliance frameworks
- Knowledge of power utility equipment and Cyber Assets associated with the Bulk Power System
Skills Desired
- Positive attitude, team player & creative problem-solving skills
- Detail oriented while working in a fast-paced environment
- Strong oral and written communication skills with ability to communicate effectively at all levels
- An ability to effectively influence others with an emphasis on collaborating across multiple teams and ensuring program needs are satisfied through interpersonal and trusted communication
- Strong analytical skills
- Effective time management skills and good business judgment
- Able to multi-task and handle multiple projects simultaneously
- Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
- Ability to understand deep technical concepts and translate those concepts to non-technical people
- An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business
- Ability to understand, gather and assess information as done in internal audits, investigations, peer reviews, QA reviews, etc.
About Southern Company
Southern Company (NYSE: SO ) is a leading energy provider serving 9 million customers across the Southeast and beyond through its family of companies. Providing clean, safe, reliable and affordable energy with excellent service is our mission. The company has electric operating companies in three states, natural gas distribution companies in four states, a competitive generation company, a leading distributed energy solutions provider with national capabilities, a fiber optics network and telecommunications services. Through an industry-leading commitment to innovation, resilience and sustainability, we are taking action to meet customers' and communities' needs while advancing our goal of net-zero greenhouse gas emissions by 2050. Our uncompromising values ensure we put the needs of those we serve at the center of everything we do and are the key to our sustained success. We are transforming energy into economic, environmental and social progress for tomorrow. Our corporate culture has been recognized by a variety of organizations, earning the company awards and recognitions that reflect Our Values and dedication to service. To learn more, visit www.southerncompany.com .
Southern Company invests in the well-being of its employees and their families through a comprehensive total rewards strategy that includes competitive base salary, annual incentive awards for eligible employees and health, welfare and retirement benefits designed to support physical, financial, and emotional/social well-being. This position may also be eligible for additional compensation, such as an incentive program, with the amount of any bonus/awards subject to the terms and conditions of the applicable incentive plan(s). A summary of the benefits offered for this position can be found here https://seo.nlx.org/southernco/pdf/SOCO-Benefits.pdf . Additional and specific details about total compensation and benefits will also be provided during the hiring process.
Southern Company is an equal opportunity employer where an applicant's qualifications are considered without regard to race, color, religion, sex, national origin, age, disability, veteran status, genetic information, sexual orientation, gender identity or expression, or any other basis prohibited by law.
Job Identification: 14192
Job Category: Information Technology
Job Schedule: Full time
Company: Southern Company Services
