×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

Director - NERC CIP Compliance

Job in Denver, Jefferson County, Colorado, 80228, USA
Listing for: Tallgrass
Full Time position
Listed on 2026-06-02
Job specializations:
  • IT/Tech
    Cybersecurity
Job Description & How to Apply Below
Position: Director - NERC CIP Compliance #3916
Location: Denver

About the Job

Primary purpose:

The Director, NERC CIP Compliance is responsible for establishing and leading the company's NERC CIP compliance program. This role owns program governance, standards interpretation, evidence management, internal controls testing, audit readiness, remediation tracking, and coordination with Cyber Security, IT, OT, Engineering, Operations, Legal, and Compliance teams.

The position serves as the primary subject matter expert for NERC CIP requirements and ensures the organization maintains a defensible, repeatable, and audit-ready compliance posture.

Essential duties & responsibilities:

NERC CIP Program Leadership:
  • Own and lead the end-to-end NERC CIP compliance program, including interpretation and application of applicable CIP standards and requirements.
  • Develop, maintain, and execute the NERC CIP compliance calendar, ensuring all periodic requirements, reviews, testing, and evidence collection activities are completed on time.
  • Serve as the primary point of contact for NERC CIP compliance matters across Cyber Security, IT, OT, Engineering, Operations, Legal, and Compliance teams.
Compliance Execution & Evidence Management:
  • Define, document, and maintain compliance processes, procedures, controls, and supporting documentation required to meet NERC CIP obligations.
  • Establish and manage an evidence management framework that ensures artifacts are complete, accurate, traceable, and audit-defensible.
  • Coordinate and perform internal compliance reviews and self-assessments to validate ongoing adherence to NERC CIP requirements.
  • Track, manage, and report on compliance gaps, remediation plans, exceptions, and corrective actions through closure.
Audit Readiness & Regulatory Interface:
  • Prepare the organization for NERC CIP audits, spot checks, and data requests, including coordination of evidence collection and stakeholder responses.
  • Act as the primary liaison with auditors, regulators, and company stakeholders for NERC CIP matters.
  • Support audit walkthroughs, interviews, and evidence reviews, and manage follow-up actions resulting from audit findings.
Cross-Functional Coordination:
  • Partner closely with OT engineering and operations teams to ensure controls are implemented in a manner that supports safe, reliable operations.
  • Coordinate with Cyber Security Operations and Cyber GRC to align NERC CIP requirements with broader cyber security governance, policy, and risk management activities.
  • Work with Legal and Compliance teams as needed to address regulatory interpretation, documentation, and response requirements.
Reporting & Continuous Improvement:
  • Develop and maintain metrics and reporting that provide leadership visibility into NERC CIP compliance status, risks, trends, and remediation progress.
  • Identify opportunities to streamline compliance processes, improve evidence quality, and reduce audit risk through standardization and automation where appropriate.
  • Stay current on changes to NERC CIP standards, guidance, and industry practices, and assess impacts to the organization.
Education:
  • Bachelor's degree from an accredited institution in Electrical Engineering, Law, Information Security, Engineering, Information Systems, Computer Science, or a related discipline; or equivalent experience.
Experience/Specific Knowledge:
  • Minimum of 10 years of experience leading, managing, or supporting NERC CIP compliance programs in power generation environments.
  • Strong working knowledge of NERC CIP standards, compliance lifecycle, and audit expectations.
  • Experience coordinating compliance activities across IT, OT, Engineering, and Operations teams.
  • Familiarity with evidence management, internal controls testing, and audit readiness practices.
  • Ability to translate regulatory requirements into practical, operationally feasible controls.
  • Demonstrated ability to drive accountability across cross-functional teams without direct reporting authority.
Certifications, Licenses & Registrations:
  • Must possess and maintain a valid driver's license and a driving record satisfactory to the company and its insurers (for travel).
  • NERC-related or security certifications (e.g., CISSP, CISM, CISA, CRISC) preferred but not required.
Competencie…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search