Senior Consultant – NERC CIP SME

This is a fully remote position, open to applicants in United States.

📋 Description

• Design enterprise data models, data lakes, warehouses, and integration frameworks for both structured and unstructured data.

• Architect secure systems in accordance with NIST, ISO 27001, and CIS controls to ensure compliance.

• Implement NERC CIP standards (002–013), which includes audit preparation, evidence gathering, and mitigation planning.

• Secure data flows across AWS, Azure, and on-premises environments utilizing encryption, IAM, and network segmentation.

• Develop and enforce RBAC, ABAC, MFA, and privileged access management in adherence to technical CIP standards or similar regulations.

• Create secure architectures that anticipate potential attack vectors, supported by playbooks and detection strategies.

• Safeguard OT environments such as EMS, SCADA, DCS, and other industrial control systems within the Bulk Electric System.

• Maintain data integrity, availability, and confidentiality through metadata standards, classification, retention, and purging policies.

• Collaborate with compliance, operations, IT, and engineering teams to ensure alignment of technical architecture with regulatory and business needs.

⛳️ Requirements

• Due to the nature of client engagements, candidates must be a US Permanent Resident or US Citizen.

• Bachelor’s degree from an accredited university or college.

• A minimum of THREE (3) years of post-graduation working experience in the electric utility industry or with a NERC-related regulator.

• Work experience at all levels must emphasize North American NERC Reliability Standards (USA and/or Canada) supporting regulatory frameworks and processes surrounding NERC Critical Infrastructure Protection (CIP) and Regional Entities.

• Experience in designing enterprise data models, data lakes, warehouses, and integration frameworks utilizing both structured and unstructured data.

• Comprehensive understanding of NIST, ISO 27001, and CIS controls to design secure systems and enforce security compliance.

• Extensive knowledge in implementing NERC CIP standards (002–013), including audit preparation, evidence collection, and mitigation planning.

• Proficiency in securing data flows across AWS, Azure, and on-premises environments through encryption, IAM, and network segmentation.

• Design and implement RBAC, ABAC, MFA, and privileged access management aligned with CIP-007 and CIP-005 requirements.

• Capability to design secure architectures that anticipate attack vectors, supported by playbooks and detection strategies.

• Familiarity with securing OT environments such as EMS, SCADA, DCS, and other industrial control systems within the Bulk Electric System.

• Ensure the integrity, availability, and confidentiality of data through metadata standards, classification, retention, and purging policies.

• Strong writing skills for producing security architecture diagrams, CIP evidence packages, procedures, and training materials.

• Work effectively with compliance, operations, IT, and engineering teams to align technical architecture with regulatory and business requirements.

• Willingness to travel, including potential international trips as necessary.

• Ability to work onsite at a Guidehouse Office or Client Office location. Must currently reside in the contiguous United States.

🏝️ Benefits

• Medical, Rx, Dental & Vision Insurance

• Personal and Family Sick Time & Company Paid Holidays

• Position may be eligible for a discretionary variable incentive bonus

• Parental Leave and Adoption Assistance

• 401(k) Retirement Plan

• Basic Life & Supplemental Life

• Health Savings Account, Dental/Vision & Dependent Care Flexible Spending Accounts

• Short-Term & Long-Term Disability

• Student Loan PayDown

• Tuition Reimbursement, Personal Development & Learning Opportunities

• Skills Development & Certifications

• Employee Referral Program

• Corporate Sponsored Events & Community Outreach

• Emergency Back-Up Childcare Program

• Mobility Stipend