Dominion Energy is committed to providing reliable, affordable, and increasingly clean energy that powers our customers every day. If you want to work for a purpose-driven company that values safety and collaboration, we’re looking for you. You won’t just find a job here; you’ll find your career. Review the position below and apply today.
Military service members and veterans with ranks from E3-E5, W1-W2, or O1-O3, plus appropriate equivalent combination of education and years of experience as outlined below will be considered for this opportunity.
At this time, Dominion Energy cannot transfer or sponsor a work visa or employment authorization for this position.
This position does not offer relocation assistance.

JOB SUMMARY

This posting is for the mid-level/ senior level of a three-level series responsible for the identification and assessment of cyber compliance standards to help ensure the company implements effective controls to meet cyber security regulations, laws, and executive orders in our business areas and under IT programs.
There is one position which will be filled at the level commensurate with the successful candidate’s education, experience, knowledge, skills, and abilities.
Assists with maintaining the cyber regulatory compliance program for processes, applications, and systems across business units. Leveraging cyber security best practices and detailed understanding of cyber regulatory requirements, this role provides guidance for how compliance is achieved, provides governance and oversight to the entire program; can provide technical guidance or evaluation of technical procedures towards achieving compliance; reduces or eliminates audit findings; implements changes and ensures compliance with all regulatory requirements. Participates in compliance-related projects requiring advanced knowledge of regulatory requirements as well as knowledge of appropriate security architecture, technology best practices and business area requirements, limitations and unique system implementations.
Ensures effective compliance processes and procedures are implemented for systems and applications. Participates in the evaluation of processes for failure points and implements controls to mitigate those potential failures. Completes compliance-related data requests, investigates failures or breakdowns in processes and develops of plans for remediation or prevention of future incidents. Identifies opportunities for strengthening compliance controls proactively. Raises awareness of current and upcoming policies, regulations, and requirements, and develops solutions for compliance. Performs other duties as requested or assigned.
Note: This position is not an operational role (cyber operations) or an applications role (developing cyber programs).
**This position does not offer relocation assistance or sponsorship.

REQUIRED KNOWLEDGE, SKILLS, ABILITIES & EXPERIENCE

Cyber Compliance Analyst: 3+ years of cyber or IT audit, compliance, or technology related work experience
Senior Cyber Compliance Analyst: 5+ years of cyber or IT audit, compliance, or technology related work experience

SPECIFIC KNOWLEDGE, SKILLS, ABILITIES AND EXPERIENCE:

• Possesses knowledge and a solid understanding of IT Technology and Business Technology as required to successfully design and implement a compliance program.
• Demonstrates a working knowledge and experience in human performance failure analysis, demonstrated by the application of and solid understanding acquired through training and related work experience.
• Demonstrates a working knowledge and understanding of current security architecture best practices.
• Demonstrates a working knowledge and understanding of current cyber security best practices.
• Previous work experience and understanding of Cyber regulatory standards and requirements is a bonus.
• Prior work experience working with internal and external auditing firms.
• Skilled in Root cause analysis, demonstrates a solid understanding and/or training.
• Demonstrated work experience in writing procedures and policies.
• Experienced in translating procedures into operational steps.
• Previous work experience creating and updating cyber & human performance controls for compliance requirements is desired.
• Possesses the drive to independently learn and become an expert in the evolving regulatory landscape and how that maps to an evolving DE IT and business technology landscape.
• Proficiently performs assignments having the knowledge, skills, abilities, and experience needed to carry out all aspects of the job.
• Exercises independent judgment and decision-making in planning, organizing, and conducting work assignments.
• May receive instructions and guidance on unusual or complex problems and knows when to get others involved.
• Effectively utilizes the proper resources to develop solutions and devise new approaches to problems encountered in work assignments.
• Identifies and eliminates unnecessary work and non-value-added activities.

EDUCATION REQUIREMENTS

Degree or an equivalent combination of education and demonstrated related experience may be accepted in lieu of preferred level of education: Bachelor
Preferred Discipline(s): Computer Science; Information Systems; Information Systems Security; Information Technology
Other disciplines may be substituted for the preferred discipline(s) listed above.

TEST DESCRIPTION

No Testing Required

Please refer the Job description for details