Position Information:
Job Title: Lead Analyst - IT Governance Compliance
Locations: Orange, CT or Boston, MA
Salary Range: $114,332 - $149,413, depending on experience and location
Schedule: On Site - Office
Job Summary;
The Lead Analyst – - IT Governance Compliance Manages various IT Compliance programs and projects and provides relationship management on behalf of the Avangrid IT group with objectives of timely and cost-effective completion. This role effectively works with subject matter experts from across the companies and IT to provide specialized technical expertise and support for program development, and performance tracking and reporting for NERC-CIP, Sarbanes-Oxley, Rate Case, and other Local and Global IT Control and Risk management requirements. This position reports into the Manager of IT Governance.

Key Responsibilities:

• Leads various IT Compliance programs, projects, and processes including those for NERC-CIP, Sarbanes Oxley, IT Certification, and other requirements for IT Controls as identified by Avangrid and Iberdrola.
• Manages the Audit and test of controls and processes for IT and business areas for regulatory, risk, and security to assure effectiveness and compliance to design.
• Manages the review and maintenance of IT documentation and processes, and manage the overall compliance program for Avangrid IT.
• Exercises high level of authority and discretion over day-to-day activities and project operations.
• Manages and supports the preparation of audit documents prior to, and during, internal and external audits and conduct regular internal audits of individual standards to support company compliance.
• Leads the implementation and execution of the global integrated operative model in Avangrid to find and achieve efficiencies as it pertains to compliance, risk, and governance requirements and processes.
• Leads the technical implementation and operation of support tools for the local and global operative model(s) to support compliance and risk management for IT in Avangrid.
• Provides oversight to IT Compliance and Security external vendors to assure delivery of contracted services.
• Reviews and understands New Standards/regulations/control objectives and provide consultation, guidance, and communication to subject matter experts on definition of complex controls and mitigation solutions.
• Interfaces with auditing entities as representative of Avangrid IT and manage the collection and provision of required evidence and participation of required Avangrid groups and the tracking of Audit Differences and completion of any resulting actions required.
• Follows the common set of planning processes and tools outlined by management and assists those with compliance and projects planning responsibilities in IT.
• Coordinates the Rate Case process by engaging with multiple IT teams to gather project and budget-related information, ensuring proper formatting and timely responsiveness.
• Collaborates with cross-functional teams including OT, Cybersecurity, and Corporate Security to ensure alignment with enterprise risk and compliance objectives.
• Identifies and implements opportunities for continuous improvement in compliance processes, tools, and reporting.
• Contributes to the development and maintenance of IT governance policies, standards, and procedures in alignment with regulatory and corporate requirements.
• Monitors and reports on key compliance KPIs to track program effectiveness and support decision-making.
• Mentors junior resources and support knowledge sharing within the IT Risk & Compliance team.
• Self-starter with demonstrated performance leading initiatives and building consensus at all levels of a matrixed global organization.
• Fosters and participates in a productive team environment by establishing and maintaining effective working relationships with co-workers, managers, customers, contractors, and vendors.
• Provides and receives information orally in individual and group situations with technical and non-technical participants.
• Provides written expression in a clear, concise manner and conveys the desired message to technical and non-technical recipients.
• Efficiently manages multiple, concurrent, time-sensitive projects and priorities with minimal supervision.
• Demonstrates flexible, creative, and solution-focused outlook to problem solving.

Required Qualifications:

• Bachelor’s degree in Computer Science, Information Systems or a related field and a minimum of 8 years of relevant experience. An equivalent combination of education and experience may be considered.
• Strong service delivery experience, preferably within IT.
• Experience in leading projects and/or teams.
• Experience in geographically and culturally diverse organizations or environments.
• Experience with compliance standards and achieving compliance.
• Strong knowledge of IT concepts, practices, controls, and procedures.
• Established experience representing organizations and working with audit organizations during testing and audit campaigns.
• Ability to understand and analyze FERC/NERC, SOX, and other regulatory requirements.

Preferred Qualifications:

• Professional Certifications in Risk, Security, or Audit specialties, e.g., CISSP.

Competencies:

• Growth & Continuous Improvement
• Initiative & Change
• Focused on Results
• Customer Centric (internal and/or External)
• Communication
• Collaboration
• Leadership (people managers/leaders)

LI-Onsite; #LI-CH1

Company:

• Leads various IT Compliance programs, projects, and processes including those for NERC-CIP, Sarbanes Oxley, IT Certification, and other requirements for IT Controls as identified by Avangrid and Iberdrola.
• Manages the Audit and test of controls and processes for IT and business areas for regulatory, risk, and security to assure effectiveness and compliance to design.
• Manages the review and maintenance of IT documentation and processes, and manage the overall compliance program for Avangrid IT.
• Exercises high level of authority and discretion over day-to-day activities and project operations.
• Manages and supports the preparation of audit documents prior to, and during, internal and external audits and conduct regular internal audits of individual standards to support company compliance.
• Leads the implementation and execution of the global integrated operative model in Avangrid to find and achieve efficiencies as it pertains to compliance, risk, and governance requirements and processes.
• Leads the technical implementation and operation of support tools for the local and global operative model(s) to support compliance and risk management for IT in Avangrid.
• Provides oversight to IT Compliance and Security external vendors to assure delivery of contracted services.
• Reviews and understands New Standards/regulations/control objectives and provide consultation, guidance, and communication to subject matter experts on definition of complex controls and mitigation solutions.
• Interfaces with auditing entities as representative of Avangrid IT and manage the collection and provision of required evidence and participation of required Avangrid groups and the tracking of Audit Differences and completion of any resulting actions required.
• Follows the common set of planning processes and tools outlined by management and assists those with compliance and projects planning responsibilities in IT.
• Coordinates the Rate Case process by engaging with multiple IT teams to gather project and budget-related information, ensuring proper formatting and timely responsiveness.
• Collaborates with cross-functional teams including OT, Cybersecurity, and Corporate Security to ensure alignment with enterprise risk and compliance objectives.
• Identifies and implements opportunities for continuous improvement in compliance processes, tools, and reporting.
• Contributes to the development and maintenance of IT governance policies, standards, and procedures in alignment with regulatory and corporate requirements.
• Monitors and reports on key compliance KPIs to track program effectiveness and support decision-making.
• Mentors junior resources and support knowledge sharing within the IT Risk & Compliance team.
• Self-starter with demonstrated performance leading initiatives and building consensus at all levels of a matrixed global organization.
• Fosters and participates in a productive team environment by establishing and maintaining effective working relationships with co-workers, managers, customers, contractors, and vendors.
• Provides and receives information orally in individual and group situations with technical and non-technical participants.
• Provides written expression in a clear, concise manner and conveys the desired message to technical and non-technical recipients.
• Efficiently manages multiple, concurrent, time-sensitive projects and priorities with minimal supervision.
• Demonstrates flexible, creative, and solution-focused outlook to problem solving