ACS Professional Staffing is looking for an employee to work on-site with our client. This Business Analyst (BA) 2 will provide research and analysis of historical data on the installed database of PSC and SPC (System Protection & Control) equipment. In addition, the BA will design processes and forms to track a variety of North American Electric Reliability Corporation (NERC) requirements and compliance efforts at the organization. Work may entail identifying missing data from the system and developing and implementing new processes or procedures to track compliance. This Business Analyst will collaborate with Engineers and the PSC and SPC Crafts organizations to support management decision-making and define and recommend requirements and improvements for program or project development. This full-time position is located in Vancouver, WA.
Pay range: $34.88 - $49.84
Benefits:
Paid holidays: 11
PTO: Starting at 10 days
Sick Leave: Up to 56 hours per year (prorated based on start date)
EAP: Employee Assistance Program
Benefit Options Available: Medical, Dental, Vision, FSA, DCA, LPFSA, HSA, Group Life/AD&D, Voluntary Life/AD&D, Voluntary Short-Term Disability, Voluntary Long-Term Disability, Voluntary Critical Illness, Voluntary Accident, 401k (immediately eligible for employee and employer contributions - employer match up to 4%)
Other benefits include the following: Calm App, Access Perks
Responsibilities:
This position will provide project management and change control associated with several NERC compliance and cybersecurity initiatives: Firmware tracking, Vulnerability assessments, and password management; as well as providing detailed analysis of the Cascade and BES (Bulk Electric System) data to determine where equipment is located and how much of a risk the organization has for non-compliance with NERC and company requirements and standards. To successfully advance the work, the BA in this position will perform the following:
Program Effectiveness:
Coordinate activities for manager-assigned projects that enable goals or objectives to be accomplished within the prescribed time frame and funding parameters. Escalate concerns to appropriate manager/federal personnel. Activities include:
Propose and monitor tasks and deadlines associated with new regulatory requirements, compliance violations, and process changes.
Build project sites, workflows, and document libraries in SharePoint.
Schedule meetings, prepare agendas, take, and distribute minutes, and track action items.
Compliance Analysis:
Monitor new and modified equipment to verify that configurations comply with North American Electric Reliability Corporation-Critical Infrastructure Protection (NERC-CIP) requirements.
Prepare plans to verify that compliance requirements are defined and documented, compliance plans are formally approved, and milestones are accomplished.
Interview Field personnel to identify what equipment is installed in the field, update system information as appropriate.
Design, draft, and recommend forms, reports, and tools to track progress and verify completion of mitigation activities for compliance violations.
Perform research in asset and maintenance databases to gather and organize information (i.e., recent maintenance, missing data, and trouble reports).
Assemble data from multiple sources and utilize advanced Excel, Power BI, or reporting applications to analyze data for potential violations, and to present data in a user-friendly format for evidence reviews.
Assist appropriate manager / personnel with analysis of "problem equipment" data and verify whether there is enough information to formulate solution plans.
Develop, draft, and recommend "records management" procedures and schedules for filing, protection, and retrieval of records associated with equipment in the Field related to NERC.
Mark documents and maintain filing system(s), files, emails, and records in accordance with compliance requirements. Share and disperse documents only to appropriate personnel (those with a Lawful Government Purpose (LGP) to know). Mark and maintain all official records in accordance with the Information Security (INFOSEC) and Information Governance & Lifecycle Management (IGLM) standards and procedures. Validate official records are accurately maintained for auditing purposes.
Monitor and track versions and revisions of specialized software and firmware, verifying that updates are authenticated and processed in a timely manner.
Prepare for and support the organization during external and internal audits. Duties Include:
Searching databases,
Running reports,
Compiling evidence into electronic packets to be sent to auditors in advance of audits,
Compiling physical notebooks for auditors that contain evidence of who visited a substation,
Attending audit interviews, taking notes, and pulling reports.
Process Improvement, Project Management Support:
Create and improve processes used by immediate team for efficiency, consistency, and quality management.
Study existing procedures and processes; document findings and prepare recommendations for new systems or procedures to facilitate compliance with NERC requirements; assist personnel with implementation of management-approved recommendations.
Collaborate and work closely with project sponsor(s), manager, Project Managers, project teams, and stakeholders to remove obstacles impacting timely project completion and to facilitate successful implementation(s).
Support other North American Electric Reliability Corporation - Critical Infrastructure Protection (NERC-CIP) teams to gain understanding on:
Knowledge of current NERC-PRC (Protection and Control), NERC-CIP, and Federal Information Security Management Act (FISMA) requirements.
The need for a new process or revision to existing company procedure(s).
New forms or revisions to existing forms that may be needed related to new company processes.
As new or revised solutions are proposed and adopted for NERC CIP related work:
Gather and document requirements.
Develop tools, such as spreadsheets, Access databases, Power BI reporting, and SharePoint sites to support implementation of management-approved solutions, plans, and efforts.
Assist with drafting new or revising existing processes and procedures as requested.
Monitor project schedules to track completed tasks and forecast additional work that may be required.
Investigate, gather data, evaluate, and analyze whether the organization has successfully implemented solutions and/or mitigated risks initially identified; provide findings and any additional solution recommendations as noted or requested.
Review, research, and study existing processes and propose changes if necessary to achieve alignment between TT, TE, and TF (technology, engineering, and Field) organizations, present findings, and recommendations.
Requirements Gathering and Analysis:
Arrange, coordinate, and facilitate requirements elicitation workshops and present findings to appropriate manager / personnel.
Analyze, facilitate, model, and organize information to elicit requirements; work with appropriate parties to facilitate resolution of conflicting team positions; and distinguish solution ideas from business needs.
Decompose high-level information into details and abstract up from low-level information to assist with resolution of solution vs. requirements conflicts.
Import data from various sources such as databases, SharePoint lists, and technical drawings; manipulate the data into automated or manually repeatable reports to be used for evidence reviews.
Facilitate resolution of project priorities and requirement conflicts among various stakeholders and project team members.
Complete documentation for project development efforts (including use cases, requirements, test plans, process maps, and desk procedures).
Compile, review, and analyze information in collaboration with team members to, create/draft technical documentation in support of system requirements, system design, system security, and operational manuals for a wide variety of software applications.
Requirements:
A degree in Business Management, Business Administration, Cyber Security, Engineering, Organizational Development or a closely related field is preferred.
5 years of experience is required with an applicable bachelor's degree.
7 years of experience is required with an applicable associate degree.
9 years of experience is required without a degree or applicable degree.
Experience should be consistent with the specific requirements of business analysis and progressively more technical in nature.
5 years of work experience in Compliance, Information Technology, or Cybersecurity business analysis.
Advanced computer skills and knowledge of automated data systems.
Experience in preparing for or participating in external audits.
Experience organizing cross functional meetings.
SharePoint experience.
Visio experience.
Familiarity or experience with NERC CIP standards.
Work sponsorship is not available at this time. Third-party candidates will not be considered for this position.
Because we are a federal government contractor, we have special restrictions placed on us for hiring foreign nationals into certain key positions within the company. This particular position requires U.S. citizenship.
ACS Professional Staffing will provide equal employment opportunities to all applicants without regard to the applicant's race, color, religion, sex, gender, genetic information, national origin, age, veteran status, disability status, or any other status protected by federal or state law. The company will provide reasonable accommodations to allow an applicant to participate in the hiring process if so requested.
If you have any questions about the job posting, please contact recruiting@acsprostaffing.com
If you have any questions about our Reasonable Accommodation Policy, please feel free to email hr@acsprostaffing.com