IT Compliance Specialist, Expert
Oakland, CA, United States
Requisition ID # 157919
Job Category: Compliance / Risk / Quality Assurance
Job Level: Individual Contributor
Business Unit: Information Technology
Work Type: Hybrid
Job Location: Oakland
Department Overview
Information Technology is a unified organization comprised of various departments which collaborate effectively to deliver high-quality technology solutions. This position will work in the Advanced Applications Operations Team that uses advanced technology to support daily work.
Position Summary
A Compliance Specialist makes sure that the company follows the law and its own policies in its operations and procedures. This is important for keeping the company honest and respected while avoiding problems that could lead to fines, legal issues or harm to the company's name. This position is ideal for individuals passionate about IT security and governance, looking to make a significant impact in ensuring the organization's systems and processes are secure and compliant.
This position is hybrid, working from your remote office and the Oakland General Office(OGO)1-2 days a week.
PG&E is providing the salary range that the company in good faith believes it might pay for this position at the time of the job posting. This compensation range is specific to the locality of the job. The actual salary paid to an individual will be based on multiple factors, including, but not limited to, specific skills, education, licenses or certifications, experience, market value, geographic location, and internal equity. Although we estimate the successful candidate hired into this role will be placed between the entry point and the middle of the range, the decision will be made on a case-by-case basis related to these factors. This job is also eligible to participate in PG&E’s discretionary incentive compensation programs.
A reasonable salary range is:
Bay Area Minimum: $109,000
Bay Area Maximum: $175,000
Job Responsibilities
Reviewing and evaluating compliance issues/concerns within the organization.
Ensuring that the company and its employees are in compliance with the rules and regulations of regulatory agencies.
Ensuring that company policies and procedures are being followed and that behavior in the organization meets the company's Standards of Conduct.
Working with different departments to implement compliance strategies.
Conducting regular audits and reviews to identify areas of risk and implement corrective actions as necessary.
Serving as the subject matter expert on compliance, providing guidance and support to all departments.
Managing and overseeing compliance training programs for employees.
Preparing and presenting reports on compliance activities and issues to senior management.
Collaborating with legal counsel and other departments to manage compliance-related inquiries or investigations.
Qualifications
Minimum:
Bachelors Degree in Computer Science or job-related discipline or equivalent experience
5 years demonstrated experience in IT security governance, risk management, audit, and compliance.
Strong leadership skills with the ability to mentor and guide team members
Desired:
Excellent communication skills to effectively convey complex IT security concepts to diverse audiences.
Ability to lead cross-functional teams and collaborate effectively with various departments.
Strong analytical, critical thinking and decision making skills
Desired:
MA / MBA /in Computer Science, Information Systems / Technology, Communications, Social Sciences, Education, or some related discipline or equivalent experience.
Experience or strong knowledge with regulatory requirements such SOX, HIPAA, California Privacy, FCC, FERC, NERC CIP
Strong understanding of regulatory requirements impacting the utility industry (SOX, HIPAA, NERC CIP, Smart Meter/Smart Grid, etc.) with subject matter expert knowledge in one or more areas
Able to establish control objectives based on complex regulatory requirements, company policy, standards, and guidelines, and risk analysis
Able to identify complex control gaps and the related business risk.
Independent judgment and discretion in matters of significance with high complexity
Solid understanding and knowledge of PG&E critical business processes, application, system, and network security, Operational Data Network (ODN) and Utility Data Network (UDN)
Key technical resource and recognized authority on compliance and auditing
Excellent communication skills to effectively convey complex IT security concepts to diverse audiences.
Ability to lead cross-functional teams and collaborate effectively with various departments.
Strong analytical, critical thinking and decision making skills