SENIOR SECURITY COMPLIANCE ANALYST Reports to:\u00a0Manager, Information Systems Security\u00a0Send CV to\firstname.lastname@example.org \u00a0FLSA Status:\u00a0Exempt\u00a0The CompanyThe Electric Reliability Council of Texas (ERCOT) manages the flow of electric power to approximately 20 million Texas customers \u2013 representing 85 percent of the state\u2019s electric load and 75 percent of the Texas land area. As the independent system operator for the region, ERCOT schedules power on an electric grid that connects 38,000 miles of transmission lines and more than 500 generation units.\u00a0 ERCOT also manages financial settlement for the competitive wholesale bulk-power market and administers customer switching for 5.9 million Texans in competitive choice areas. Austin AreaAustin is the capital of Texas and is situated in the central part of the state referred to as the \u201cHill Country.\u201d\u00a0 This city is known as the \u201cLive Music Capital of the World,\u201d is the home of University of Texas Longhorns and has the best Tex-Mex and barbeque restaurants on the face of this earth.\u00a0 Austin and its surrounding communities enjoy mild winters and the cost of living there compares favorably to many other parts of the US. Summary of ResponsibilitiesGathers and organizes security compliance information on a schedule determined by security management. Ensures the accuracy of the information within the security department and with other business units as appropriate.\u00a0 Works to streamline and automate the processes of gathering compliance and metrics information.\u00a0 Responsibilities include but are not limited to ensuring compliance through Information Security Policies and repeatable compliance process; providing trend and metrics templates that report on ERCOT\u2019s security and compliance posture; supporting the development, documentation, deployment, review and maintenance of Information Security Policies, Standards, Guidelines and Procedures; communicating Information Security Policies and providing process improvement recommendations.\u00a0 May provide on\u2013the-job training or oversee the work of other analysts.Essential Job Duties\u2022\u00a0Acts as security compliance reviewer for the company\u2022\u00a0Provides regular status reports to the ISSD Manager \u2022\u00a0Assists with IT security compliance reviews based on the ISO 17799 and NERC standards, using accepted evaluation practices\u2022\u00a0Conducts independent General Control and Application Control reviews and present unbiased opinions\u2022\u00a0Uses software tools to gather system configuration information and vulnerabilities\u2022\u00a0Identifies risk areas, and ensure that adequate controls are in place and operating effectively by using thorough testing methods\u2022\u00a0Assists with Risk Assessments on corporate assets using a formal methodology and recommend safeguards to mitigate risk\u2022\u00a0Communicates review findings to the ISSD Manager in a clear and concise method\u2022\u00a0Compiles and reports on security compliance metrics\u2022\u00a0Maintains current knowledge of security technology trends and hacker tools and methods\u2022\u00a0Maintains the confidentiality of review results and the status of the current security environment\u2022\u00a0Performs other duties as assigned.\u00a0Job Competencies\u2022\u00a0Functional\/Technical Skills\u2022\u00a0Planning\u2022\u00a0Presentation Skills\u2022\u00a0Problem Solving \u2022\u00a0Written Communication\u00a0Education\u2022\u00a0Bachelor\u2019s degree in Computer Science, Electrical Engineering or related field or six years applicable experience is required.Licenses or Certification\u2022\u00a0CISA, CIA, or CISSP certification preferred.\u00a0 Microsoft or Unix certifications a plus.Work Experience\u2022\u00a0Minimum of 5 years (in excess of degree requirements stated above) of progressively responsible experience in IT analysis.Physical Requirements\u2022\u00a0Sedentary work.