SIGN IN
CIP Compliance Program Manager jobs in United States
cer-icon
Apply on Employer Site
company-logo

Platte River Power Authority · 12 hours ago

CIP Compliance Program Manager

positionFort Collins, CO
timeFull-time
remoteHybrid
seniorityMid, Senior Level
money$122K/yr - $177K/yr
date5+ years exp
Platte River Power Authority is seeking a CIP Compliance Program Manager to provide governance, coordination, documentation, and compliance assurance for its NERC Critical Infrastructure Protection program. The role involves partnering with various business units to ensure compliance with CIP requirements and preparing for audits while supporting the secure operation of the Bulk Electric System.
EnergyService Industry
check
Comp. & Benefits

Responsibilities

Provide governance and oversight for the execution of Platte River’s NERC CIP compliance program
Serve as the central point of coordination for CIP-related compliance activities across applicable business units
Establish and maintain CIP compliance schedules, milestones, and tracking mechanisms
Partner with IT and OT control owners to interpret CIP requirements and define compliance expectations
Identify, track, and escalate compliance risks, gaps, and material issues through established governance channels
Develop, maintain, and update CIP programs, procedures, and supporting documentation
Coordinate document review, approval, and version control processes
Establish and maintain a structured system for evidence collection, storage, retention, and retrieval
Ensure evidence meets audit defensibility standards, including completeness, traceability, and timeliness
Perform periodic internal compliance reviews, validations, and spot checks
Review completed compliance activities for accuracy and completeness
Design, implement, and maintain internal compliance controls to support sustained compliance
Provide independent compliance assurance activities in support of the Reliability Compliance function
Support Low Impact attestations and Medium Impact self-certifications
Serve as the primary internal coordinator for NERC CIP audits, working in partnership with the Reliability Compliance organization
Support Reliability Compliance with audit preparation, evidence readiness, interviews, and response development
Collect, review, and format evidence for audit submissions
Maintain and update Reliability Standard Audit Worksheets and Evidence Request Tool content
Track mitigation activities, milestones, and closure documentation
Act as a liaison between compliance requirements and IT/OT implementation activities
Provide guidance on CIP interpretation without assuming system design or operational responsibility
Review technical and procedural controls for compliance sufficiency
Coordinate remediation tracking for identified compliance gaps
Develop and deliver CIP compliance training and awareness sessions
Facilitate CIP status meetings and compliance reviews
Provide implementation guidance as CIP standards and guidance evolve
Administer and maintain CIP compliance tools (e.g., SigmaFlow)
Configure workflows, notifications, reporting, integrations, and evidence collection
Act as business owner for CIP compliance tooling enhancements
Ensure compliance tools operate effectively and support audit and reporting needs
Monitor changes to NERC CIP standards, guidance, alerts, and lessons learned
Coordinate internal responses to NERC Alerts and industry communications
Participate in industry working groups, workshops, and standards review activities
Translate standards changes into updated compliance documentation and processes

Qualification

NERC CIP complianceCybersecurity governanceAudit preparationMicrosoft OfficeIdentityAccess ManagementPrivileged Access ManagementResearch skillsEvidence managementCIP trainingCompliance toolingCommunication skillsOrganizational skillsWork independentlyAttention to detailTechnical documentation

Required

Five years in NERC CIP compliance, regulatory compliance, cybersecurity governance, or audit-related work experience in technical or regulatory documentation and evidence development
Demonstrated experience supporting NERC CIP audits, self-certifications, or internal compliance reviews
Bachelor's degree in information technology, cybersecurity, engineering, or related technical field, or equivalent experience
GIAC GCIP certification or ability to obtain within one year
Valid driver's license and ability to remain insurable under the vehicle liability policy
A bachelor's degree in information systems, cybersecurity, engineering, or related field is preferred; a high school diploma or GED is required

Company

Platte River Power Authority

twittertwittertwitter
company-logo
Platte River Power Authority is a Electric Utility Company.
dateFounded in 1973
location
Fort Collins, Colorado, USA
people-size201-500 employees
web-link
https://www.prpa.org/

Funding

Current Stage
Growth Stage

Leadership Team

leader-logo
Melie Vincent
Chief Operating Officer
linkedin
leader-logo
Heather Sprague
Finance Business Partner
linkedin

Recent News

PRWeb
Solas Energy® Provides Project and Construction Management Services to ContourGlobal for Northern Colorado's Largest Solar Plant
2025-12-09
pv magazine USA
ContourGlobal secures $350 million, its first solar project financing in the U.S.
2025-11-10
BizWest
Weld County continues to dominate state’s oil and gas scene
2025-10-04
Company data provided by crunchbase