Sr Critical Infrastructure Compliance Specialist

Who We Are

We're powering a cleaner, brighter future.

Exelon is leading the energy transformation, and we're calling all problem solvers, innovators, community builders and change makers. Work with us to deliver solutions that make our diverse cities and communities stronger, healthier and more resilient.

We're powered by purpose-driven people like you who believe in being inclusive and creative, and value safety, innovation, integrity and community service. We are a Fortune 200 company, 20,000 colleagues strong serving more than 10.7 million customers at six energy companies -- Atlantic City Electric (ACE), Baltimore Gas and Electric (BGE), Commonwealth Edison (ComEd), Delmarva Power & Light (DPL), PECO Energy Company (PECO), and Potomac Electric Power Company (Pepco).

We're committed to creating an environment where every person can thrive. Our employee experience is grounded in four tenets that guide how we support our people: purposeful careers, growth opportunities, community impact, and support to thrive.

In our relentless pursuit of excellence, we elevate diverse voices, fresh perspectives and bold thinking. And since we know transforming the future of energy is hard work, we provide competitive compensation, incentives, excellent benefits and the opportunity to build a rewarding career.

Are you in?
Primary Purpose

Responsible for ensuring the organizations adherence to cyber security regulatory requirements, including NERC CIP, Gas TSA, and other industry regulations. This role focuses on the continuous improvement of the compliance program, driving efficiencies, and proactively managing risks to maintain compliance across systems and operations while driving a unified controls program. The specialist will leverage in depth knowledge of compliance frameworks to direct internal teams in aligning with regulatory standard while identifying opportunities for process optimization. The role serves as a key liaison for both internal and external stakeholders providing expertise and guidance to ensure effective compliance practices and strategies within a unified controls framework. This position plays a crucial role in safeguarding the organizations security & compliance posture while anticipating future regulatory changes.

 

**This is a multiple‑location posting. The selected candidate may be based out of our Exelon Corporate Office locations in Philadelphia, PA, Kennett Square, PA, Baltimore, MD, Owings Mills, MD,  Oakbrook Terrace, IL, Washington, DC, Newark, DE, Carneys Point, NJ**  

Primary Duties

• Regulatory Compliance Strategy: -Lead the development and refinement of compliance strategies for NERC CIP, Gas TSA, and other state and federal regulations -Identify areas for process improvement and advocate for strategic changes to enhance compliance program effectiveness (20%)
• Compliance Program Efficiency & Optimization: -Assess current compliance processes and recommend or implement automation or tools to streamline workflows -Collaborate with cross-functional teams to design and implement efficiencies while ensuring continued regulatory compliance -Develop and maintain security control metrics (20%)
• Risk Management & Compliance Assurance: -Oversee risk assessments to ensure security controls are consistently met -Collaborate with internal teams to ensure compliance is maintained during system changes and operational transitions (20%)
• Stakeholder Engagement: -Lead in area of responsibility as a subject matter expert and primary liaison for compliance related items with both internal and external teams -Collaborate closely with internal teams to ensure seamless alignment on compliance objectives and foster cross-functional support for compliance initiatives (20%)
• Audit Support: -Coordinate and lead audit related activities to area of responsibility -Oversee the tracking of compliance evidence to ensure readiness for audits and regulatory inquiries. (20%)

Job Scope

Integrate and align information security and/or cybersecurity policies to ensure alignment of compliance and security controls Establish and maintain communication channels with stakeholders Analyze and interpret relevant laws, statutes, standards and regulatory requirements and integrate into a unified controls program Assess policy needs and collaborate with stakeholders to develop controls to govern security and compliance activities

Minimum Qualifications

• Bachelors degree (Business, Finance, Information Technology, etc) and 4-7 years related business experience, or minimum 6 to 9 years equivalent combination of education and work experience.
• Knowledge of business practices and processes in a regulatory environment and associated frameworks including, but not limited to, NERC CIP, TSA, SOX, NIST, and SEC.
• Strong problem solving skills Excellent communications skills (written and verbal)
• Excellent oral and written communications skills and strong analytical and problem-solving skills.
• Ability to analyze organizational data and complex problems, interpret and recommend alternative courses of action.

Preferred Qualifications

Audit, risk, legal or compliance analysis experience with a background in key operational areas, statistical process control, report preparation, trend tracking and analysis

Benefits

• Annual salary will vary based on a candidate’s skills, qualifications, experience, and other factors: $96,000.00/Yr. – $132,000.00/Yr.
• Annual Bonus for eligible positions: 15%
• 401(k) match and annual company contribution
• Medical, dental and vision insurance
• Life and disability insurance
• Generous paid time off options, including vacation, sick time, floating and fixed holidays, maternity leave and bonding/primary caregiver leave or parental leave
• Employee Assistance Program and resources for mental and emotional support
• Wellbeing programs such as tuition reimbursement, adoption and surrogacy assistance and fitness reimbursement
• Referral bonus program
• And much more

Note: Exelon-sponsored compensation and benefit programs may vary or not apply based on length of service, job grade, job classification or represented status. Eligibility will be determined by the written plan or program documents.

Electric utility holding company delivering energy to customers.