Principal Risk & Compliance Analyst

Requisition ID # 167997 

Job Category: Compliance / Risk / Quality Assurance 

Job Level: Manager/Principal

Business Unit: Gen Counsel, Ethics, Risk & Compliance

Work Type: Hybrid

Job Location: Oakland

Department Overview

The Information & Records Governance (IRG) organization is an enterprise-wide program advancing the information and records management maturity of the company and Functional Areas (FA) through implementation of compliant, efficient, and systematic controls for the creation, receipt, maintenance, use, and disposition of information and records.

IRG is responsible for transforming PG&E’s information and records management practices to ensure compliance with laws and regulations, reduce risk, and promote safe and effective business operations. IRG is responsible for policy, strategy, and guidance for information and records assets, and for monitoring compliance and supporting development of consistent and integrated processes that promote the responsible management of the information lifecycle to further PG&E’s immediate and future regulatory, legal, and operational requirements.

Position Summary

The Principal Risk & Compliance Analyst will report to the Senior Manager, Compliance, and is the lead for compliance programs that monitor functional area adherence to enterprise information and records management requirements. The Principal Analyst provides program strategy and management and change leadership, as well as alignment, across current and future compliance monitoring programs. The program lead will also coordinate with program leads across IRG, to understand IG maturity trends affecting compliance monitoring priorities and focus areas.

The Principal Risk & Compliance Analyst will lead program management (e.g. project management, planning, communication, continuous improvement) for compliance assessments of internal teams and audits of contract partners, as well perform gaps analysis within both programs. In addition, Principal Risk & Compliance Analyst will lead development of a forthcoming control testing program and integration of that work with current monitoring programs.

The successful candidate will have a strong understanding of and experience with gap analysis concepts and techniques, as well as knowledge of information governance maturity best practices. In that capacity, the successful candidate will have a unique opportunity to help information and record owners across the company identify and remediate gaps in information management practices, reducing risk for the company and its customers.

This position is hybrid, working from your remote office and your assigned work location as required.

PG&E is providing the salary range that can reasonably be expected for this position at the time of the job posting. This salary range is specific to the locality of the job. The actual salary paid to an individual will be based on multiple factors, including, but not limited to, internal equity, specific skills, education, licenses or certifications, experience, market value, and geographic location. The decision will be made on a case-by-case basis related to these factors.​ This job is also eligible to participate in PG&E’s discretionary incentive compensation programs.  

A Reasonable Salary Range:

Bay Area – $132,000-$196,900

Job Responsibilities

• Leads the development of strategy and materials for current and future compliance monitoring programs. Manages performance tools and metrics. Manages an overarching schedule for monitoring work, considering risk, to inform leader decisions on how to deploy limited resources to the highest priority work.
•  
• Leads the compliance monitoring programs, performing gap analyses of Functional Area and contract partner information management practices to identify areas for remediation and improvement.
• Develops and implements process improvements to align program elements (metrics, communication templates, remediation tracking, document retention) across current and future monitoring programs to provide standardized products.
• Serves as a subject matter expert (SME) for compliant records and information management practices.
• Provides consulting support, guidance, and recommendations to ensure effective risk and compliance management within the business.
• Leverages compliance and information governance knowledge to understand and challenge business decisions.
• Supports development of best practices in risk and compliance management.
• Develops and delivers presentation materials for various levels of management, including executives.
• Participates in risk and compliance management forums at the functional area and enterprise levels.
• Works independently with minimal guidance on complex compliance and risk assessment issues with critical impact to the organization and the company.

• Anticipates risk and compliance issues and develops innovative solutions to mitigate risks.
• Works with all levels of leadership (up to and including SVP) across functions to influence decisions around risk and compliance issues.

• Works with senior management to support strategic planning and decision-making on compliance and enterprise information management maturity issues.
• Assists with other compliance-related projects and activities as directed.

Qualifications

Minimum

• Bachelor’s degree in any of Management, Risk, Compliance, Business, Finance, or related discipline; or equivalent experience

• 10 or more years of experience in risk or compliance management,  or related field

Desired

• Master’s Degree or equivalent experience.
• Prior experience in any of the following: risk or compliance management, information governance, utility operations or related field.
• Certification in risk management, compliance, or information governance/records management.
• Extensive knowledge of risk analysis and assessment.
• Knowledge of records management and information governance.
• Strong communication skills for all levels of organization, both verbal and in writing.
• Project management skills.
• Ability to work across multiple functions and build strong working relationships.
• Ability to facilitate decision-making.
• Ability to synthesize complex issues into easy-to-understand concepts.
• Ability to influence varying levels of leadership and collaborate with cross-functional teams.
• Ability to manage multiple competing priorities to completion.
• Ability to handle confidential and sensitive information.
• Ability to engage appropriate SMEs in problem solving teams.
• Ability to multi-task and meet critical deadlines while delivering high quality work products.