Sr Manager, Compliance and Risk

Requisition ID # 167451 

Job Category: Government and Regulatory Relations 

Job Level: Senior Manager

Business Unit: Gen Counsel, Ethics, Risk & Compliance

Work Type: Hybrid

Job Location: Oakland

Department Overview

The Enterprise Governance and Shared Compliance (EG&SC) group within the General Counsel, and Ethics, Risk, and Compliance (GC ERC) department provides leadership, strategic direction, and critical oversight of cross-cutting governance and compliance matters, including overseeing and expanding existing enterprise programs for compliance with the Federal Energy Regulatory Commission (FERC), North American Electric Reliability Corporation (NERC), Western Electricity Coordinating Counsil (WECC), and the Transportation Security Administration (TSA) cybersecurity and privacy requirements. One aspect of this function is to lead and support coordination, governance, and implementation of critical shared (e.g., cross-functional) compliance requirements and adherence with standardized enterprise and operational compliance risk mitigations. The group also provides enterprise-wide governance over Information and Records Management (IRG) requirements.

Position Summary

The Senior Manager of NERC, FERC and TSA Cybersecurity compliance is responsible for overseeing the organization’s compliance, governance, and program execution related to the federal and industry-mandated standards.  This role ensures enterprise-wide alignment with company policies, standards and procedures.  The Enterprise NERC, FERC, TSA Compliance (ENFTC) team functions as the 2nd line of defense in the 3 lines model providing independent oversight of compliance programs.

The position partners with executive leadership and functional area compliance owners to maintain and develop compliance processes for monitoring and reporting program health, identifying and mitigating risk, as well as managing new and changing regulatory requirements.  This role will regularly meet with senior leadership in various functional areas to communicate issues, coordinate cross-functional actions and recommend improvements.  This position performs outreach and coordination, leads technology strategy, and acts as the interface with external regulators.

The successful candidate will have a deep understanding of managing federally regulated compliance programs and strategy.  They will build bridges with internal and external partners to manage compliance with the goal of maintaining the security and reliability of critical infrastructure.  The candidate will have strong interpersonal skills and a focus on continuous improvement.

This position is hybrid, working from your remote office and your assigned work headquarters in Oakland.

PG&E is providing the salary range that can reasonably be expected for this position at the time of the job posting. This salary range is specific to the locality of the job. The actual salary paid to an individual will be based on multiple factors, including, but not limited to, internal equity, specific skills, education, licenses or certifications, experience, market value, and geographic location. The decision will be made on a case-by-case basis related to these factors.​ This job is also eligible to participate in PG&E’s discretionary incentive compensation programs.  

A Reasonable Salary Range:

Bay Area – $147k to $218,900

Job Responsibilities

The Sr Manager, Enterprise NERC, FERC and TSA will report to the Director and will hold the following responsibilities:

Issue Management - Investigations, Self-Reports and Mitigations

• Developing, implementing, and maintaining compliance health dashboards and reporting tools to provide clear visibility into compliance status, emerging risks, and performance trends
• Preparing and delivering regular compliance health and risk reports to the compliance Governance Committee(s), ensuring timely escalation of significant issues and actionable recommendations
• Coordinating with internal compliance teams and functional area business units to assess compliance maturity/risks, track mitigation efforts, and promote a culture of compliance accountability
• Supporting and coordinating internal and external compliance monitoring activities such as self-certifications or audits for NERC, FERC and TSA Cybersecurity compliance
• Developing strategic direction for the use of technology to support compliance program management; Managing the processes to support the NERC program management tool (AssurX).  Supporting technology projects and help develop sustainable solutions to automate compliance and improve efficiency
• Developing and implementing an Enterprise FERC program management team that coordinates oversight of FERC compliance across the company
• Creating and maintaining compliance program guidance documents for governance and oversight of the NERC, FERC and TSA
• Benchmarking program compliance practices externally to identify best practices and opportunities for improvement; help drive continuous improvement
• Developing and/or applying innovative tools and solutions to support compliance programs and enterprise-wide initiatives, with a focus on how the compliance management system can help solve challenges and improve efficiency
• Supporting Horizon Scanning processes for new and changing compliance requirements; coordinate with other internal compliance teams to ensure compliance is integrated into the business and risks are mitigated
• Managing the applicable compliance requirement inventories in collaboration with other compliance stakeholders, and responsible functional areas owners and subject matter experts
• Assisting all levels of leadership across functions to support strategic planning and influence decisions around compliance issues
• Interfacing with NERC, WECC and TSA to oversee compliance activities including Data Requests such as NERC Alerts, Audit Requests for Information (RFIs), Comment and Ballot and other regulatory requests; collaborating with internal stakeholders to collect and perform quality checks of the information

Qualifications

Minimum

---------------------------

• BA/BS or equivalent work experience in business or other relevant discipline
• Experience in Electric Utility, 8 years in operations, engineering and/or compliance; including 2 years focused on NERC, FERC or Cybersecurity (or closely related experience)
• At least three years of leading a team,

Desired

---------------------------

• MBA or MS in risk, compliance, sciences, engineering or related discipline, or equivalent experience
• Strong program management, project management, internal consulting, change management, and process improvement skills
• Excellent verbal and written communication skills to clearly convey information and ideas to stakeholders at all levels in the organization
• Ability to work independently with guidance on only the most complex issues
• Ability to work closely with functional area representatives as a true partner
• Consistent demonstration of a high level of innovative and new thinking focused on compliance strategy, controls, and implementation
• Advanced knowledge of compliance, risk management and internal controls
• Application of demonstrated knowledge and skill to resolve complex problems
• Ability to identify and implement program and process improvement opportunities, including competency in making sense of complex information to effectively solve problems
• Ability to effectively communicate complex data and findings to diverse audiences using a variety of media and visual management
• Proficient with Microsoft products including Word, Excel, PowerPoint, SharePoint
• Highly flexible, self-directed, and able to adapt well to rapidly changing environment
• Strong client focus
• Certified Information Systems Security Professions (CISSP) or equivalent
• Certified Information Systems Manager (CISM) or equivalent
• Project Management Professional (PMP)
• NERC System Operator Certification
• Familiarity with implementing Lean Management
• Builds strong-identity teams that apply their diverse skills and perspectives to achieve common goals
• Creates a climate where people are developed and motivated to do their best to help the organization