CyberSecurity as a Solution: Enabling Secure Business.
NERC CIP Virtualization Consultant
Location
United States
Posted
51 days ago
Salary
0
Seniority
Senior
Job Description
NERC CIP Virtualization Consultant
Dragonfli Group
• Review and update existing NERC CIP policies and procedures to reflect virtualization requirements under NERC Project 2016-02 • Develop new documentation for in-scope BES Cyber Systems across all project phases including design, build, and delivery • Document technical and procedural requirements for virtualized environments supporting critical infrastructure • Develop testing and evidence collection strategies to support CIP compliance audits • Update Management Model documentation to reflect changes in processes and procedures • Conduct awareness and education sessions to drive organizational understanding of CIP virtualization changes • Leverage assessment tools such as Tripwire or AssurX to support gap analysis and ongoing compliance monitoring • Collaborate with internal stakeholders across IT, OT, and compliance functions to socialize policy changes • Serve as a subject matter expert on NERC CIP standards, providing technical and regulatory guidance to project teams • Support engagement planning, analysis, and stakeholder coordination throughout all project phases
Job Requirements
- 5+ years of experience with NERC Critical Infrastructure Protection (CIP) standards in an energy, utilities, or electric reliability context
- Demonstrated experience with virtualization technologies (e.g., VMware, Hyper-V, or equivalent) as applied to OT/ICS or BES Cyber Systems
- Experience developing, updating, and implementing cybersecurity policies and procedures in a regulated utility or energy environment
- Familiarity with NERC Project 2016-02 (Modifications to CIP Standards) and the regulatory context for CIP virtualization
- Ability to communicate complex technical and regulatory concepts to non-technical stakeholders
- Experience conducting or supporting NERC CIP compliance assessments, audits, or gap analyses
- Proficiency producing professional deliverables in Microsoft Word, PowerPoint, and Excel
- U.S. Citizenship or Permanent Residency (required per contract)
- Ability to work within the continental United States for the duration of the engagement
Benefits
- Medical — Multiple POS health plan options including an HSA-compatible plan
- Dental — PPO coverage for preventive, basic, and major services
- Vision — Annual exam, frames, lenses, and contact lens allowance
- 401(k) — Employer match up to 5% of eligible compensation
- PTO — 15–25 days annually based on tenure, plus 16 hours of Floating PTO from day one
- Paid Federal Holidays — All 11 federal holidays observed
Related Guides
Related Categories
Related Job Pages
More Consultant Jobs
Role Description A global consulting and managed services organization is seeking an experienced service delivery leader to oversee governance and IT managed services for a large enterprise client. This role serves as the primary onshore point of contact, responsible for account governance, client relationship management, operational oversight, and delivery excellence across a complex, multi-tower engagement. The ideal candidate brings deep experience in IT outsourcing and managed services, a strong understanding of ITSM, ITAM, and vendor management frameworks, and the ability to engage confidently with senior stakeholders. This role sits at the intersection of service delivery, client partnership, and account growth — requiring both operational discipline and strategic advisory capabilities. This is a contract opportunity with potential for future full-time consideration. - Remote position based in Ontario, Canada - Posted compensation may be paid in USD or converted to CAD equivalent depending on location and contract terms - Occasional travel may be required - Candidates must currently reside in Canada - Independent contractors are welcome - No third-party vendors or agencies please Qualifications - 15+ years of experience in IT outsourcing or managed services, with demonstrated leadership across ITSM, ITAM, and application or infrastructure managed services engagements - Experience working within complex, highly regulated enterprise environments — relevant industry backgrounds may include healthcare, pharmaceutical, life sciences, medical devices, or related sectors - Proven experience managing complex client relationships and large enterprise accounts in an onshore/offshore delivery model - Background in vendor management, sourcing strategy, and supplier negotiation - Strong analytical and problem-solving skills with a results-oriented approach - Excellent communication and presentation skills, with the ability to engage confidently with senior executives and client leadership - Experience facilitating governance forums, steering committees, and executive-level stakeholder meetings Requirements - Education: Bachelor's degree in a relevant field required - Master's degree preferred What You'll Be Doing - Provide overall delivery oversight across a large, complex enterprise account, ensuring compliance with contractual commitments and governance standards - Serve as the primary onshore relationship owner, maintaining clear communication and strong working relationships with key client stakeholders - Drive governance forums and executive-level meetings, facilitating follow-up and ensuring effective implementation of agreed strategies - Identify and develop account growth opportunities by understanding evolving client needs and proposing value-added services - Advise on supplier and vendor contractual commitments, supporting sourcing negotiations and vendor management activities - Collaborate with onshore and offshore delivery teams across cross-functional business units to ensure operational alignment and efficiency - Monitor industry trends and best practices to continuously improve service delivery relevance and quality - Support onboarding and training of new team members, ensuring familiarity with client requirements, security protocols, and compliance standards
Consultant, NetSuite – ERP
Solutions GURUS (GURUS Solutions)Partenaire Oracle NetSuite ERP & Boomi - mise en œuvre, intégrations, et plus / Implementations, Integrations, and more
• Analyze business procedures and determine the appropriate modifications to be applied to the software • Assist in the development of specifications, configure the system, oversee and deploy environnement modifications • Host meetings directly with clients to gather requirements, analyze situation and provide solutions • Work in conjunction with programmers and project managers to coordinate efforts and meet deadlines, as well as providing a status of the work in progress and providing input to help adjust the planning • Provide training to end users during the implementation phase
• Partner with clients to assess, design, and enhance privacy programs aligned with regulatory and industry requirements. • Interpret and advise on European data protection and privacy laws, including the GDPR, ePrivacy requirements, and applicable EU regulatory obligations. • Conduct privacy assessments, risk evaluations, and audits to identify gaps and create remediation strategies. • Lead the implementation and configuration of privacy management tools (e.g., OneTrust, TrustArc) for data mapping, DPIAs, cookie consent, subject rights, privacy notices, and more. • Collaborate cross-functionally with legal, compliance, IT, and business stakeholders to operationalize privacy programs. • Provide hands-on support during technology implementations and recommend privacy-enhancing technologies where applicable. • Contribute to internal knowledge-sharing, service offering development, and mentoring junior team members. • Support multiple concurrent projects in a fast-paced, results-driven consulting environment. • Engage in thought leadership, including developing reports and presentations that communicate findings, strategies, and roadmaps.
• Co-design the evaluation framework with the Climate Catalyst learning team, including a working session that explains the rationale behind methodological choices, and facilitating a short internal learning session to build staff understanding of how to design and commission evaluations. • Conduct a ‘listening report’: structured qualitative engagement with programme partners and stakeholders (industry, financial institutions, civil society, researchers, philanthropies) to capture perspectives on programme relevance, effectiveness, and influence. • Gather and synthesise qualitative and quantitative evidence of impact, including from individuals and organisations engaging with programme outputs. • Assess the effectiveness and value of network-building activities, with specific attention to IGSN’s role in driving ecosystem change. Methods might include ecosystem mapping or network analysis to assess relationship-building and influence pathways. • Establish a documented baseline to enable pre- and post-intervention impact assessments for new programme activities from mid-2026 onwards, including baseline indicators and/or frameworks for emerging workstreams. • Produce actionable recommendations to strengthen programme delivery and maximise impact in the remaining programme period.



