***This position will be filled as a Business Analyst or Business Analyst Senior depending on the qualifications and experience of the candidate***
Entergy Corporation is an integrated energy company engaged primarily in electric power production and retail distribution operations. Entergy owns and operates power plants with approximately 30,000 megawatts of electric generating capacity, including 8,000 megawatts of nuclear power. Entergy delivers electricity to 2.9 million utility customers in Arkansas, Louisiana, Mississippi, and Texas. Tracing its history to 1913 and headquartered in New Orleans, Louisiana, Entergy has annual revenues of $11 billion and more than 13,000 employees.
The company's utility business provides electric retail and wholesale power to customers in four states through five utility operating companies: Entergy Arkansas, LLC; Entergy Louisiana, LLC; Entergy Mississippi, LLC; Entergy New Orleans, LLC; and Entergy Texas, Inc. Entergy also delivers natural gas services to 200,000 customers in New Orleans and parts of Baton Rouge, Louisiana. Entergy is winding down its wholesale generation business, which provides power to wholesale customers primarily from our two remaining nuclear facilities located in the northern United States.
The electric utility industry is rapidly changing, and Entergy is entering an exciting period of growth as we prepare for the future. We are building the premier utility, a utility that delivers sustainable value to all its stakeholders - our customers, employees, communities, and owners - as measured by strong net promoter scores, high levels of service, superior and affordable products and services, highly skilled and engaged employees, and industry-leading financial performance. We are focusing our sights on three key priorities - customer centricity, continuous improvement, and creating a culture of belonging for our employees. Join us as we take the next step on our journey to building the premier utility.
Job Summary:
Performance and Regulatory Compliance executes on implementation of a framework to ensure that the security organization's practices remain observant to all compliance directives required by the Sarbanes Oxley (SOX) requirements and the Health Insurance Portability and Accountability Act (HIPAA).The Consultant will support the tracking and trending of compliance effectiveness and propose program adjustments to address issues. This position in the Performance and Regulatory Compliance group will provide support to ensure Entergy adapts to emerging regulations and work to continually improve the security organization's regulatory compliance posture. The role is critical to ensure Information Security (IS) complies with all applicable federal, state & local regulatory requirements.
This role will assist with communications with governmental agencies, information sharing centers, and regulatory bodies on the status of Entergy's regulatory compliance status and will stay abreast of impending regulations.
This role will be assigned to one of three functional areas - Compliance and Improvement, Procedures and Process, or Metrics and Analytics.
Key responsibilities include:
- Coordinate the regulatory program within IS to ensure strict adherence with the SOX and HIPAA requirements
- Assist in the documentation of IS processes and procedures into process flows and apply a risk-based approach to determine areas of weakness utilizing frameworks such as COBIT and NIST
- Assist with compliance assessments of Entergy policies and regulatory requirements across the various IS groups
- Track Key Performance Indicators (KPI) to measure the IS organization's effectiveness and communicate findings
- Assist with periodic compliance assessments, suggest and communicate findings
- Participate in the Corrective Action Program (CAP) process for evaluating the conditions adverse to quality, safety, security and compliance; set priorities in correcting problems and tracking them until they have been corrected
- Deliver continuous improvement of IS compliance with regulatory and company standards
- Maintain awareness of changing regulatory requirements
- Execute on IS Performance Management processes; collect/deliver performance metrics
- Compile Change Management reporting, Key Performance Indicators (KPI) and Key Risk Indicators (KRI) Metrics information
- Integrate data from multiple sources to draw conclusions regarding Entergy's regulatory compliance
- Identify potential compliance irregularities through the use of KRIs
- Identify unusual fluctuations and trends in data to mitigate issues
- Deliver process excellence on maintaining a strong culture of regulatory compliance at Entergy
Experience needed
- IT Business Analyst: Three to five years of regulatory compliance and auditing experience as it relates to IS
- IT Business Analyst Sr: Five plus years of regulatory compliance and auditing experience as it relates to IS
- One years of work experience in a regulatory compliance function within a utility or related industry
- Good communication skills with internal stakeholders
- Experience with Cyber security operations
- Experience working with direct, indirect, and outsourced resources
- Exposure to operations playbooks, run books, and performance measures
- Some experience maintaining operations leveraging industry best practices
- Experience with data analysis, data integration and data validation activities with large regulated utilities or related industry
- Some experience with regulatory relations and/or regulatory reporting
Minimum knowledge, skills, and abilities required of the position
- Knowledge of security ramifications of energy related regulations (SOX and HIPAA)
- Knowledge of security, risk, and control frameworks and standards such as ISO 27001, NIST, FISMA & COBIT
- Ability to quickly adapt to changing events and priorities
- Social, verbal, and written communication skills, with ability to effectively present analytical data
- Detailed oriented with the ability to interpret regulatory requests and corresponding data
- Available to travel
- Comfortable working in high stress and ambiguous environments
- Capable of meeting deadlines
Education needed
Associate's degree in computer science, cyber security or a related discipline or equivalent work experience.
Any certificates, licenses, etc., required for the position
Professional certifications such as CISSP, CISM, CISA preferred
Req ID: 102248
Entergy Corporation
639 Loyola Ave
New Orleans
Louisiana United States
www.entergy.com
