Job Family: Cyber Consulting, Risk & Regulatory Compliance Consulting Travel Required: Up to 25% Clearance Required: None What You Will Do: We are seeking a highly skilled professional to design and implement secure, compliant architectures for enterprise and operational environments. This role requires deep expertise in regulatory frameworks, cybersecurity best practices, and advanced data architecture. Key Responsibilities • Design enterprise data models, data lakes, warehouses, and integration frameworks for structured and unstructured data. • Architect secure systems aligned with NIST, ISO 27001, and CIS controls to ensure compliance. • Implement NERC CIP standards (002-013), including audit preparation, evidence gathering, and mitigation planning. • Secure data flows across AWS, Azure, and on-prem environments using encryption, IAM, and network segmentation. • Develop and enforce RBAC, ABAC, MFA, and privileged access management in compliance with technical CIP standards or similar regulations • Create secure architectures that anticipate attack vectors, supported by playbooks and detection strategies. • Protect OT environments such as EMS, SCADA, DCS, and other industrial control systems within the Bulk Electric System. • Maintain data integrity, availability, and confidentiality through metadata standards, classification, retention, and purging policies. • Collaborate with compliance, operations, IT, and engineering teams to align technical architecture with regulatory and business needs. What You Will Need: • Due to nature of client engagements must be a US Permanent Resident or US Citizen • Managing Consultant - Bachelor's degree in a business, cybersecurity, security management, homeland security, information security, or related discipline AND Five (5+) plus years post-graduation working experience within the electric utility industry or a NERC related regulator; Or Master's degree in a business, cybersecurity, security management, homeland security, information security, or related discipline AND Three (3+) plus years post-graduation working experience within the electric utility industry or a NERC related regulator. • Associate Director -Bachelor's degree in a business, cybersecurity, security management, homeland security, information security, or related discipline AND Seven (7+) plus years post-graduation working experience within the electric utility industry or a NERC related regulator; Or Master's degree in a business, cybersecurity, security management, homeland security, information security, or related discipline AND Five (5+) plus years post-graduation working experience within the electric utility industry or a NERC related regulator. • Work experience for all levels must be an emphasis on North American NERC Reliability Standards (USA and/or Canada) supporting regulatory framework and processes around NERC Critical Infrastructure Protection (CIP) and Regional Entities. • Experience in designing enterprise data models, data lakes, warehouses, and integration frameworks using structured and unstructured data. • Deep understanding of NIST, ISO 27001, and CIS controls to architect secure systems and enforce security compliance. • In-depth knowledge of implementing NERC CIP standards (002-013), audit preparation, evidence gathering, and mitigation planning. • Proficient in securing data flows across AWS, Azure, and on-prem environments with encryption, IAM, and network segmentation. • Designs and implements RBAC, ABAC, MFA, and privileged access management aligned with CIP-007 and CIP-005 requirements. • Ability to design secure architectures that anticipate attack vectors, supported by playbooks and detection strategies. • Familiar with securing OT environment such EMS, SCADA, DCS, and other industrial control systems within the Bulk Electric System. • Ensures integrity, availability, and confidentiality of data through metadata standards, classification, retention, and purging policies. • Strong writing skills for creating security architecture diagrams, CIP evidence packages, procedures, and training materials. • Works effectively with compliance, operations, IT, and engineering teams to align technical architecture with regulatory and business needs. • Ability to travel to include potential international as needed. • Ability to work onsite in a Guidehouse Office or Client Office location. • Currently reside in the contiguous United States. What Would Be Nice To Have: • Preference will be given to candidates within reasonable driving distance of listed core Guidehouse Office or Client Office Location. • Specific working experience related to any of the following: • Bulk Electric System (BES) and power systems • Electrical Reliability • NERC/FERC Enforcement or Auditing #LI-DNI The annual salary range for this position is $102,000.00-$170,000.00. Compensation decisions depend on a wide range of factors, including but not limited to skill sets, experience and training, security clearanc
