The Manager, NERC Compliance (Lead) – CIP is responsible for designing, implementing, and maintaining QE Solar’s NERC CIP Medium Impact compliance program for the company’s Control Center, supporting both utility-scale and distributed energy resource (DER) sites nationwide. This role serves as the program owner for NERC CIP-002 through CIP-014 and O&P standards, driving governance, process maturity, technical alignment, and audit readiness across OT, IT, Security, Legal, and Operations teams.

Essential Job Functions & Responsibilities:

Program Governance & Compliance Leadership – 40%

• Establish and continuously improve QE Solar’s NERC CIP compliance program (CIP-002 through CIP-014).

• Own CIP-related policies, procedures, workflows, and governance structures.

Cross-Functional Coordination & Technical Alignment – 25%

• Serve as central liaison between OT, IT, Security, Legal, Operations, and Consultants.

• Ensure implementation of technical and administrative controls that meet compliance requirements.

Audit Readiness & Documentation – 20%

• Oversee RSAWs, evidence, documentation, and compliance records via Jira/Confluence, SharePoint, or ServiceNow.

• Lead NERC/Regional audits, spot checks, and data requests.

Program Expansion & Maturity – 10%

• Design scalable compliance architecture supporting DER growth and potential High Impact classification.

• Support automation initiatives and process efficiencies.

Team Development & Culture – 5%

• Mentor compliance and cybersecurity staff and promote proactive compliance culture.

Knowledge

• Deep understanding of NERC CIP standards CIP-002 through CIP-014.

• Working knowledge of O&P standards and their intersection with CIP requirements.

• Knowledge of DER aggregation, utility-scale solar, and BESS operations.

• Familiarity with NIST 800-53 security controls.

Skills  

• Strong written and verbal communication skills.

• Expert-level audit defense and documentation skills.

• Proficiency with compliance systems (Jira, Confluence, SharePoint, ServiceNow, etc.).

• Strong analytical, organizational, and governance-building skills.

• Ability to collaborate cross-functionally in technical and operational environments.

Abilities          

• Ability to lead end-to-end CIP program development and sustainment.

• Ability to manage multiple audits, evidence requests, and compliance workflows.

• Ability to translate regulatory requirements into operational controls.

• Ability to design scalable, future-ready compliance architectures.

• Ability to build trust and communicate effectively across technical and executive teams.

Physical Requirements       

• Ability to sit, stand, and work at a computer for extended periods.

• Ability to travel to NJ and other locations for audits, site visits, and operational meetings.

• Ability to safely navigate utility sites and control center environments.

Required Education

Bachelor’s degree in engineering, Cybersecurity, Information Systems, or related field (or equivalent experience).

Required Experience            

• 8–12+ years of NERC CIP program management or audit leadership at a registered entity (GOP, TOP, RC, BA).

• Demonstrated success implementing and sustaining Low, Medium, or High Impact CIP programs.

• Experience with Regional Entity audits (RF, NPCC, SERC, WECC, etc.) and   mitigation documentation.

• Strong familiarity with CIP and O&P coordination.

Preferred Experience           

• Experience with DER aggregation, utility-scale solar, BESS, or Medium/High Impact Control Centers.

• Experience building compliance programs in a fast-growing renewable energy environment.

Preferred Certifications, Licensures, Etc.           

• CISA – Certified Information Systems Auditor

• NERC certifications (preferred but not required)

• Additional cybersecurity or compliance credentials

Ability to Relocate:

• Scottsdale, AZ : Relocate before starting work (Required)

Workplace Type: on-site
Salary Range: $90,000- $100,000 Per Year 
Employment Type: Full-time
Location: Scottsdale, AZ USA

Statement to all Third-Party Agencies and Similar Organizations:
QE Solar accepts resumes only from contracted recruiting agencies with formal service agreements. Please do not send unsolicited resumes or outreach emails to our QE Solar employees, hiring managers, or team members without expressed consent or contract for services. QE Solar is not responsible for any fees or charges associated with unsolicited resumes or services.