Information Security Analyst II (NERC CIP)


Strategic Staffing Solutions


Job Title: Information Security Analyst II (NERC CIP)

Location: Kansas City, MO

Role Type: W2 Only

Contract Length: 6 Months w/ Possible Extension

How to Apply: Please send resume and contact information to Rene May, Sourcing Specialist, at and reference job #208901.

Job Description/Responsibilities:

  • Provide support to ensure compliance with North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) standards and Corporate Information Security Policies.
  • Responsible for identifying and assessing information security risk, driving risk mitigation, and monitoring execution. Maintaining accurate documentation related to critical cyber assets is required. The individual will operate in a cross functional capacity working closely with vendors, procurement, engineers, operators, technicians, and information technology resources.
  • Working closely with Procurement, review supplier cybersecurity contract terms and conditions.
  • Negotiate cybersecurity and data confidentiality contract terms with suppliers
  • Analyze contract clauses, stipulations, obligations, and liabilities to ensure the interests of the organization are covered from a cybersecurity perspective.
  • Perform security risk management technology and supplier reviews. Communicate security risk to security and business leadership and stakeholders
  • Perform review of completed vendor assessment questionnaires for conformance to program objectives and methodology.
  • Improve Security Risk Management processes based on changing requirements.
  • Conduct periodic information security assessments to drive continual improvement and measure compliance with internal and external requirements.
  • Participate in the company’s projects as a security liaison to identity and assess security risks and communicate these risks to security leadership and project stakeholders. Participate in risk response discussions.
  • Assist with GRC related activities (ex. track and manage risk within the Risk Register)
  • Work with various internal teams to annually review and update Information Security Policies.
  • Identify and analyze security issues and their potential impact on business unit operations.
  • Make recommendations regarding the corporate information security strategy that support innovation.
  • Establish relationships with key personnel to understand business needs and evaluate options for protection of assets.
  • Ensure that information security activities, functions, plans and recommendations meet the risk posture of the corporation and the goals and performance measurements of the Information Security Department.
  • Ensure protection of corporate assets by assisting with the Information Security business function.
  • Ensure that corporate policies and standards are being followed by coordinating compliance activities with other Information Security Analysts, Human Resources, departmental management, and other departments.
  • Other duties as assigned.

Required Qualifications/Experience:

  • Experience with Cybersecurity Risk and contract reviews.
  • Experience with NERC CIP.

S3 supports and adheres to customer COVID-19 vaccination policies, which may include the disclosure of vaccination status.

The S3 Difference

The global mission of S3 is to build trusting relationships and deliver solutions that positively impact our customers, our consultants, and our communities.  The four pillars of our company are to:

  • Set the bar high for what a company should do
  • Create jobs
  • Offer people an opportunity to succeed and change their station in life
  • Improve the communities where we live and work through volunteering and charitable giving

As an S3 employee, you’re eligible for a full benefits package that may include:

  • Medical Insurance
  • Dental Insurance
  • Vision Insurance
  • 401(k) Plan
  • Vacation Package
  • Life & Disability Insurance Plans
  • Flexible Spending Accounts
  • Tuition Reimbursement

Job ID: JOB-208901
Publish Date: 31 Oct 2022

Tagged as: Information Security Analyst II (NERC CIP)