Compliance & Risk Consultant

Requisition ID# 161545

Job Category: Compliance / Risk / Quality Assurance

Job Level: Individual Contributor

Business Unit: Information Technology

Work Type: Hybrid

Job Location: Oakland

Department Overview

Enterprise Protection-Information Technology (EP-IT) Governance, Risk and Compliance (GR&C) is responsible for managing risk and compliance governance and oversight activities for the Information Technology and Enterprise Protection organization. The team reports directly to the SVP, CSO/CDAO with functional responsibility aligned to support the broader CIO organization. In a rapidly changing environment, this team provides guidance, consultation, and support to the IT Architecture, IT Operations, Cybersecurity and Corporate Security organizations to ensure risk and compliance are well-managed today and prepared for emerging requirements and opportunities in the future.

Position Summary

The UDN Compliance & Risk Consultant in EP-IT GR&C, will play a pivotal role in implementing and supporting the implementation of the PG&E Compliance Maturity Model (CMM) for adherence with internal standards and external regulatory requirements. The UDN Compliance & Risk Consultant reports to the Manager, EP-IT UDN Compliance responsible managing the EP-IT enterprise-wide compliance program which enables the organization to operate in compliance with applicable standards, laws and regulations; identify, manage, and mitigate operational risk; and help develop and maintain the framework in response to changes to laws, regulations, and standards.

PG&E is providing the salary range that the company in good faith believes it might pay for this position at the time of the job posting. This compensation range is specific to the locality of the job. The actual salary paid to an individual will be based on multiple factors, including, but not limited to, specific skills, education, licenses or certifications, experience, market value, geographic location, and internal equity. Although we estimate the successful candidate hired into this role will be placed between the entry point and the middle of the range, the decision will be made on a case-by-case basis related to these factors.

A reasonable salary range is:

Bay Area Minimum: $87,000.00

Bay Area Maximum: $131,000.00

Job Responsibilities

• Act as a consultant for Cybersecurity Frameworks and controls, as well as ensuring compliance program standards and procedures align with CMM elements and NIST Frameworks.
• Participate and contribute to industry forums and working groups.
• Execute a comprehensive compliance monitoring process to identify potential risks and ensure corrective actions are taken promptly.
• Stay abreast of evolving regulatory changes in California and broader utility industry, adapting processes and procedures accordingly.
• Collaborate with cross-functional teams to integrate compliance requirements into EP-IT business processes and programs.
• Provide guidance to employees on compliance matters, fostering a culture of awareness and accountability.

• Participate in root cause analysis exercises.
• Provide support for responses to regulatory data requests, investigations, audits, and other inquiries.
• Performs compliance & control testing, audits, or other validation processes and analyzes risk or compliance metrics.
• Collaborates with the team developing controls and mitigation plans, and monitors implementation.

Qualifications

Minimum:

• Bachelors Degree or equivalent experience
• 2 years job-related experience

Desired:

• Experience in compliance, 1 year
• Experience in risk management, 1 year
• Experience in utility operations, or related, 1 year