Eagle Creek Renewable Energy

信息安全合规分析师

加入位于北卡罗来纳Badin的Eagle Creek Renewable Energy,担任信息安全合规分析师。负责监控网络安全,确保遵守NERC CIP和NIST标准,保护水电资产。与多团队协作,推动合规和安全改进。

Eagle Creek Renewable Energy

公司概况

Eagle Creek Renewable Energy LLC

美国密歇根州梅诺米尼

2010年

约100名员工,运营85个水电设施,装机容量近700兆瓦(来源: eaglecreekre.com)。

他们的业务

Eagle Creek Renewable Energy专注于水电,拥有、运营和开发小型至中型的河流发电设施,能够在不需要大型水坝的情况下生成基载可再生电力。该公司强调对现有场地的修复,以提高效率并促进环境整合(来源: eaglecreekre.com)。他们的服务包括收购表现不佳或闲置的电厂,修复涡轮机,获得联邦能源监管委员会(FERC)许可证,以及管理运营,以向区域电网提供清洁电力。例如,他们从2017年收购的位于缅因州肯纳贝克河的Anson(9兆瓦)和Abenaki(19兆瓦)设施每年提供约1.5亿千瓦时的电力(来源: eaglecreekre.com)。

项目与业绩

Eagle Creek在完成项目方面有着显著的业绩,包括梅诺米尼河设施,其中包括Little Quinnesec(9.1兆瓦,威斯康星州尼亚加拉)、Park Mill(2.274兆瓦,威斯康星州马里内特)和Menominee(2.074兆瓦,密歇根州梅诺米尼)。这些设施自20世纪初以来一直在运营,年均发电超过1500万千瓦时(来源: eaglecreekre.com)。此外,在密歇根州的Thornapple河上,Ada(1.4兆瓦)和Cascade(1.6兆瓦)设施每年共同发电超过1200万千瓦时。重要的收购包括来自缅因州Madison Paper Industries的30兆瓦投资组合和总计12兆瓦的十个东北设施,这大大扩展了他们的运营能力(来源: eaglecreekre.com)。该公司继续寻求进一步收购,以增强其投资组合和运营足迹。

近期发展

在近期发展中,Eagle Creek于2025年10月6日宣布,Apollo管理的基金已同意收购该公司,这突显了其在85个设施中700兆瓦的显著运营能力。预计该收购将在2026年第一季度完成,待监管批准,并强调了公司在满足对可靠低碳基载电力日益增长的需求中的作用,特别是针对数据中心(来源: apollo.com)。在过去两年中没有报告其他重大合同、合并或融资轮,表明公司专注于巩固现有运营并为即将到来的收购做准备。

在这里工作

Eagle Creek提供多种职位,涵盖运营、工程、环境合规、FERC许可、涡轮机维护和区域管理,反映出其85个设施的广泛投资组合。招聘在密歇根州梅诺米尼和新泽西州莫里斯敦等运营中心进行,以及缅因州、威斯康星州和马萨诸塞州的其他地点(来源: eaglecreekre.com)。公司文化强调安全和专业的运营,专注于区域管理,以增强投资者、员工和社区的利益。像梅诺米尼河上的鲟鱼栖息地恢复项目展示了他们对环境保护的承诺(来源: eaglecreekre.com)。然而,现有来源中没有记录具体的员工福利。


最后更新于 5月 29, 2026 | 报告问题

Eagle Creek Renewable Energy is seeking an experienced Information Security Compliance Analyst to join our team and help safeguard our organization's regulatory standing and the security of the critical generation assets across our fleet of hydropower facilities. The ideal candidate will have a strong background in monitoring network security, investigating breaches, and implementing strategies to maintain a secure environment in support of regulatory compliance, with the ability to translate complex requirements into clear, defensible, and well-documented controls. In addition, knowledge and experience with NERC CIP and NIST standards are essential for this role.

What You'll Do

  • Monitor networks for security breaches: Proactively monitor our organization's networks and systems to identify and respond to any security breaches or suspicious activities. Implement necessary measures to mitigate risks and ensure the integrity and confidentiality of our information. Conduct thorough investigations into security incidents, document findings, and create detailed reports for management. Collaborate with relevant teams to address identified vulnerabilities and recommend improvements to prevent future incidents.
  • Monitor regulatory change and perform gap analysis: Stay up to date with new and revised NERC standards, FERC orders, and relevant guidance, and assess their impact on our organization. Conduct gap analyses against current practice and translate regulatory change into actionable requirements for IT, security, and facility teams, tracking remediation to completion.
  • Develop and test internal controls and policies: Develop, maintain, and test internal controls and policies that demonstrate sustained compliance rather than point-in-time conformance.
  • Collaborate cross-functionally and report compliance status: Partner within IT and with operational technology and facility personnel to ensure controls are implemented, documented, and audit-ready. Produce compliance status reporting, metrics, and KPIs for leadership, and support incident reporting and recovery documentation requirements.
  • Support operational security and incident response: Support day-to-day security monitoring, vulnerability management, and the investigation of and response to security incidents, and help review proposed changes to systems and infrastructure for both security and compliance impact.

What Skills and Experience You'll Need

  • Education and Experience:
    • Bachelor's degree in information security, information systems, business, engineering, or a related field, or equivalent experience.
    • Proven experience in regulatory compliance, audit, GRC, or internal controls, ideally in electric utility, energy, or another regulated or critical-infrastructure environment.
    • Working knowledge of the NERC CIP compliance lifecycle, including self-certification, self-reporting, mitigation, and audit.
  • Compliance and Regulatory Knowledge:
    • In-depth knowledge of security technologies, such as firewalls, intrusion detection systems, antivirus software, encryption methods, and vulnerability scanning tools.
    • Familiarity with industry security standards and frameworks, including NERC CIP and NIST.
  • Analytical Skills:
    • Excellent analytical and problem-solving abilities to translate regulatory requirements into practical, defensible controls.
    • Ability to assess complex, multi-site environments and identify compliance gaps and risks.
  • Communication and Collaboration:
    • Strong written communication and documentation discipline to produce audit-ready evidence and clear compliance reporting.
    • Ability to collaborate and work cross-functionally with teams such as IT, operational technology, physical security, legal, and management.
  • Certifications (preferred):
    • Certified Information Systems Security Professional (CISSP).
    • Certified Information Systems Auditor (CISA).
    • Certified in Risk and Information Systems Control (CRISC).
    • Global Industrial Cyber Security Professional (GICSP) or NERC CIP compliance training.

立即申请

职位已过期?

请告知 Eagle Creek Renewable Energy 您是在 Rejobs 上找到这份工作的。这有助于我们发展,并让更多人进入可再生能源行业。

职位详情

2026年7月2日

2026年7月3日

全职

现场

公司

水力发电

Eagle Creek Renewable Energy

eaglecreekre.com

  •  巴丁,北卡罗来纳州,美国

Experienced

UTC-05:00