About harold sherrill

  • Qualifications Master’s Degree
  • Preferred Work Schedule Full-time Job
  • My Experience 8 Years +
  • Last Job Title CIP Compliance Manager
  • Desired Job Title Compliance Manager

Education

Experience

  • 2020 - Present
    RWE Renewables LLC

    Regulatory Compliance Manager – Critical Infrastructure Protection

     Manage RWE’s Cyber Security Compliance program based on NERC ERO Enterprise Rules of Procedures  Act as Subject Matter Expert (SME) within RWE and industry on compliance and Internal Controls matters.  Create investigation guidelines for review of design and implementation of Internal Controls associated with regulatory compliance.  Provide non-compliance investigation leadership to legal teams, SMEs, and upper leadership.  Perform outreach to business units on new initiatives within the Regulatory space.  Use of knowledge and experience with NERC & CPUC Standards/NIST/COSO/ISO 27001, General Data Protection Regulation (GDPR), FEDRAMP, MIL-STD-498.  Responsible for E-ISAC/NCICC Reporting of cyber incidents.  Work with and analyze data-intensive and detailed information and to draw meaningful conclusions from information.  Manage investigation engagements utilizing excellent organizational skills with an ability to work on multiple projects simultaneously.  Manage regulatory engagements utilizing excellent written and verbal communication skills with strong technical writing skills.  Develop and maintain appropriate KPIs for compliance performance.

  • 2019 - 2020
    Western Electricity Coordination Council (WECC)

    Sr. Internal Controls Engineer

     Lead WECC’s Internal Controls Evaluation program based on NERC ERO Enterprise Guide for Internal Controls  Act as Subject Matter Expert (SME) within WECC and industry on Internal Controls related matters in information technology disciplines such as cyber security, audit, risk management, and networking, electric system operations, planning, modeling, or protection and control.  Create and assess guidelines for review of design and implementation of Internal Controls associated to NERC Reliability Standards.  Develop guidelines for assessing maturity of Registered Entity’s internal control programs.  Provide assistance to the Cyber Security and Operations/Planning Audit Teams and Risk Analysis & Mitigation Team during review of design and implementation of internal Controls.  Provide mentoring to Risk Analysis & Mitigation team members as needed.  Participate in ERO Internal Controls Working group as requested.  Perform outreach to registered entities on new initiatives within the Risk Analysis & Mitigation team.  Support Intra-departmental initiatives in collaboration within compliance teams  Leverage industry experience working on identification, implementation, or assessment of internal controls within the framework of a regulated agency.  Use of knowledge and experience with NERC Standards/NIST/COSO/ESC2M2 or other Internal Controls Model in assessments.  Work with and analyze data-intensive and detailed information and to draw meaningful conclusions from that information.  Manage assessment engagements utilizing excellent organizational skills with an ability to work on multiple projects simultaneously.  Manage assessment engagements utilizing excellent written and verbal communication skills with strong technical writing skills.  Manage assessment engagements utilizing collaboration with teams and groups of technical specialists.  Manage assessment engagements with ability to work independently on multiple tasks while maintaining deadlines.  Manage assessment engagements utilizing managing projects with attention to detail for timely and accurate completion.

  • 2016 - 2018
  • 2011 - 2016
    San Diego Gas & Electric

    Energy Management System Hardware Supervisor

    Hand selected to direct and provide strategic vision and leadership skills. Successfully supervise senior technical staffs in NERC CIP High-Impact Control Center environment. Effectively performed dual roles as enterprise developer and project manager for multiple IT projects within the scope of a program, and including individual-based projects to deliver customer-facing IT solutions, system and process integrity. Effectively over management of internal and external entities such as vendors, utilities, WECC, ISO complete complex & on-going capital projects. Signature Achievement:  Oversaw development of strategy, recommendations, and standards/guidelines for the NERC CIP V5 compliance.  Developed business relationships within the multi-functional project space to ensure successful implementation and supportability. Also provided technical consultation and support on projects and system development.  Provided leadership in the hardware environments for the requirements, design, and implementation of electric transmission SCADA systems.  Oversaw reviews and approvals for a subject matter expert change management tasks, evidence sufficiency, and sign-offs.  Provided technical expertise in analysis, design, and development of Transmission Operations infrastructure, telecommunications, access control, and physical security. Also participated in CIP audits and RSAW development.

  • 2002 - 2020
    San Diego Gas & electric

    Enterprise Telecommunications Supervisor

    Effectively oversaw management of utility sector telecommunication professionals in the substation and corporate environment. Defined technology strategies, managed the budget, and led the development and delivery of value-driven solutions to meet challenging business needs. As Risk Programs representative, was responsible for department Internal Safety and Environmental Governance reports and audits. Signature Achievement:  Executed risk assessment framework and audits to identify enterprise-wide IT risks and managed the design and execution.  Provided leadership to field telecommunications technicians and allocate department resources to meet reliability, performance, operations and budget requirements.  Managed telecommunications projects to meet company needs & also develop personnel soft skills & technical bench strength  Leveraged ITIL frameworks and facilitation, and also engaged in process development and continuous improvement.  Effectively acted as an agent of the company to uphold employee collective bargaining agreement and effectively contributed to the development of department goals, to ensure alignment with corporate aspirations.

Leave Your Review

  • Overall Rating 1.0

Go to Top