Skip page header and navigation
Posted 18 October 2024
Job ref: 234907RCO

Regulatory Submissions Lead

  • Location: Glasgow, Glasgow City, Scotland
  • Salary: Market related
  • Category
  • Sector: Renewable Energy
  • Contract type Contract
  • Consultant: Robbie Cockburn

Our client Scottish Power are currently recruiting for a Regulatory Submissions Lead to join their team based in Glasgow on a contract basis initially. Ideally for this role they are looking for an experienced Regulatory Submissions professional with experience in working in a regulated environment. For more information on this role see below:

Job Purpose Statement
SPEN has an ambitious, multi-year security transformation programme that is focussed on reducing cyber risk, attaining and maintaining compliance with NIS Regulations and delivering a cyber resilient business. The SPEN Cyber Security directorate is responsible for delivery of the programme through to 2026.

The primary role of the Regulatory Submissions Lead within the BISO function is to lead the collation and delivery of cyber-related regulatory reports such as our NIS Annual and Check-In reports, submissions related to RIIO-2 and RIIO-3 and cyber related consultations.

This activities required of this role will typically be balanced between planning, hands-on document development and co-ordination with a wide variety of stakeholders to obtain inputs.

Accountability Statements

• Own and deliver the Regulatory Submissions Plan for SPEN Cyber
• Proactive engagement with NIS Responsible Officer (NRO) and Deputy NIS Responsible Officer (DNRO) to ensure capability and plans meet their expectations.
• Develop and own a regulatory submissions framework that ensures efficient and effective delivery of regulatory submissions in line with Ofgem or DESNZ requirements and internal standards such as SPEN DAG.
• Ensure an up to date playbook exists for each type of regulatory submission which covers elements such as timelines, stakeholders and DAG requirements.
• Provide training and awareness of the SPEN Cyber Regulatory Submissions Plan and any associated frameworks for stakeholders across SPEN.
• Timely delivery of required governance reporting.
• Lead engagement with Ofgem regarding regulatory submission matters, ensuring that appropriate stakeholder’s are aware of current thinking or trends.
• Co-ordinate delivery of regulatory submissions or consultations through their lifecycle in line with defined framework, from initiation through internal approval.
• Collation and editing of regulatory submissions documents, including NIS Annual Report.
• Plan and manage document input required from stakeholders, including SPEN Cyber.
• Ensure all regulatory submissions are managed in line with SPEN DAG.
• Plan and manage engagement with stakeholders outside of SPEN Cyber, including Digital Transformation, 2LoD and 3LoD.
• Continuous improvement of our approach to regulatory submissions, with a focus on quality and efficiency.

Dimensions

Ownership of Regulatory Submissions Plan for SPEN Cyber.
Management of NIS, PCD and RRP regulatory reporting.
Management of RIIO cyber related submissions.
Management of response to Ofgem cyber-related consultations.

Skills, Knowledge & Experience

Technical Skills:
• Work planning and delivery experience within Cyber or IT Governance, Risk and Compliance or Assurance environments. Experience of project management preferable.
• Familiarity or direct experience with regulatory requirements and submissions such as NIS Regulation and PCD’s.
• Proficient in MS Word and Excel.
• Experience of working with a structured management system, including ISO27001.
• Familiarity of cybersecurity principles, frameworks, and best practices such as NCSC CAF, ISO27001 or NIST CSF.
• First-hand experience or an awareness of Agile delivery approach and framework.
• Business improvement & change management skills.
• Experience of business analysis, service design and organisational change management.
Personal Skills/Abilities:
• Excellent communication and presentation skills, including ability to communicate technical issues and scenarios to a non-technical audience.
• Highly motivated and positive under pressure.
• Ability to effectively manage the delivery of conflicting requirements.
• Ability to build effective relationships with key stakeholders to ensure buy-in.
• Ability to work collaboratively in a cross-functional team environment.
• Ability to adapt quickly to change and support others in this process.
• High integrity and emotional maturity.
• Creative flair is encouraged.
• Conscientious and proactive approach to risk management.
• Able to devise solutions to the complex change challenges of a large organisation associated with business change and implementation of new ways of working.
• Demonstrated ability to take ownership and drive others to make things happen.
• Demonstrated achievement of measurable improvements or successful outcomes.
Planning & Organising

• Planning of activities to ensure regulatory reports and submissions are delivered to defined internal and external dates
• Able to deliver multiple submissions on time, to defined quality and submission requirements.
• Able to influence across multiple teams and bring people with you.
• Ability to manage own time and organise resources to deliver to targets.
• Develop creative solutions to any project risks or issues that arise.
• Strong people management skills.
• Decisive mindset when dealing with matters relating to progress, risk and issues.
• Role holder must meet defined deadlines for meetings and reporting.
• Manage own workload with weekly reporting to the wider Cyber GRA Team.
• Manage resource engagement both within and outwith SPEN Cyber required to deliver submissions.
• Maintain Regulatory Submissions Plan for SPEN Cyber.
• Maintain repeatable playbooks for each type of regulatory submission.
Internal and External Relationships

• Reports to the Head BISO.
• Colleagues within the BISO function, including the Head of Cyber Governance, Risk and Assurance, the Human Risk Manager and domain leads.
• SPEN Cyber Leadership, who are owners of cyber capabilities, including Head BISO.
• SPEN NIS Responsible Officer (NRO) and NIS Deputy Responsible Officer (DNRO)
• SPEN Cyber PMO who are responsible for cyber finance related regulatory reporting.
• Colleagues across the SPEN Cyber Security directorate who would contribute to regulatory submissions.
• Attendees of cyber governance forums, whether standing members or presenters.
• Colleagues in SPEN directorates such as NP+R who are leading or involved in regulatory submissions.
• Senior Management across SPEN who would review and approve regulatory submissions.
• Stakeholders outside of SPEN, including Internal Audit and Corporate Digital Transformation and Corporate Cyber, who are owners of standards or frameworks which SPEN Cyber must align or comply with.
• Ofgem Cyber team who define the templates and standards for regulatory reporting

Minimum Criteria (mandatory)
Criteria

• 2 years of working in a regulated environment, preferably in industrial sectors (energy or otherwise).
• 2 years experience of regulatory submissions or reporting, preferably cyber related.
• Experience of working as part of a team within a fast-paced and evolving business.
• Excellent oral and written communication skills.?
• Must be a proven team player to work, promote and consolidate efficient team working relationships.

Apply now

Similar jobs