Hitachi Energy is a leader in cybersecurity compliance, and they are seeking a Cybersecurity Compliance Project Manager to strengthen the cybersecurity posture for critical power-grid technologies across the United States. The role involves guiding the Cybersecurity Compliance Program, managing U.S. compliance activities, and translating regulations into actionable processes.
Responsibilities:
- Run the CFIUS Cybersecurity Compliance Program and maintain alignment with the National Security Agreement
- Coordinate effectively with CFIUS Monitoring Agencies to support reporting and oversight expectations
- Translate U.S. and North American cybersecurity regulatory requirements—including Covered Information Protection Plans (CIPP), DFARS, FAR-based cybersecurity clauses, NIST SP 800‑171/172, CMMC 2.0, and NERC CIP—into practical processes across the organization
- Manage U.S. compliance activities connected to CFIUS, NIST CSF, NIST SP 800‑53, NIST SP 800‑171/172, CMMC 2.0, DFARS, NERC CIP, applicable federal Executive Orders, and other federal or sector-specific oversight obligations
- Support mandatory reporting needs and maintain readiness for internal and external audits
- Work with legal, technical, and business teams to maintain a proactive cybersecurity compliance posture
- Support assessments and audits related to ISO 27001, ISMS, and application‑level reviews tied to CFIUS obligations
- Drive continuous improvement in compliance tooling, workflows, and reporting, including ServiceNow, OneTrust, SharePoint migration efforts, Power Automate, Power BI, and responsible use of AI-enabled capabilities to reduce manual effort and improve audit readiness
- Responsible for ensuring compliance with applicable external and internal regulations, procedures, and guidelines
Requirements:
- 5+ years of experience in IT, cybersecurity compliance, public policy, or legal/regulatory roles
- Demonstrated expertise in U.S. and North American cybersecurity regulations and control frameworks, including CFIUS NSA obligations, DFARS, FAR-based procurement requirements, NIST CSF, NIST SP 800‑53, NIST SP 800‑171/172, CMMC 2.0, and sector-specific standards such as NERC CIP
- Strong understanding of global cybersecurity frameworks, including ISO/IEC 27001, UCF, IEC 62443, and how international standards can be mapped or harmonized with NIST-based controls
- Experience working in a global, multicultural environment, collaborating across functions and time zones
- Excellent verbal and written communication skills in English; additional languages are a plus
- Bachelor's degree required
- Flexibility to work across time zones and travel occasionally
- Must be already live in the United States to support this role
- Master's degree or certifications (CISM, CISSP, PMP) preferred
- Experience improving compliance operations through GRC, IRM, workflow, reporting, or collaboration tools; familiarity with automation, AI-enabled analysis, or digital transformation initiatives is preferred