At Frontier Energy, we're more than just engineers and professionals-we're a team of innovators, problem-solvers, and visionaries dedicated to advancing clean energy solutions. Our mission is to pioneer the intelligent use of energy for a sustainable and resilient future.

We offer a collaborative and dynamic workplace where your ideas are heard, nurtured, and transformed into impactful solutions. With a flat hierarchy and open-door policy, every team member is empowered to experiment, take ownership, and make a real difference.

Beyond fostering an inspiring culture, we provide competitive compensation, comprehensive benefits, and opportunities for growth. Join us and be part of a team that's shaping the future of energy while leaving a positive impact on the world.

The Compliance and Risk Analyst is responsible for ensuring the Frontier's adherence to internal policies, regulatory requirements, and cybersecurity best practices. This role involves conducting audits, managing policy approvals and changes, overseeing disaster recovery simulations, and reviewing contracts for cybersecurity obligations. Additionally, the Analyst will assist with insurance renewals and fielding related requests, while leveraging knowledge of Microsoft 365 security and compliance tools to support the organization's risk management framework.

Key Responsibilities

-Conduct quarterly audits related to Quality Assurance (QA/QC), IT, and Security.

-Organize and execute disaster recovery simulations to test and improve incident response plans.

-Review and assess cybersecurity-related contracts, ensuring compliance with obligations (15-20% of the time).

-Collect and analyze audit evidence to support internal and external compliance requirements.

-Manage policy approvals and changes, including gathering relevant updates and proposing changes to the executive team.

-Maintain and oversee insurance renewals and coordinate requests with the Contracts Admin and internal stakeholders.

-Utilize Microsoft 365 Security & Compliance Center to monitor and enhance the organization's security posture.

Required Skills

-Experience with compliance audits (QA/QC, IT, Security).

-Strong understanding of cybersecurity frameworks and best practices (NIST, ISO 27001, SOC 2, etc.).

-Familiarity with disaster recovery and business continuity planning.

-Ability to review and interpret contractual obligations related to cybersecurity.

-Strong organizational and communication skills to manage policy changes and executive reporting.

-Experience in insurance management and contract-related risk assessment.

Preferred Skills

-Knowledge of Microsoft 365 Security & Compliance Center tools and best practices.

-Familiarity with third-party risk management and vendor security assessments.

-Certifications such as CISA, CISSP, or CISM.

-Previous experience in policy development and corporate governance.

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)