The IT Compliance Specialist is responsible for monitoring and providing business support on a variety of complex regulatory and legal procedures. This position will ensure compliance by evaluating IT systems, Processes and the Information Security Program and providing strategic advice with regards to business policies, rules and regulations.
Essential Duties and Responsibilities:
Plan and execute IT control, compliance, security and/or operational audits and generate formal reporting processes;
Verify information security controls effectiveness using evaluation and testing;
Develop reporting, tracking and implementation plans for new initiatives;
Accurately communicate information security protocols with auditors, third party partnerships and internal departments.
Assist with the development of IT/Security best practice recommendations based on results of audits, testing and assessments;
Perform information system control evaluations and testing related to ISO 27001 and Sarbanes-Oxley compliance, with minimal oversight;
Gain understanding of companys processes in order to assist with identification of potential financial or compliance risk;
Perform various other duties or special projects as requested based on department objectives.
Qualifications: To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Requires a Bachelors Degree from an accredited college or university in Risk Management, Audit Information Systems, Computer Science, Accounting, Finance or related field. From one to three years experience as an auditor or similar with relevant IT experience. Experience with ISO/IEC 27001or the ISO/IEC 27000 family of standards, or information security management system (ISMS) helpful.
Must have the ability to understand complex information systems, prioritize multiple tasks and meet deadlines with minimal supervision and a high level of personal and professional ethics.
Language Ability: Ability to read, analyze and comprehend simple instructions, short correspondence, and memos. Ability to write clear, grammatically correct documents Ability to effectively present detailed information and influence others in one-on-one and small group situations to customers, clients, and other employees of the organization.
Reasoning Ability: Ability to apply common sense understanding to carry out instructions furnished in written, oral, or diagram form. Ability to deal with problems involving several variables, systems and departments. Ability to derive possible solutions to problems based on the provided information, and to properly present those solutions.
Computer Skills: Must have superior knowledge of Excel and Access. Word, Power Point, and Visio.
Travel: Less than 15%.
The physical demands and work environment characteristics are representative of those that an employee must meet to successfully perform the essential functions of this job.
*Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. The noise level in the environment is moderate.