Sr. Compliance Analyst in 5550-A Peachtree Pkwy, Norcross, GA 30092 at CareerBuilder

Date Posted: 1/10/2020

Job Snapshot

Job Description

US - CareerBuilder

 

 

The Sr. Information Security Compliance Analyst will support the Information Technology Services programs which include risk management, compliance management, audits and assessments, client inquiries, and security awareness and privacy programs. Assist in analysis of Information Technology compliance risks to the enterprise and ensures that the appropriate controls are in place to comply with relevant laws, regulations, and industry standards. Determines if any immediate or future action is necessary to protect information system assets and acts accordingly. Works with all IT and business departments to identify and document any and all risks or threats perceived and submits reports on findings, current status, and recommendations to the Information Security Leadership.

Key Responsibilities:

  • Assist with maintaining the compliance department calendar to ensure all projects are managed to internal and external expectations.
  • Partner with business and IT leadership to design and develop Risk and Compliance procedures, processes, protocols, and governance.
  • Monitor and enforce the information security risk management program including participation in broader risk management activities for the enterprise and the development, evaluation, and adherence to multiple areas of practice such as vendor (third-party), operational, and information security risk management.
  • Performs assessments of Third Party services providers including cloud services for adherence to best practices or known frameworks like NIST, etc.
  • Obtain or gather risk management and due diligence information from current and potential vendors
  • Partner with business units in developing and implementing controls to effectively mitigate the security risks inherent in each customer or vendor relationship
  • Assist in the creating  and utilization of some key performance indicators
  • Review legal and regulatory guidance on an ongoing basis to ensure that policies remain current and appropriate
  • Coordinate IT participation in and follow-up on internal and external audits
  • Coordinate IT SMEs and documentation in preparation for customer or other authority audits
  • Provide interpretation and consultation to staff and project teams on regulations, guidelines, compliance status, and policies and procedures.
  • Facilitate regulatory-based client and third party audits and assessments to include scheduling, coordination, internal notification, scope determination and oversight
  • Oversee documentation, reporting, and closure of compliance or quality issues
  • Assists in development, monitoring, validation and reporting of all Corrective Action Plans (CAPs)
  • Plan and perform IT Risk Assessments of business processes, applications, and services
  • Continuously develop technical expertise in regulatory compliance and obtain relevant certifications (CRISC, CISM, CRCM).

.

Job Requirements:

Position Qualifications:

  • Candidates should possess a Bachelor's degree, and preferably have 2-5 years of experience within a regulated industry environment.
  • Strong understanding of IT General Controls (Logical Access, Change Management, IT operations).
  • Experience with Information Security, Privacy, IT Audit, Compliance & IT Management Standards:
  • Ability to adapt and adjust and manage staff, supervise work or act as an individual contributor.
  • Ability to thrive in a fast-paced, dynamic, sometimes ambiguous environment.
  • Ability to understand complex information systems, prioritize tasks, and meet deadlines with minimal supervision.
  • Excellent written and verbal communication skills.
  • Ability to write with purpose, clarity and accuracy
  • Experience with system development lifecycle processes.
  • Problem solving, risk analysis and negotiation skills.
  • Must be qualified to work in the U.S.

Preferred Certifications

 

  • One or more of the following: Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified Fraud Examiner (CFE), Certified Information Privacy Professional (CIPP) and or other relevant industry certification or must obtain within 14 months of employment

 

This position will work with confidential and proprietary information that requires a signed Employee Non-Disclosure Agreement upon hire

 


 

 

Benefits-We’re All About You! 

When you're focused on the goal, not the path – you can be more flexible, and that translates into more productive and satisfied employees. From flexible hours to volunteering during work hours to diverse education opportunities, CareerBuilder is committed to helping employees strike a balance. 

Here are just some benefits we offer:

  • Training that positions you to hit the ground running with ongoing learning and development courses; we never stop investing in our people.
  • Comprehensive Medical, Dental & Vision Programs
  • Education Reimbursement Program allowing up to $5k per year towards completion of a Bachelor’s and non-MBA graduate degree, and up to $10K per year towards completion of an MBA
  • Global Wellness initiatives to promote financial, mental and physical health and well-being
  • 401(k) Program with a two year vesting schedule, discretionary match, and an opportunity to make Pretax and Roth contributions

CareerBuilder, LLC is proud to be an Equal Opportunity Employer. Applicants are considered for all positions without regard to race, color, religion, sex, national origin, age, disability, sexual orientation, ancestry, marital or veteran status.

 

TSR ID: 001722