Vacancy expired!
- Collaborate with cross functional teams to ensure they are properly managing security controls, understand their operations, and ensure compliance with standards.
- Monitor and enhance the controls necessary to achieve and maintain SOC 2, PCI DSS, HIPAA, NIST 800-53, and other compliance requirements. Periodically test controls as appropriate.
- Assist external parties delivering projects related to compliance or other security initiatives.
- Facilitate and provide governance over internal assessments and external audits of the compliance programs.
- Develop, revise, and maintain remediation plans in coordination with the remediation owners. Track the remediation plans to closure.
- Manage control frameworks supporting security compliance objectives.
- Maintain tools and processes that enable monitoring of compliance.
- Assist in the development of key reporting metrics and executive presentations to ensure awareness and support of compliance programs.
- Performance of other duties and responsibilities as assigned.
- 4 years information security controls, information technology audit, or security risk management.
- Ability to influence across functional teams to achieve desired business results.
- Excellent verbal and written communication skills.
- Strong attention to detail, well organized, and able to manage time effectively.
- BS/BA degree required (i.e., Computer Science/Engineering, Business, etc.) and 8 years of experience in related field.
- Demonstrated experience with at least 3 of the following: SOC 2, PCI DSS, HITRUST, HIPAA, ISO 27001, and NIST 800-53.
- Healthcare and/or Cloud experience preferred.
- Professional services audit or consulting background.
- At least one relevant industry certification - CISSP, CISM, CRISC, CISA, CPA.
Vacancy expired!