Job Description
This position will support the Security and Privacy Compliance Department with the establishment and maintenance of all compliance programs within the company. Existing programs include SSAE 18 (SOC 1), SOC 2, PCI DSS, ISO 27K, and related security policies and processes. This role is encouraged to conduct research on compliance requirements as vital, and will be responsible for performing or managing assessments, and writing up reports to document findings for reporting to management. They will ideally have extensive experience in compliance, audit, project management, security, privacy and software development lifecycle standard methodologies.
This position will require coordinating, communicating, and working effectively with prospects, customers, internal process owners, internal and external auditors, and all levels of management.
Job Responsibilities & Duties:
perform supervised security and privacy compliance assessments
perform other tasks assigned by the Project or Program Manager
Assist in design remediation with process owners
Qualifications
The position prefers experience in IT compliance, audit, risk management, software development lifecycle (SDLC) & Security standard methodologies in a SaaS/Cloud environment.
Candidate must possess at least a Bachelor's/College Degree, Finance/Accountancy/Banking or equivalent.
At least 1-2 year(s) of working experience in IT Audit, Security, Risk Management, Privacy Compliance or related field is required for this position.
Certification holder or passer of any of the following is preferred but not required: CISA, CRISC, CISM, CISSP, CIPM, CIPP, CIPT.
Exposure to either SOX ITGC, SSAE 18 (SOC 1), or ISO 27K.
Experience with PCI DSS, HIPAA, Data Privacy and related security policies, processes, and regulations an advantage.
Exposure to security related technology (e.g. Identity Management tools, Firewalls, etc.) also an advantage.
Understanding of ERP systems (e.g. NetSuite, PeopleSoft FDM and Oracle eBusiness) security and privacy standards and implementation is helpful
Exposure to cloud environment an advantage.
ANY GRADUATE