Vacancy expired!
Job Description
Description The IT Compliance Analyst/Manager is responsible for the audit/administration of the information technology control design and effectiveness in accordance with the National Institute of Standards and Technology (NIST). Under general supervision, the IT Compliance Analyst/Manager maintains the process by periodically inspecting and auditing all areas of operation within the Department to ensure compliance with statements of policy, directives, operating procedures, and accreditation standards. Duties/Responsibilities- Manages administration/audits of the information technology control design and effectiveness in accordance with information technology security authoritative sources such as NIST, SOX, GRC, PCI etc. HIPAA experience is also required.
- Creates/monitors processes/systems as well as provides remediation to ensure all processes are followed.
- Engages the IT Security, Audit , IT users and HR as appropriate in support of security-related control testing and remediation as warranted
- Resolves Compliance issues identified through internal and/or external audits or monitoring while working closely with all operational department leaders to ensure prompt response to the compliance issues and that effective procedure are in place
- Proactively researches changes in the industry, information technology governance, and external risk compliance landscape.
- Bachelor's Degree in Information Security/Assurance/Technology or equivalent experience in IT Auditor or IT Risk management or related cyber-security functions.
- 5-7+ yrs. of IT Audit/Compliance experience
- Must possess a thorough understanding of cyber security requirements for NIST, HIPAA, PCI, SOX, GRC or similar control-driven frameworks.
- CISA certification is STRONGLY preferred