IT Compliance Analyst

The Information Security Compliance Analyst ensures ensure proper oversight, risk management, and compliance with information-security-related requirements. This position defines and implements information security policies and procedures. The Information Security Analyst works under minimal supervision and relies on extensive experience and judgment to plan and accomplish goals. This role will help execute readiness and preparedness activities for the enterprise IT Compliance Program for SOX, ISO27001, SOC 1/SOC 2 and PCI as well as develop an Information Protection Program to reduce risk across the organization. The position utilizes strong policy and process knowledge as well as knowledge of a variety of technologies to identify risk and compliance issues and to drive mitigation, remediation and compliance activities within the business and IT organization. It involves interaction with numerous departments and business functions. Additional Information Security responsibilities will be required as needed.The Information Security Compliance Analyst ensures ensure proper oversight, risk management, and compliance with information-security-related requirements. This position defines and implements information security policies and procedures. The Information Security Analyst works under minimal supervision and relies on extensive experience and judgment to plan and accomplish goals.This role will help execute readiness and preparedness activities for the enterprise IT Compliance Program for SOX, ISO27001, SOC 1/SOC 2 and PCI as well as develop an Information Protection Program to reduce risk across the organization. The position utilizes strong policy and process knowledge as well as knowledge of a variety of technologies to identify risk and compliance issues and to drive mitigation, remediation, and compliance activities within the business and IT organization. It involves interaction with numerous departments and business functions. Additional Information Security responsibilities will be required as needed.Primary Responsibilities:Executes on a Compliance Program and Framework to manage SOX, ISO27001, SOC 1/ SOC 2/ SOC For Cyber and PCI compliance. Executes pre-assessments for SOX, ISO27001, SOC 1/ SOC 2/ SOC For Cyber and PCI.Facilitate both internal and external audit efforts related to IT as well as drive remediation activities with the business and IT.Facilitate assessment of and compliance with regulatory and legal requirements.Assists with reviews of third-party contracts and assessments for security and data protection purposes.Identify, manage, and maintain work products required to implement the information security program and planIdentify appropriate compliance requirements and controls based on current and future risks, policies and architecture.Provide compliance requirements, consultation and advisement to the business and project leads around data protection issues, risk management and security compliance.Identify, review, assess, and enable business functions that impact information securityEnsure adequate controls are in place to meet regulatory and industry-standard security requirements.

CompuCom is committed to providing equal employment opportunities in all employment practices. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, citizenship status, marital status, age, disability, protected veteran status, sexual orientation or any other characteristic protected by law.