This individual will be accountable for enterprise IT policy governance, compliance monitoring and reporting, PCI compliance, and data privacy. The individual will work across the company and with Legal, Finance, Accounting and Senior Leadership.
As an IT Compliance Consultant, you will ensure that the IT group is operating in compliance with regulatory requirements and internal procedures. You will play a key technical role in the execution, support, and advancement of the team's projects and capabilities. You will also work closely with team members as well as independently.
Job Responsibilities :
Examine existing controls, and develop new controls and procedures to ensure IT compliance is met across the enterprise
Assist with creating, and improving IT governance policies
Create, execute, and improve reporting, automation, audits, and assessments
Facilitate internal audits and assessments by creating / assigning tasks to owners and following through on those requests
Conduct assessments of IT general, privacy, and security controls as it relates to the relevant regulatory requirements
Ensure IT operational controls are in place and maintained throughout the system lifecycle
Communicate issues with control performance to Management promptly
Communicate with internal/external auditors to verify control effectiveness and best practices
Work closely with departments involved in IT controls
Participate in root cause analysis of incidents and problems and recommend/implement controls and enhancements
Assist with new projects and team workloads
Maintain working knowledge of compliance technology trends and best practices
Skills Experience :
Be highly organized and detail-oriented, with strong analytical problem-solving skills
Display excellent verbal and written communication and interpersonal skills.
Strong MS Excel/Google Sheets skills for data analysis and manipulation
Experience with technical report writing
Experience with PCI DSS, CCPA, GDRP, SOX, and NSIT
Minimum 6 years’ experience with IT audit or IT risk management required
Experience writing IT risks and controls
Experience performing IT control testing
Experience with issue tracking and remediation
Experience documenting control gaps
Knowledge of the NIST Security Framework
Knowledge of ITIL process areas preferred
Experience leading technical and project documentation reviews
Strong analytical problem solving and strategic thinking skills with attention to detail
Core Competencies :
Business Focus - Understands business drivers and how technology enables them; ensures that all technology provided solves a business problem or enables business to increase revenue more than the total cost of ownership.
Communication - Expresses clearly and effectively when speaking and/or writing to individuals or groups; listens attentively; ensures that information is understood by all parties; shares information in a timely manner using the most appropriate method; presents well-organized information in a group setting.
Execution - Follows logical approaches to completing work; brings work from inception to successful completion; translates strategies into step-by-step plans for action; monitors work progress to completion; effectively prioritizes; pays close attention to detail.
Accountability - Takes responsibility for all work activities and personal actions; follows through on commitments; implements decisions that have been agreed upon; maintains confidentiality with sensitive information; acknowledges and learns from mistakes without blaming others; recognizes the impact of one's behavior on others.
Adaptability - Responds to changing circumstances by being innovative and altering behavior to better fit different situations; consistently exhibits optimism and energy; learns new skills, performs work in different ways; successfully works with new colleagues; professionally deals with personal discomfort in a changing work environment; willing to be flexible; remains calm in stressful situations.
Problem Solving - Generates creative approaches to addressing problems and opportunities; identifies and weighs options, makes sound decisions after reviewing all relevant information; anticipates and plans for potential problems; takes calculated risks; recognizes impact of solutions.
Collaboration - Works collegially with others, cooperating in both interpersonal and team relationships; fosters enthusiasm and maintains mutual trust, candor, and respect. If applicable, manages groups effectively and builds partnerships with others.