Information Security Compliance Generalist

Plano, TX | Contract

Post Date: 02/13/2017 Job ID: 43571 Industry: Network Security

Information Security Compliance Generalist

Job Description:
The Information Security Compliance Expert is responsible for implementing and maintaining compliance with policies and required regulatory bodies. In addition, the compliance expert will participate with the customer in the strategic design process to translate compliance and regulatory requirements into controls, processes and systems. The compliance expert reviews, prioritizes and recommends compliance control improvements as they relate to the achievement of the customer’ s compliance objectives. 

 

Responsibilities: 
- Experience with IT security policy and understanding of general terms and concepts in this area. 

- Experience tracking, testing, and documenting policy controls and ensuring the teams’ daily activities are in alignment with stated policy. 
- Ability to translate policy to actions and provide guidance and interpretation as necessary to infra teams i.e., ability to communicate with and educate cross functional tower delivery teams. 
- Ability to develop, track, and remediate policy violations. 
- Ability to establish a policy wavier framework. 
- Ability to develop reporting dashboard comprising various elements of the overall compliance landscape on the account. 
- Ability to provide guidance and interpretation of industry trends and client owned security objectives. 
- Security Policy Compliance 
- Experience in baseline best security tactics, tools, and technology. 

- Ability to collaborate with ISM and other technical stake holders. 

- Ability to communicate to non-technical stakeholders complex technical nuances to achieve understanding and support of compelling security initiatives. 
- IT Audit Facilitation and Compliance 
- Provide single point of contact for client’ s security / compliance teams. 
- Provide single point of contact to internal delivery teams. 
- Schedule meetings, maintain meeting notes and action items. 
- Regulatory Compliance (i.e. PCI, SOX, FDA, EU Privacy, GLBA, FFIEC) 
- Skills of a security compliance generalist with experience in the practice, auditing, and governance of enterprise class security controls frameworks. Knowledge and exposure to EU privacy laws and US Safe Harbor recommended. 

- Ability to interface with Internal Audit, External Audit, Compliance and 3rd Party Assessment functions 
Certification and skills needed: CISSP, CISA, CISM, CompTIA-Security+ 


Requirements
- 8 years of information security experience and a strong knowledge of security standards

- Undergraduate degree and 8 years relevant experience or graduate degree and 5-7 years relevant experience 
- Experience with information security, internal & external audits, contract compliance, and quality initiatives 
- Experience working with PCI 
- Strong data privacy background 
- CISA certification 

Desired Skills: 
- Project management 
- Strong oral and written communications 
- Customer relationship management experience at the senior level 
- At least one of the following certifications: 
  o CISSP 
  o CRISC 
  o CISM 
 
Apply Online

Not ready to apply?

Send an email reminder to:

Share This Job:

Related Jobs: