Security Compliance Analyst

Back to job search
  • Location:

    Fort Lauderdale

  • Job type:

    Contract

  • Job ref:

    384772

  • Published:

    2 months ago

  • Expiration date:

    11/30/2022

  • Start date:

    ASAP

Job Summary:

Signature Consultants is seeking a Security Compliance Analyst for an opportunity with a client located in Fort Lauderdale, FL.


Primary Responsibilities:

  • Involvement in planning activities of information technology, operational and compliance audits across the enterprise and assist with the coordination between IT and internal/external audit participants by acting as the liaison

  • Coordinate with independent auditors in executing audit procedures for the organization, close-out and finalize audits / projects, identification and assessment of issues, review of supporting documentation, and the coordination of remediation activities

  • Responsible for providing guidance and support for business units during applicable audits

  • Assist with the creation, implementation and enforcement of information security policies

  • Conduct information security training and awareness activities (phishing and social engineering campaigns, newsletters, etc.)

  • Collaborate with Human Resources on the content and assignment of compliance training and related initiatives

  • Promotes information security awareness and monitors compliance with enterprise information security policies

  • Manage email data loss prevention (DLP) solution and where applicable, appropriate communication with internal and external users

  • Work with various business partners to facilitate the completion of risk assessments and targeted compliance risk assessments

  • Assist in the assessment and review of new vendors and/or new and existing technology to ensure adequate levels of control are in place to maintain compliance with security requirements

  • Manage or assist with the onboarding of new information security compliance tools

  • Assist risk owners with identification of key risks and mitigating controls as well as action plans to address any gaps in the mitigating measures identified

  • Performs other duties as assigned or requested

Qualifications:

  • Bachelor's degree with emphasis in related field or equivalent work experience

  • 5+ years' of Security and IT Risk experience with regulatory, internal audit and/or compliance testing, including the development of remediation activities or steps

  • An equivalent combination of education and/or experience may be substituted for the above requirements

  • Experience with development of General Controls and/or IT Compliance related standards

  • Working knowledge and exposure of IT Governance, Risk Management, and Compliance practices

  • Working knowledge and understanding of ISO 27001 & 27002 frameworks and NIST compliance regulations and best practices. The individual will need to ensure our policies and procedures fit within our multiple security frameworks

  • Experience with the audit process involving relevant regulatory requirements specific to General Data Privacy Regulation (GDPR), Sarbanes-Oxley (SOX), Payment Card Industry/Data Security Standard (PCI-DSS) and Privacy Shield principles

  • Cybersecurity/ IT risk assurance expertise

  • Experience with information security tools and utilities

  • Strong written and oral communication, analytical and problem solving skills

Skills:

  • Team player able to work effectively at all levels of an organization with the ability to influence others to move toward consensus

  • Clear ability to build strong relationships and establish trust with stakeholders at all levels

  • Excellent verbal and written communication skills

  • Strong leadership skills with demonstrated ability to prioritize and execute in a methodical and disciplined manner

  • Ability to solve complex problems in a timely manner by working with multiple stakeholders

  • Ability to manage multiple tasks and work streams effectively

  • Ability to follow detailed procedures and processes with a high degree of accuracy

  • Customer-focused mindset, with demonstrated skill in managing expectations, providing proactive status updates, and producing high-quality work product

  • Experience managing projects through the full system development lifecycle

  • Multiple language abilities preferred - fluency in English (written and spoken) required

  • Detail oriented and self-starter

  • Ability to solution compensating controls in light of audit findings for recommendations to the business teams

  • Strong Microsoft Office (Word, Excel, Powerpoint) knowledge and use of advanced features

Preferred Skills:

  • At least one industry standard certification such as Certified Information System Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Privacy Professional (CIPP) or other audit (ISACA) certifications

  • Payment Card Industry Professional (PCIP) qualification or willing to obtain

  • Other international data laws are recommended

About Signature Consultants

Signature Consultants, a Digital Intelligence Systems, LLC (DISYS) company, was established in 1997 with a singular focus: to provide clients and consultants with superior staffing solutions. Signature annually deploys thousands of consultants to support, run and manage their clients' technology needs. Signature offers IT staffing, consulting, managed solutions and direct placement services. For more information on the company, please visit https://www.sigconsult.com.


EEO Employer


Signature Consultants is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Signature will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at [email protected] or 888.838.1020.