• Contract
  • Anywhere

Website decideconsultng The Job • Have deep knowledge of the regulatory landscape in the primary industries the client targets globally, ensure compliance mandates are met, and working with internal marketing partners, communicate our position clearly to customers and prospects • Develop, implement and manage control documentation, including narratives, risk and controls matrices and flowcharts • Ensure controls are implemented, documented, and operating effectively for new systems and processes

The Job •

Have deep knowledge of the regulatory landscape in the primary industries the client targets globally, ensure compliance mandates are met, and working with internal marketing partners, communicate our position clearly to customers and prospects • Develop, implement and manage control documentation, including narratives, risk and controls matrices and flowcharts • Ensure controls are implemented, documented, and operating effectively for new systems and processes • Assess control exceptions to determine the impact on the internal control environment, risk, root cause, and severity, and coordinate with control owners to facilitate appropriate remediation • Plan, implement and oversee the execution of the client's policy management and risk-related programs including creating, updating, maintaining, and reporting on policies, procedures, and processes • Interpret and assist with the implementation of information security policies and standards specific to functions outside of compliance, including IT, Legal, and People & Culture team • Coordinate with federal and state regulators as well as external auditors and the client's stakeholders to ensure timely execution of audits; and ensure control documentation is updated for prioritization, testing and remediation • Create and coordinate proper reporting channels for compliance issues • Develop company compliance communication for internal and external stakeholders • Manage security awareness training for employees and monitor the success of internal training programs • Participate in thought leadership activities including publishing articles, meeting with customers or prospects, and as a participant with industry publications and online compliance communities

Essential Skills

• 5+ years of experience in a compliance role, ideally in a SaaS software environment. • Profound knowledge of compliance standards and policies, audit techniques, regulatory issues, and operations and procedures • Familiar with Cloud security best practices on major platforms and features (e.g. AWS, Azure, and Google Cloud and their associated services), and associated security challenges. • Experience in evaluating internal controls associated with cloud-based systems (e.g. AWS, Workday, Salesforce) and are able to understand and navigate home-grown systems. • Knowledgeable about IT risk, information security fundamentals, IT risk assessment fundamentals, and risk management practices. • Excellent analytical, project management and organizational skills • An excellent written and verbal communicator and have the ability to effectively interact with internal and external customers, managers, and staff. • Bachelor's degree in accounting, business, finance or a related field
• One or more current qualifications in CISA, CRISC, CISSP, CIA, CPA, etc. • Experienced with aspects of regulatory, industry, and contractual compliance, especially Payment Card Industry (PCI), General Data Protection Regulation (GDPR), Financial Industry Regulatory Authority (Client), California Consumer Privacy Act (CCPA), Sarbanes-Oxley (SOX), and Health Information Portability and Accountability Act (HIPAA) requirements as they relate to data control, privacy and security • Familiarity with COSO, NIST, ISO27001, SOC1, and SOC2 frameworks

 

Recruiter: Jack Vann

Position Type: Contract
Experience Level:

Back to Jobs List

To apply for this job email your details to jvann@decideconsulting.com