Risk & Compliance Analyst II (Must have: COBIT, NIST, ISO, PCI, SOX) Information Technology (IT) - Lake Forest, IL at Geebo
Scams & Shams AdWatch Home

Lake Forest, IL   change location

Lake Forest, IL

Enter a City:
Previously visited locations:
United States;
SearchorPost
Geebo » Lake Forest, IL » Employment » Information Technology (IT)

Risk & Compliance Analyst II (Must have: COBIT, NIST, ISO, PCI, SOX)

Risk & Compliance Analyst II

(Must have:
COBIT, NIST, ISO, PCI, SOX)

Overview:
Well known company in Lake Forest, IL seeking a Risk & Compliance Analyst II

If you like a culture where you will stretch your limits and give you exposure to cutting edge technologies, you're in luck.

Don't be coy and wait three days to call us.
We want to hear from you now! Email your resume to me:
(see below)

What our client wants you to do aka responsibilities

Keys to this role:
5-7 years Risk Compliance and frameworks, the more, the merrier.
COBIT, ISO 7001, PCI, SOX, IST.
Risk & Compliance Analysts who understand the concepts and can help build the program.

This position drives compliance of global business units with Company's Global Risk Management and Compliance activities in alignment with Company's IT Risk Management and Compliance Program.
Team member will assess processes to identify gaps in business processes and controls, and assist in the design and documentation of processes to address the gaps in order to drive compliance in alignment with the risk management framework.
Additional responsibilities include design, implementation and facilitation of Risk Metrics and Measures and the Security Awareness programs.

Who you are

  • BA/BS or equivalent preferred.
  • Current CISA (Certified Information Security Auditor) and/or CISSP (Certified Information Systems Security Professional) and/or CIPP (Certified Information Privacy Professional) certifications helpful, but not required
  • Awareness of auditing standards and frameworks (eg COBIT, ISO 27001), industry guidelines and laws (eg Sarbanes-Oxley Act and PCI DSS) and privacy concepts (EU Data Privacy Directive, HIPAA) helpful, but not required
  • Must be able to work in a collaborative team environment with individuals at appropriate levels of the Company
  • Understanding of continuous improvement concepts and ability to effectively incorporate those skills into day-to-day work

Keys to this role:
5-7 years Risk Compliance and frameworks, the more, the merrier.
COBIT, ISO 7001, PCI, SOX, IST.
Risk & Compliance Analysts who understand the concepts and can help build the program.

You also meet most (if not all) of the following requirements:

  • Works with business teams across the global Company organization in executing the ES Compliance and Risk Management program framework, extending the processes as necessary to help global business partners identify information risk and manage mitigation to an acceptable level
  • Provides inputs to global risk management processes in developing controls needed for the mitigation of risk for business processes which are not compliant with information security and risk frameworks
  • Lead other team members within the Risk and Compliance organization in assessing risk, developing appropriate controls and advising on the creation of action plans to address gaps.
  • Collaboratively works to influence and socialize ES strategies, standards, policies, procedures, communications and governance.
  • Provides guidance with respect to needed changes to established IT Security policies based on day-to-day interactions with Company businesses.
  • Serves as subject matter expert in providing advice to global business units regarding actions necessary to ensure compliance with applicable frameworks including, but not limited to, Sarbanes-Oxley (SOX), the Payment Card Industry Data Security Standard (PCI DSS) and specific ISO, BS or other standards as required.
  • Takes actions as directed to ensure business awareness of Data Privacy guidance and appropriate engagement of Data Privacy office, as needed.
  • Provides advice to global business units on specific requirements to align business requirements with relevant global security frameworks, standards, policies, and procedures
  • Proactively provides relevant inputs to the global risk framework based on the latest government and industry information regarding new threats and vulnerabilities and communicates relevant information to the appropriate teams, soliciting action plans if needed.
  • Coordinates deployment and measurement of security awareness efforts across Company global business units
  • Works closely with global business, contract and legal teams to assess proposed terms and conditions to align with the appropriate risk profile and provide feedback as to any changes needed
  • Monitors and manages ES risk register to ensure that all business risks are accurately represented and actively managed.
  • Aligns individual goals to Risk and Compliance team goals with S.
    MA.
    R.
    T.
    objectives

Who the Company is

Our client is a large Enterprise Fortune 500 company with a very talented group of people, where they maintain a friendly environment where people really want to work.

If this sounds great to you, come join us.
Please email me your resume (see below)

(Must have:
COBIT, NIST, ISO, PCI, SOX)

.
Estimated Salary: $20 to $28 per hour based on qualifications.

Continue

Don't Be a Victim of Fraud

  • Electronic Scams
  • Home-based jobs
  • Fake Rentals
  • Bad Buyers
  • Non-Existent Merchandise
  • Secondhand Items
  • More...

Don't Be Fooled

The fraudster will send a check to the victim who has accepted a job. The check can be for multiple reasons such as signing bonus, supplies, etc. The victim will be instructed to deposit the check and use the money for any of these reasons and then instructed to send the remaining funds to the fraudster. The check will bounce and the victim is left responsible.
© 1999-2024 Geebo, Inc. All Rights Reserved - Contact: 888-439-3113
About | Blog | Contact | Privacy Policy | Terms of Use | California Privacy Notice | Do not sell my personal info