Job Description :
Role: Information Security Compliance Manager
Location: Plano, TX
Duration: 6 month+ contract

Visa: Citizen or GC or GC EAD or TN Only
NO H1s or OPTs or OPT EADs Please

Description:
Information Security Compliance Manager

The Information Security Compliance Expert is responsible for implementing and maintaining compliance with policies and required regulatory bodies. In addition, the compliance expert will participate with the customer in the strategic design process to translate compliance and regulatory requirements into controls, processes and systems. The compliance expert reviews, prioritizes and recommends compliance control improvements as they relate to the achievement of the customer''s compliance objectives.

The responsibilities of the compliance expert include:
a. Exception/Deviation to Policy Management
Experience with IT security policy and understanding of general terms and concepts in this area.
Experience tracking, testing, and documenting policy controls and ensuring the teams'' daily activities are in alignment with stated policy.
Ability to translate policy to actions and provide guidance and interpretation as necessary to infra teams i.e., ability to communicate with and educate cross functional tower delivery teams.
Ability to develop, track, and remediate policy violations.
Ability to establish a policy wavier framework.
b. Advisory Board Reviews
Ability to develop reporting dashboard comprising various elements of the overall compliance landscape on the account.
Ability to provide guidance and interpretation of industry trends and client owned security objectives.
c. Security Policy Compliance
If non-technical, ability to action items in section ''a'' above .
If technical, experience in baseline best security tactics, tools, and technology.
o Ability to collaborate with ISM and other technical stake holders.
o Ability to communicate to non-technical stakeholders complex technical nuances to achieve understanding and support of compelling security initiatives.
o Ability to action items in section ''a'' above.
d. IT Audit Facilitation and Compliance
Provide single point of contact for client''s security / compliance teams.
Provide single point of contact to internal delivery teams.
Schedule meetings, maintain meeting notes and action items.
e. Regulatory Compliance (i.e. PCI, SOX, FDA, EU Privacy, GLBA, FFIEC)
Skills of a security compliance generalist with experience in the practice, auditing, and governance of enterprise class security controls frameworks. Knowledge and exposure to EU privacy laws and US Safe Harbor recommended.
Ability to interface with Internal Audit, External Audit, Compliance and 3rd Party Assessment functions
Certification and skills needed: CISSP, CISA, CISM, CompTIA-Security+


Required Skills:
8 years of information security experience and a strong knowledge of security standards
Experience with information security, internal & external audits, contract compliance, and quality initiatives
Experience working with PCI
Strong data privacy background
CISA certification

Desired Skills:
Project management
Strong oral and written communications
Customer relationship management experience at the senior level
At least one of the following certifications:
o CISSP
o CRISC
o CISM

Minimum Educational Requirements:
Undergraduate degree and 8 years relevant experience or graduate degree and 5-7 years relevant experience

PLEASE READ ANYONE WITHOUT THESE SKILLS WILL AUTOMATICALLY BE DECLINED • Previous experience with PCI DSS is a hard requirement. SOX is the other component we are looking for, but to a lesser extent. • A compliance certification is a requirement. CISA is the most common, but you may also see other ISACA certifications such as CISM, CRISC, or CGEIT. • Previous experience is leading an IT audit is required, either internal or external. Merely participating in an audit is not sufficient.
             

Similar Jobs you may be interested in ..