Tuesday, August 06, 2013

Security Jobs: Senior Manager, Information Security Compliance, Las Vegas, NV


Senior Manager, Information Security Compliance

SecurityRecruiter.com has been engaged by a CISO whom we know very well to assist in building an information security department that includes cyber security, disaster recovery, business continuity, quality assurance, compliance, security awareness and security training.

This newly created position will report to an Executive Director compliance services to a global Fortune 300 organization that has year-long regulatory reviews to prepare for. This is an opportunity to share a part in building a global cyber security program from the ground up. Relocation is paid and candidates from the US or Canada will be considered.

This role will require high energy and the ability to juggle multiple projects simultaneously. The ideal candidate will be detail oriented and will appreciate having deadlines to work towards.

This role ensures that the organization’s systems and information technology processes comply with regulatory, industry and legislative compliance requirements in all jurisdictions where it operates. This work includes pre-assessment auditing of controls and technical standards such as PCI-DSS and SOX.

• Manages a team that performs year-long assessment reviews on regulatory requirements
• Coordinates and plans reporting mechanisms for the assessment team
• Works to educate staff on regulatory procedures and requirements
• Provides guidance to assessors on proper audit procedures
• Promotes technology ‘best practice’ compliance standards
• Collaborates with third party vendors, where appropriate
• Collaborates with IT and Internal Audit teams to ensure compliance with internal controls
• Generates and provides regular compliance reports and scorecards
• Assists with the facilitation of Sarbanes-Oxley (SOX), Payment Card Industry (PCI-DSS), Privacy and Protected Health information compliance efforts
• Completes the Technology Compliance Risk Assessment process for applications and systems
• Develops expertise in the use of Compliance tools
• Facilitates meetings and drives agendas
• Participates in annual testing with internal and external auditors
• Leads and assists teams with their SOX remediation efforts
• Participates in audit reviews throughout the year to ensure best practices are integrated into all environments
• Works with auditors to gather information for risk assessments
• Understands and helps support IT controls related to PCI requirements
• Assists with the remediation of items from annual QSA reviews

Requires:

• BA/BS in Information Technology or related discipline, Masters Preferred
• 5+ years of experience in Technology auditing preferred
• CISA or equivalent certifications preferred
• Experience or exposure in working with auditors required
• Exhibits a sincere interest and passion to become a compliance advocate for Information Technology.
• Highly ethical and discreet, with ability to maintain confidentiality.
• Excellent interpersonal telephone skills and the ability to empathize with customers, while enforcing the company’s policies.
• Provides 24x7 on-call support, as required.
• Must be highly organized and possess excellent written and verbal communication skills.
• Display motivational attributes (self and others).
• Focused towards excellent customer service.

Senior Manager, Information Security Compliance
Location: Las Vegas, NV
Relocation: Yes
Compensation: $100,000 - $110,000 base range, + bonus
Education: BA/BS, Masters Preferred

Certification: CISA preferred


SecurityRecruiter.com's Security Recruiter Blog