Job Description
Review the impact of new regulation and delivering assessments including evidence gathering and compliance assessments.
Work with Legal, Compliance, Control Assurance, and other stakeholder teams to coordinate control requirements, reporting and mapping to policy, regulation, and best practice.
Work with stakeholders to build plans of actions and milestones, track progress against gaps, and communicate changes or risks to plans in a timely manner.
Identify, document, and report control deficiencies and associated recommendations for improvement.
Develop and communicate reports to describe regulatory risk and associated remediation action.
Understand current information security regulatory applicability and monitor for upcoming regulatory changes and revisions.
Support the alignment of the policies and standards to both regulations and best practice.
Review and challenge first line business units' programs to support compliance with policies, standards, and regulations.
Evaluate, operate, and maintain tools or artifacts to capture and publish regulatory assessment results.
Participate in key and strategic initiatives representing the Information Security Governance team and providing subject matter expertise in the regulatory space.
Qualifications:
Qualifications
At least 8-12 years of experience in one or more of the following areas: Information Security, Technology Governance, Technology Audit, Information Technology Compliance.
8+ years of experience of information security regulations with a focus in financial services preferred, such as NYDFS, CFPB and GLBA.
Detailed knowledge of respective industry best practices (e.g., NIST, ISO, CMMI) and broad knowledge of cybersecurity technologies
Knowledge of risk management policies, methods, standards, processes, governance models, and industry standard risk analysis approaches.
Knowledge of current industry trends in information security regulatory.
Excellent written and verbal communication skills with the confidence to effectively tailor communication of technically complex issues for both technical and non-technical audiences and stakeholders at every level of the organization.
Process driven with an eye for detail.
Able to be a subject matter expert on information risk management, regulation, policies, and standards.
Hands-on experience with GRC tools such as ServiceNow and RSA Archer is preferred.
Candidates with professional information security certifications such as CISSP, CISM, CISA would be a good fit for this role.
Additional Information
Our benefits include: Medical, life and dental insurance, Asociacion Solidarista, International Share Save Plan, Flex Work/Work from home, Paid time off, Annual Performance Bonus, Education Reimbursement, Family Bonding, Bereavement Leave, Referral Program, and more.
Qualifications
* At least 8-12 years of experience in one or more of the following areas: Information Security, Technology Governance, Technology Audit, Information Technology Compliance.
* 8+ years of experience of information security regulations with a focus in financial services preferred, such as NYDFS, CFPB and GLBA.
* Detailed knowledge of respective industry best practices (e.g., NIST, ISO, CMMI) and broad knowledge of cybersecurity technologies
* Knowledge of risk management policies, methods, standards, processes, governance models, and industry standard risk analysis approaches.
* Knowledge of current industry trends in information security regulatory.
* Excellent written and verbal communication skills with the confidence to effectively tailor communication of technically complex issues for both technical and non-technical audiences and stakeholders at every level of the organization.
* Process driven with an eye for detail.
* Able to be a subject matter expert on information risk management, regulation, policies, and standards.
* Hands-on experience with GRC tools such as ServiceNow and RSA Archer is preferred.
* Candidates with professional information security certifications such as CISSP, CISM, CISA would be a good fit for this role.
Additional Information
Our benefits include: Medical, life and dental insurance, Asociacion Solidarista, International Share Save Plan, Flex Work/Work from home, Paid time off, Annual Performance Bonus, Education Reimbursement, Family Bonding, Bereavement Leave, Referral Program, and more.
#J-18808-Ljbffr